Forums are up and running — Tech-linkforum.com

The Forums are now available, much and improved as they are.   They even have it’s own domain http://www.tech-linkforum.com.  I ask all my readers to go over there  and introduce yourself.   I am quite curious to chat with my readers in the forums.  I encourage all my readers to spread the word and let people know about this new site so we can help each other out.    Let’s make this community a good community so we can all benefit from it.  I also have a place for your to communicate with me on any site improvements that you can recommend.

Ahhh Yes I treat WordPress Like Windows

In one of my previous blog posts we talked about Robert Scoble’s problem with a Hacker. I wanted to talk about treating Wordpress like Windows. Now after a few days of watching what people are saying it looks like it is a worm that is infecting blogs.    Now’s let’s be clear about this I am using Windows and want to remind that every month which is Today, the Second Tuesday of each month to be more exact I upgrade almost immediately.   I don’t wait a day or two to see what others are saying about it, I just upgrade.

Why is that so important, like Virues and Malware authors who use known exploits to gain a foothold on your system for the end results to have your system for what ever they want like a Botnet or even  just to scare you into buy a fake or fraudulent product.   I’ve have seen many systems where the home users who those who think they are savy enough not to upgrade instantly and think their systems will be fine for a couple of days to weeks without upgrades.  This is simply not true, You’ve heard of Patch Tuesday from Microsoft talking about this from time to time.  Maybe you heard that from a friend what to expect this Patch Tuesday.   I would like to introduce  exploit Wednesday in which you can bet there are going to be Malware Authors who will of figured out what was patched and why and take advantaged of that Vulnerability on older systems who haven’t yet patched and use that for their own Nefarious reasons.

Microsoft Get Ready for Patch Tuesday. 6 Bulletins

According to Arstechnica there will be 6 Bulletins and each of them are very interesting:

• Bulletin 1: Critical (Remote Code Execution), Windows
• Bulletin 2: Critical (Remote Code Execution), Windows
• Bulletin 3: Critical (Remote Code Execution), Windows
• Bulletin 4: Important (Elevation of Privilege), Virtual PC, Virtual Server
• Bulletin 5: Important (Elevation of Privilege), ISA Server
• Bulletin 6: Important (Remote Code Execution), Office

It looks like there will be another Directx Patch for those who have Directx 7 through 9.0c.  It also seems they will be Patching the Virtual PC and Server and ISA Server.    Microsoft will also be patching 2007 Microsoft Office System Service Pack 1.  They will also Be Releasing 14 different patches for non Critical status.

The vista-users-unaffected.ars” target=”_blank”>Directx Flaw that was reported in May is reportedly being patched and that is why we have these Directx updates that are comming down from Microsoft.

So Now is the time to get Autopatcher updated to the lastest updates and schedule a time next week for you to test and install these updates.   I would recommend updating your anti-virus and Firewall software if you have any, if not it is time to get them and install them.

The Frustrations of Wordrpess 2.8

Wordpress 2.8 was released Yesterday morning, and by Yesterday afternoon people were complaining about it.  Some of the issues seemed to steam from a minor template change in 2.8 to prevent people from editing or using Plugins.

Now I have talked about backing up important data, that includes your website.   You will never know when that back up software will be valueable and when you need to restore it.

Just like everyone else I have had problems with my ability to update my blog or update my Advertising.  Although unlike others who have a lot of widgets on the sidebar for there users, mine are html and not a plugin version.   Although I didn’t have as much problems as others, I did however have problems with the Back up process.   I used Wordpress Database Backup and I had the file that it gave me but the PHPMyAdmin would not restore the database that I was given from the plugin.   So in the process of trying to fix my database, I had a few hours of downtime on my blog.  If your a regular visitor you might of seen the message “Database Error” when you visted my site.  I have since then fixed the problem With the help of my support team to get my website back up and running.

What will happen on April 1? Conficker discussion!

I saw that F-secure has posted what a Question and Answer on the Conficker Worm.  I wanted to talk about this a little myself:

Q: I heard something really bad is going to happen on the Internet on April 1st! Will it?
A: No, not really.

Q: Seriously, the Conficker worm is going to do something bad on April 1st, right?
A: The Conficker aka Downadup worm is going to change it’s operation a bit, but that’s unlikely to cause anything visible on April 1st.

