Highlighted
7 Gold

Updates 10/10/17 - Microsoft Tuesday, Flash, PaleMoon

This thread is currently "under construction", and will be edited for the remainder of today.   Please excuse any blank spaces or crossed-out "placeholders" for items expected to be announced.
 
Today is Microsoft Tuesday --- the SECOND Tuesday of the month --- on which Microsoft is expected to release its monthly cycle of Windows security updates.   Based on previous history, they should become available at 1 P.M. [USA - Eastern DAYLIGHT SAVING Time]
------------------
Please use Windows/Automatic Updates to determine which updates are applicable to your particular system.
 

Free Internet Security - WOT Web of Trust       Use OpenDNS       MalwareBytes Anti-Malware


Windows 10 Pro (64-bit), Panda DOME 18.7.4, MBAM4 Pro, Windows Firewall, OpenDNS Family Shield, SpywareBlaster, MVPS HOSTS file, MBAE Premium, MCShield, WinPatrol PLUS, SAS (on-demand scanner), Zemana AntiLogger Free, Microsoft EDGE, Firefox, Pale Moon, uBlock Origin, CryptoPrevent.


[I believe computer-users who sandbox (Sandboxie) are acting prudently.]

0 Kudos
3 Replies
Highlighted
7 Gold

RE: Updates 10/10/17 - Microsoft Tuesday

Adobe Flash Player has been updated to 27.0.0.159

This monthly update addresses functionality bugs (important bug fixes).

 
Direct downloads (no bundled junk) for Windows 7 and earlier emoticon.Star.title ( Revised installer links located toward bottom of:  https://helpx.adobe.com/flash-player/kb/installation-problems-flash-player-windows.html )
.
.
Plugin-based browsers (Firefox etc) -
.
.
=======================================
.
 
=======================================
 
emoticon.Star.title Flash (ActiveX) for IE/Edge in Win8.1/10 will be updated to 27.0.0.130, via Microsoft Update:
 
Security Update for Adobe Flash Player ( 4038806 )
-
.

Free Internet Security - WOT Web of Trust       Use OpenDNS       MalwareBytes Anti-Malware


Windows 10 Pro (64-bit), Panda DOME 18.7.4, MBAM4 Pro, Windows Firewall, OpenDNS Family Shield, SpywareBlaster, MVPS HOSTS file, MBAE Premium, MCShield, WinPatrol PLUS, SAS (on-demand scanner), Zemana AntiLogger Free, Microsoft EDGE, Firefox, Pale Moon, uBlock Origin, CryptoPrevent.


[I believe computer-users who sandbox (Sandboxie) are acting prudently.]

0 Kudos
Highlighted
7 Gold

RE: Updates 10/10/17 - Microsoft Tuesday

WARNING:  The link for this separate download of the MSRT is now pre-checking a box to also download "MSN default homepage & Bing default search engine".    Be sure to uncheck this, unless you really want it!
 
Malicious Software Removal Tool (MSRT, MRT) for October, version 5.53
.
Reminder:   Users who are paranoid about the remote possibility of a FP can opt to run this tool from a Command Prompt, appending a   /N   parameter [for "detect only" mode].
.
-----------------------------------------------------------------------------------------------------
.
This month's MSRT adds detection/removal of Trojan:Win32/ShadowPad - a backdoor that is distributed through a software compromised in supply chain malware attack; and
BrowserModifier:Win32/Xeelyak  - a browser modifier family can make the following changes in your PC (Google Chrome and Internet Explorer browsers) without your consent 
.

Free Internet Security - WOT Web of Trust       Use OpenDNS       MalwareBytes Anti-Malware


Windows 10 Pro (64-bit), Panda DOME 18.7.4, MBAM4 Pro, Windows Firewall, OpenDNS Family Shield, SpywareBlaster, MVPS HOSTS file, MBAE Premium, MCShield, WinPatrol PLUS, SAS (on-demand scanner), Zemana AntiLogger Free, Microsoft EDGE, Firefox, Pale Moon, uBlock Origin, CryptoPrevent.


[I believe computer-users who sandbox (Sandboxie) are acting prudently.]

0 Kudos
Highlighted
7 Gold

RE: Updates 10/10/17 - Microsoft Tuesday

Pale Moon 27.5.1 (2017-10-10) http://www.palemoon.org/releasenotes.shtml

This is a security and stability update to the browser, as well as fixing some issues users have indicated.

Changes/fixes:

  • Changed the default Windows 10 styling when no accent color is aplied to black-on-white.
  • Changed the theme styling on Windows 10 when the system window frame is used (menu bar enabled) to use the window manager background directly, preventing visual lag updating the window color when it changes.
  • Updated user agent overrides for DropBox, YouTube and Yahoo to work around user agent sniffing issues.
  • Fixed a crash in the media subsystem.
  • Fixed a regression where video playback hardware acceleration was disabled incorrectly on some systems.

Security fixes:

  • Updated libhyphen to the latest upstream code to fix a security issue.
  • Updated NSPR to 4.16-RTM with a patch to un-bust building on win64.
  • Updated NSS to 3.32.1-RTM.
  • Worked around some more issues with Mac fonts (CVE-2017-7825).
  • Fixed a potential rooting hazard in NPAPI plugin code. DiD
  • Fixed a potential reference issue in JavaScript arrays. DiD

DiD This means that the fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code when surrounding code changes, exposing the problem.

-------------------------------------------------------------------------------------------------------

Update via the internal Updater:   Help / About Pale Moon ; or full downloads:

32-bit version https://www.palemoon.org/palemoon-win32.shtml

x64-bit version https://www.palemoon.org/palemoon-win64.shtml

Free Internet Security - WOT Web of Trust       Use OpenDNS       MalwareBytes Anti-Malware


Windows 10 Pro (64-bit), Panda DOME 18.7.4, MBAM4 Pro, Windows Firewall, OpenDNS Family Shield, SpywareBlaster, MVPS HOSTS file, MBAE Premium, MCShield, WinPatrol PLUS, SAS (on-demand scanner), Zemana AntiLogger Free, Microsoft EDGE, Firefox, Pale Moon, uBlock Origin, CryptoPrevent.


[I believe computer-users who sandbox (Sandboxie) are acting prudently.]

0 Kudos