Unsolved
This post is more than 5 years old
3 Apprentice
•
15.2K Posts
0
32380
Updates 2/12/13 - "Microsoft Whopper of a Tuesday", Flash
Today is "Microsoft Tuesday" --- the SECOND Tuesday of the month --- on which Microsoft is expected to release its monthly cycle of Windows critical/security updates.
It's gonna be a whopper: Microsoft is planning to release 12 bulletins, addressing 57 vulnerabilities.
Based on previous history, they should become available at 1 pm (USA - Eastern Standard Time).
Use Windows/Automatic Updates to determine precisely which updates are applicable to your particular system.
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 12th, 2013 08:00
Adobe Flash Player 11.6.602.168 has been released (and Adobe AIR 3.6.0.5970 , for those who have/use AIR).
These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system.
for additional information, see http://en.community.dell.com/support-forums/virus-spyware/f/3522/t/19467178.aspx
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 12th, 2013 10:00
For those who have/use Adobe's Shockwave Player: Adobe has released Shockwave Player 12.0.0.112 . This update addresses vulnerabilities that could allow an attacker, who successfully exploits these vulnerabilities, to run malicious code on the affected system.
Remark: Shockwave Player is mostly used by gamers. If you don't already have/use it, you probably don't need it.
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 12th, 2013 10:00
The following 5 updates are rated CRITICAL:
MS13-009 Cumulative Security Update for Internet Explorer (2792100)
MS13-010 Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2797052)
MS13-011 Vulnerability in Media Decompression Could Allow Remote Code Execution (2780091)
MS13-012 Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2809279)
MS13-020 Vulnerability in OLE Automation Could Allow Remote Code Execution (2802968)
=================================
The following 7 updates are rated IMPORTANT:
MS13-013 Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2784242)
MS13-014 Vulnerability in NFS Server Could Allow Denial of Service (2790978)
MS13-015 Vulnerability in .NET Framework Could Allow Elevation of Privilege (2800277)
MS13-016 Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2778344)
MS13-017 Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2799494)
MS13-018 Vulnerability in TCP/IP Could Allow Denial of Service (2790655)
MS13-019 Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2790113)
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 12th, 2013 10:00
Malicious Software Removal Tool (MSRT, or MRT) for February, version 4.17 [which is included among the Windows Updates] adds detection/removal of
joe53
1 Rookie
1 Rookie
•
5.8K Posts
0
February 12th, 2013 16:00
Well, it was 20-30 minutes each to patch my systems. Not too bad.
Once again, Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2789643) was offered and successfully installed, separately from the other updates. Following a re-boot, I confirmed it present in my "Add or Remove Programs" list.
Yet once again, when I return to MSU to check for updates, it is offered again. Once again, I had to hide a .Net update at MSU. This appears to be a glitch specific to XP, since I don't see it on my Win 7 systems.
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 13th, 2013 04:00
The Malicious Software Removal Tool for February, vresion 4.17, is now available as an independent download (for anyone who wishes it that way).
32-bit version: http://www.microsoft.com/en-us/download/details.aspx?id=16
x64 bit version: http://www.microsoft.com/en-us/download/details.aspx?id=9905
iroc9555
1K Posts
0
February 13th, 2013 06:00
Sorry to hear you still have prolems with .NET updates Joe. That was not my case. I installed 12 updates, counting MRT, no problem what so ever. I can tell you though this has been the most configuration changes ever in my sys. Usually I would detect 50 or so changes, this time there were more than 200 changes for smss.exe, winlogon.exe,services.exe, scvhost.exe, and lsass.exe. Comodo D+ would not stop showing what this new updates were doing in my comp.
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 13th, 2013 08:00
Comodo D+ would not stop showing what this new updates were doing in my comp.
I've made it a habit to temporarily disable Avast's behavior shield before downloading/installing any .NET updates, as that one shield seemed to generate dozens of prompts. Maybe you can do something similar for D+ ???
iroc9555
1K Posts
0
February 13th, 2013 13:00
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 13th, 2013 13:00
Yes, I've found avast shields to be much quieter under Win7 than XP. I don't believe the Script shield in win 7 checks anything, whereas it's very active on my XP. Likewise for the behavior shield.
iroc9555
1K Posts
0
February 13th, 2013 13:00
By: C:\WINDOWS\SoftwareDistribution\Download\7c4116320ed01ecb77a4906ce6c7148c\update\update.exe
Via: C:\WINDOWS\SoftwareDistribution\Download\7c4116320ed01ecb77a4906ce6c7148c\update\update.exe
-> Action allowed
By: C:\WINDOWS\Installer\MSIDF.tmp
Via: C:\WINDOWS\system32\services.exe
-> Action allowed
By: C:\WINDOWS\Installer\MSI136.tmp
Via: C:\WINDOWS\system32\MsiExec.exe
-> Action allowed
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 13th, 2013 16:00
Hernan,
No, I hadn't noticed that thread.
First off, that thread talks about script shield not working with Firefox. In my case, script shield on Win7 doesn't appear to be working with anything --- neither FF nor IE --- so I have to wonder if that's the right "fix" for me (Script shield is working normally on my XP).
Another thing... I'm still using avast 7.0.1426... so I'm wondering if the patches in that thread are actually appropriate to use with this old build??? Regardless, I downloaded the one file (since as best as I can tell, the other 3 files did not appear in the specified directory). And (in limited testing), it made no difference --- my script shield was still silent. That being the case, I just went back to the file that had there all along.