[Via F-secure Website]

I am like everyone else, I really don’t know what will happen it is always going t to be media exposure when it comes to Worms, Viruses, or Trojans.  Virus Writers whoever “THEY” are, will always want to update there infected systems to keep the virus(Also worms, and Trojans) on peoples systems.   This is the way of security firms will always have to predict them, keep up with them, or just follow them.  This will never  change because as virus writers want to find even more ways to infect systems that is the necessity of Anti-virus Software.

I don’t know what will happen on April 1, you most likely will be fine if not you won’t know it until you try to update your system or update your anti-virus software.  One way you can find out if your infected is by trying to serf to security vendors like F-secure, Norton, and Kasperky.  If you Can’t get to those sites then you most likely have a Virus or Worm, and it could be this worm!!

1. Make the worm harder to detect — This is a common practice they want to be able to hide the worm for as long a possible.  So they will always tweak it to make it that much hard to detect and remove.

Thinking back to PIFTS.EXE.

Thinking to this very incident looks to something out of the movie “Lemony Snicket’s A Series of Unfortunate Events“.  I won’t go into much detail but here is what I want answers to about the PIFTS.EXE.  You see after I have read a great article talking in detail about this, I have also come to the conclusion something isn’t right.

The blog owner known as Anshar in the forums on the Symantec points out some key events. He wanted to point out that the users who were posting were not violating the TOS and was posting questions that look to asking about this file. See screen capture of what I took. This one picture doesn’t prove his theory in whole, but does bring up some suspicions. This actually might be them trying to find a ’scapegoat’ so to speak. He also talks about what others are asking? What is PIFTS.EXE? People seem to still have not be answered that question.

Although, in Norton’s defense there seems to be a lot of information that they have to sort through. I’ll admit this information people are asking should be really simple to find in the Symantec Databases somewhere. I will not say they are hiding anything major but I do think something is going on that we are not aware of. Here’s some other thoughts to considers? If Norton needed to find out who was using Windows 7, couldn’t they of asked or even made a simple site redirect to find that information, after all anytime you visit a site you have that information sent to the stats. I could in theory find out how many visitors are visiting from Macs and how many are on older systems. That would be very easy to do with Google Analytics.

How do you like your Cricket USB Modem?

Lately I talked about the A600 USB 3G modem and Now I want to hear from the Readers?  You see I can’t do my best reviewing these with comments from the readers, that being you.

Click the picture to send me email, just remember to replace “AT” with “@”.

So I want to hear what you think about either the USB UM100 Modem or the A600 USB 3g Modem?  Here a re a few things to answer when you write your email.

Something will go to the people who email me?  I want to publish some of these comments on my blog for all to read.  I want to hear if what I am publishing helps you?  I will even give your credit as  to who wrote it.  If you have a site or something you want to promote by all means add that to your testimonial.  Here’s the basic questions that should be talked about:

• Which one did you buy? (Cricket USB A600 or Cricket USB UM100)
• Did you Upgrade from the Cricket USB UM100 to the Cricket USB A600?
• Are you using it for travel or Primary internet?
• Is it for business or Pleasure?

Microsoft Releases the Patch Information for March

Microsoft Has Released the Patch information For march and This is what is expected to be patch on March 11, 2009:

• Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (Kb949029) — This security update resolves several privately reported and publicly reported vulnerabilities in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.  (affected System : Microsoft Office)

Cracking and Warez sites are Host of Trouble!!

It is nothing to laugh at and should be understood that gamers have no freedom right now.   That said this new Variant to Virux Trojan is in regards to Win32/Vitro Trojan.  It seems tobe infecting .exe and .Scr files just like this.

According to Trend Micro:

The downloaded malware include variants under the FAKEAV, TDSS, and VUNDO families. Infection chains, however, are notable for the presence of VIRUT and VIRUX malware. VIRUX and VIRUT attacks were initially about the volume of infected PCs. The numbers are massive enough to worry Web users and security researchers: around 20,000 PCs are infected per day
Read more: “Crack Sites Distribute VIRUX and FakeAV“

Now it seems to be more and more sites with getting computer infected. It also seems the Malware writers are using these servers for helping infect essentially gamers computers. So for the time being, if you have a favorite game and you want to:

• No-CD Crack (This is good for those who want to play the game without the CD)
• Key Gen Cracks (This is used for pirated version of a game)
• Update Cracks (This is used to prevent CD checking or Also prevent Version Checking)

PolyMorphic Win32:Vitro Most Viraulent Virus

This seems to be an virus that is getting some people hit hard.   I wanted to blog about this because of the nature of Virus and Trojans.   I have read reports that this might be from Online Movies, and I have to say this is one reason why you must stay away from certain online movies.  I am going to take a guess that this virus requires a special CODEC, and you downloaded it and installed it.  It Could also be the update the Adobe Flash player idea to but still results in getting the Virus.

As I said before you take a risk when you go to sites you don’t trust or know anything about.   You also should know that if you need a “SPECIAL” codec, you should just go on to another site.  These sites that claim they need this special codec means only one thing they want to install something without your Knowledge.

So what is this Virus:

The Virut family of viruses uses polymorphism to hide from all anti-virus protection, it infects executable files. File infection makes it very hard to repair a system that has been infected. W32/Vitro injects code in running processes and hooks the following functions in ntdll.dll which transfers control to the virus every time any of these function calls are made.

ThePirateBay might be blocked in the US

I was looking around on Google and thought I just for giggles check out the Piratebay complaints. I tried going to the site and here’s what Popups:

I tried on OpenVPN and my Local ISP, It keeps saying that. I then tried on my Cricket Modem and it tells me the connection has been interrupted, like something stops the connection in the first place. I can ping it and I can Tracert the Site but I can’t even view it. I would like to know if Anyone else is having this problem also. Although I’ve not checked Thepiratebay.org complaints for quite some time because I’ve been so busy with my website. If you want to watch your favorite shows check out these sites like Hulu, CBS, NBC, ABC, ABC FAMILY and TNT.TV for free. I am just curious as to what happened and does this have anything to do with Net Neutrality?   Anyway I wanted to talk about this and see what people are saying.  Anyone know what is going on?  Let’s talk about this and help everyone by saying what you know.   I don’t know if Thepiratebay.org is down but I do wonder if someone is preventing people from getting to the website.   I’ll update when I have more information.

Microsoft released KB960714 to fix THE IE Problem

This is the update to fix the IE Vulnerability and if you have any questions please make sure to check my other post about this little update.   This was sent out today and should be patch ASAP, on all systems.  If you want to patch the easy way, I suggest downloading Clone to Autopatcher.  This seems to help make an ISO file on a DVD so you don’t have to update a system the old way.

Microsoft to Release KB961051 on the Dec 17, 2008

According to McAfee and I will quote:

December 16, 2008: Microsoft has announced an out-of-cycle patch release for a critical, remote-code-execution, vulnerability in Microsoft Internet Explorer (CVE-2008-4844). The patch, to be released on December 17, will address the vulnerability across multiple versions on Internet Explorer running on supported Windows platforms.

[via McAfee Threat Center]

From what I am understanding it will be KB961051 and will be a critical update on all Windows platforms.  Microsoft issued a security advisory for this on there Technet support website.   This will probably be put online sometime tomorrow and will be available to download after 10am PST although this is just a rumor because when I go to that article they talk about the work around and how to fix it temporary until they release the patch.  This is releated to the IE Vulnerability that is in the wild and has been causing havok on the internet.

WordPress 2.7 is available.

Having installed the latest update, I must say this new dashboard is quite good.  I love the new dashboard.  So lets take a quick look at what you can do:

Click Image to View it in full screen!!

After I installed it, this is what it was like.   I then decided to change it around to show you what it looks like now.  You have the option of changing the right row and also the windows to where you want.  Like this:

Click Image to view it full screen.

As you can see you can change so much stuff on the dashboard it is like having your own very wordpress operating system on your system.   You can customize what you want where you want.   I like this new look.   I’d thought I show you the Wordpress 2.7 Dashboard and show just how nice this looks.   I want to hear everyone  thoughts on this new dashboard do you like it or hate it?

The Important Windows patches Released Today

As many of you know we talked about the Non-critical patches that Microsoft will release today.  IF you want to read those please go and check it out.   I’ll be talking about the REALLY important ones that Microsoft has kept tight until now.    These are the more important ones but I will list the ones that I previous talked about to better help people recognize the non-important ones:

KB955839

KB957388

KB890830

KB905866

These are just the tip of the iceberg. although this list are not A lot.  I’d wanted to let people know about what people coin “Exploit Wednesday“.  I really don’t know if this is a Myth or actually does exist but I’d figure we discuss the problems associated with installing the critical updates and try to tell you which ones should be installed As soon as possible.  Though people have in the past used a Virtual Machine to see if there is any problem, that should be your first step if you don’t want to have any problems with these updates.  I don’t suggest testing it more than a couple days.  Here are some good Virtual Machine software to try out yourself:

Upcoming Patch Tuesday

I wanted to get prepared for the updates for this Tuesday and I thought I’d go through them and list what Microsoft said about each.   These are what’s been said on Technet and I am sure there will be more.   Each one of these don’t look to serious but I will post Tuesday if there is anything I’ve missed on this post.   As you might know this is not set in stone but just the direction of Microsoft for this Months Release.