The main shields (file, web, network, IM) are all working well for me in Win7. I think I see the mail shield occasionally. But nothing from the script shield. As for the behavior shield, I have UNCHECKED the box to "monitor the system for unauthorized modifications", as that box [on both 7 and XP] make the behavior shield a "chatty nuisance" for me. With that box unchecked, I get essentially no behavior shield activity on Win7. [I don't run any P2P programs, so that shield does nothing for me either.] Overall, I feel I have acceptable protection... and so I don't want to "tinker" with a "repair/reinstall".
As this avast shield discussion is off-topic for this thread, if you want to say more, perhaps we can do so privately.
AndyGreen
8 Posts
0
February 25th, 2013 00:00
Hi ky,
i found this in my system (under "manage add-on" - more info) :
Name: Shockwave Flash Object
Publisher: Microsoft Windows 3rd party Component
Type: ActiveX Control
Architecture: 32-bit and 64-bit
Version: 11.6.602.167
File date: Thursday, 7 February 2013, 7:06 AM
Date last accessed: Today, 25 February 2013, 15 minutes ago
Class ID: {D27CDB6E-AE6D-11CF-96B8-444553540000}
Use count: 5626
Block count: 0
File: Flash.ocx
Folder: C:\Windows\System32\Macromed\Flash
How do i remove this program?
thanks.
andy
ky331
3 Apprentice
3 Apprentice
•
15.2K Posts
0
February 25th, 2013 04:00
Andy,
The first question is WHY you wish to remove Flash? Flash is very commonly used all over the internet --- just about any animated video displayed online uses Flash. If you were to remove it, you would not be able to see such content.
You didn't specify your version of Windows (nor of IE), but based on the Flash version # 11.6.602.167 [rather than .168] and that the Publisher is Microsoft Windows 3rd party Component [rather than Adobe], I'm assuming you're running Windows 8 --- and probably IE 10. I don't use windows 8, but my understanding is that Microsoft has taken a more "hands-on" approach to Flash there than it did with previous operating systems and versions of IE. So you may want to wait for someone else here who knows specifically about Flash under Win8 + IE10.
For people using Windows 7 (or earlier) and IE 9 (or earlier) --- assuming you really do want to uninstall Flash (.ocx / ActiveX version for IE): With IE closed (i.e., not running), go to your Control Panel, Programs & Features (or Add/Remove Programs), locate & highlight Adobe Flash Player 11 ActiveX , to uninstall it.
If that is not successful --- or if you with to entirely rid your system of Flash (both the ActiveX from IE , AND the plug-in version for other browsers including Firefox & Opera), you can download Adobe's Flash Uninstaller: http://download.macromedia.com/get/flashplayer/current/support/uninstall_flash_player.exe .
After downloading, be sure to close all your browswers first, and THEN run the uninstaller.
EDIT: After writing this, I then found two other posts where you indeed confirmed you're running Win8 + IE10. This combination is certainly able to take advantage of the newest "animation" methodology called HTML5. IF websites use HTML5, and it's enabled in your browser, you will be able to see such pages without Flash. But if the underlying webpage is written specifically to invoke Flash, I believe you'll still need Flash to view it --- Flash is still very common all over the web, because IE8 and earlier do not fully/properly implement HTML5, and websites don't want to exclude these older users (which includes anyone still running XP).
AndyGreen
8 Posts
0
February 25th, 2013 06:00
Hi ky,
Yes, my system is Windows 8 (64-bit) using IE10 (32-bit) browser.
I was thinking to remove the Flash, to see if this could help solve the Java problems I am facing with my IE10.
More details of the Java problems are posted here:
en.community.dell.com/.../19493550.aspx
So, initially I suspected the Flash as shown in the adds-on could also be one of possible reasons causing the Java problems that I am facing now.
And just now I just found out that this Flash version in my system shown above should already be the latest secure version, right?
As you mentioned older Flash version will have some vunerability problems, you recommend installing the latest version in your posts above on
- "Adobe Flash Player 11.6.602.168 has been released (and Adobe AIR 3.6.0.5970 , for those who have/use AIR)."
- "For those who have/use Adobe's Shockwave Player: Adobe has released Shockwave Player 12.0.0.112 "
led me to think that I could be having an old version of Flash, needing uninstall and install latest updated version.
Are they not applicable to me right?
And Now anyway I just found out I can't remove the
Name: Shockwave Flash Object
Publisher: Microsoft Windows 3rd party Component
Type: ActiveX Control
becasue it is embeded in my Windows 8 system.
Even before I found out this, I did try the uninstall procedures you posted above, but the uninstall program will not remove this Shockwave Flash Object, no matter what I do or how many times I run sucessfully the uninstall exe file. Even I went into the system files to delete the Adobe/Macormedia holdes/files, Windows prompted these files can't be removed or deleted, only people allowed have the permission to delete.
so, i should leave this, and not attempting to uninstall it then. Do you agee?
As for my Java problems, could it be my system has already been hacked with an older version of (Win8+IE8) Flash in my system 1-2 mouths back? As my Windows 8 (+ IE10) was installed late last year, but latest patch up updates came only in Jan and Feb this year... Will it be that's causing or in some way causing the Java problems?? I am not sure.
Let me know. Thanks a lot!!
Andy