KB955839

Update for Windows Server 2008, Windows Vista, Windows Server 2003, and Windows XP

Install this update to resolve an issue that is caused by revised daylight saving time laws in many countries. This update enables your computer to automatically adjust the computer clock on the correct date in 2008. After you install this item, you may have to restart your computer. This update is provided to you and licensed under the Windows Server 2008 License Terms.

KB957388

Update for Windows Server 2008 and Windows Vista

Install this update to resolve a set of known application compatibility issues with Windows Server 2008. After you install this item, you may have to restart your computer.

Facebook : Beware Spam for breakfast. (Virus)

In today’s society, we’ve been to complacent with people with people clicking links for the social group. In one such article on Channel Web, a nice little blog, says this:

The worm was discovered by IT security provider Kaspersky Lab, which said the threat, Net-Worm.Win32.Koobface.b, is targeting Facebook users by creating spam messages and sending them to the infected user’s friends via the site.

“Unfortunately, users are very trusting of messages left by ‘friends’ on social networking sites,” said Alexander Gostev, senior virus analyst at Kaspersky Lab, in a statement. “So, the likelihood of a user clicking on a link like this is very high.”

[Via Channel Web]

This seems to be a problem people thinking that a link someone sends them is a real good link but actually is a link to a video site. According to this article the links people are sending are actually a fake video link, telling you have to download some update to flash player, by downloading this program. The user gets involved with the virus and the fun begins. So how can you prevent this from happening, two ways one is a very good group of software to make sure you have the latest and greatest video codecs. That too can be something they’ll say you need and if you’ve already installed this list of codecs then you know they’ll not telling the truth and you can quickly get away from the site laughing.

Trojan.PWS.ChromeInject.A is not a Firefox plugin.

A new type of malware designed to harvest web passwords has been detected in-the-wild by BitDefender’s antivirus research labs. This latest e-threat – called Trojan.PWS.ChromeInject.A – is intended to be delivered onto a compromised computer system by other malware for subsequent download into Mozilla Firefox’s Plugin folder. Once installed it gets to work every time Firefox is started.

[Via Bitdefender]

So having seen this I thought I’d come up with ways around this to better protect yourself.  One way to prevent this from getting your sensitive data is to get a program like Sandboxie.   You could stop using Firefox that would be silly, because right now Firefox is more secure than Chrome and Internet Explorer.   I’d also suggest checking out my Anti-spyware page and Anti-Virus page and get some more protection.

The key to this virus protection is just be cautious of where you go and keep all you system update to date to prevent all this from happening.  It is also advisable to not have your passwords saved on Firefox, you should use something like Roboform, it is free  to download and try.  It will encrypt your passwords so if they don’t know the master password then they are out of luck.  Roboform is also good for coming up with some strong passwords.  Just some suggestions to prevent from people seeing your sensitive data, you don’t want anyone to get that data.

Are you patched, Secunia Says NO

Think you’ve got nothing to worry about, according to Secunia 98% of computers are not fully patched and are vulnerable to some kinda of attack.

So I wanted to talk about this a little and give you a few good ways to make sure you are patched.  There are several ways to get your system up to almost 100%.

Some things to do is make sure you have your Windows systems updated.  This is easy to make sure, if you have an internet connection you can just check for updates.  If you don’t know how to do it, it is quite simple, Just go here.    If you have Windows Vista all you have to do is hit Start and type in the search box “Windows Update” and hit Enter and you will be taken to the update page.

If you have a system that is off of the Net you could use the Clone of Autopatcher Program to do it for you.   You also need to update all your secondary programs such as Audacity, Open Office, and other programs that you use weekly.

Vista Sp2 Beta Still not up yet!

In my vista-sp2-dec-42008.html/”>Previous article I talked about how you could be in the Beta, and I just checked this morning. It looks like they took that article down. I don’t know if they are changing it around or what but it will be. I hope they fix this soon. I would like to start testing this on my Virtual Machine first before I install it on my real machine!!  I will update this when they do get it up and running.

GTA 4 Causes fatal error mma10, how to fix it!!

After seeing all this happened I thought I would help people out on how to fix it.   This seems to be a DRM problem according to some reports.  Others are thinking it is the Securerom.  Anyways the problem seems to be with the Rockstar Social Club and not to log in to that.  That will fix the problem, you will at least be able to play the single player game.  This is a temporary fix till the developers fix in the update.  This will also fix the Steam version of the game.

Microsoft issues Vista patches out of Monthly Patch Cycle!

Microsoft issues Out of cycle patch for Vista.   These patches are as Followed:

Kb957321

An update rollup is available for the Microsoft Windows Imaging Component (WIC) in Windows Vista or in Windows Server 2008. This update rollup resolves the problems that are documented in the following articles in the Microsoft Knowledge Base:

954708 An update to add support for the serialization of complex Extensible Metadata Platform (XMP) data types in the Windows Imaging Component

945060 There may be inconsistencies in the Extensible Metadata Platform (XMP) and Exchangeable Image File (EXIF) values for an image file in Windows Vista and in Windows XP

KB959108

The Windows Portable Device (WPD) API collects and transfers Software Quality Metrics (SQM) data to Microsoft servers. The SQM data is collected only on an opt-in basis through the Microsoft Customer Experience Improvement Program. An update is available that disables the collection and transfer of SQL data to Microsoft servers.

This update affects Windows Vista-based computers, Windows Vista Service Pack 1 (SP1)-based computers, and Windows Server 2008-based computers that are in the Microsoft Windows Media Player Customer Experience Improvement Program.

Cricket USB UM100 Broadband Wireless Modem Review.

The UM100c is No Longer Available, Please check out the Cricket A600 Modem Review Or the UM185 Broadband modem. The UM185 modem might be a replacement to the UM100.

After a full week of playing around with this USB wireless, I wanted to talk about it. So let’s break it down into pieces.

1. (USB Broadband A600 Modem card for Free after Instant online rebates and Mail in rebate Free shipping & first month free! Shop today.)
2. Installation –  The installation of the USB was not to difficult.  I did have to do some more steps than this:  Install the Software, then hooked up the USB device to the USB port.
3. Manual Activated the Broadband –  For some reason in my area they had several people have problems with the broadband activation.  So I had to activate it manually!!

After that all went well, I was on the internet just a cruising along.  I did however wonder why I was getting such a slow response speed.  When I went traveling I thought I would share some of my local results with you to better show you my speed.  All these test were done at

Did the Xbox Experience break netflix on Demand activation?

According to Google Trends people are trying to activate there Xbox Experience with Netflix.  This could be a problem for Netflix, I just tried and they are extremely slow in response.   I am willing to guess that later on tonight the Netflix will go down when everyone comes home from work and tries the new Xbox Experience with Netflix.   I’ve heard of problems with activating the Netflix on the Xbox 360, this will become 10 times as bad tonight when people want to hook up and try out this new service from Netflix.   Microsoft should of released this one day at a time for each time zone.   Some blogs talking about the problems that might come along with the update are:

• Columbia Tribune
• The Standard
• Joystiq
• Venture Beat

Although this is just a few that talks about the experience and Netflix problems there are going to be more tonight when people start to come home from work wanting this service.   I would bet over 100$ it will probably go down because to many request to sign up!! I hope they have the IT guys ready for this tonight or it will be a long night!!

AVG Detected a False Positive

According to Security and The Net:

An update for the AVG virus scanner released yesterday contained an incorrect virus signature, which led it to think user32.dll contained the Trojan Horses PSW.Banker4.APSA or Generic9TBN. AVG then recommended deleting this file; this causes the affected systems to either stop booting or go into a continuous reboot cycle. So far, the problem only appears to affect Windows XP, but there is no guarantee that other versions of Windows don’t have the same issue.

[Via Security and The Net]

I bring this up because this is a false positive according to AVG. AVG since sent out another update to there Database and you can go and update the database to get rid of this problem. If you need to restore that DLL check out the article Security and The Net, they got some excellent suggestions on fixing the problem.

If you’ve not been affected by this yet, you probably won’t be. It is yet unknown how many people have been affected. I’m blogging about this to tell people about this and to warn people that not all of warnings from AVG are true and that is why you should always ask before you delete or do anything to your system. I always USE google when it comes to these types of questions

Is Vista just Windows 7?

According to Steven J. Vaughan-Nichols from Computer World, He talks about how Microsoft is scared on Linux and that people are flocking to remove Vista off there Machines. I say otherwise, you see according to some experts like Mark Hall from Computer World, he states Vista is better than Mac OS X. So why do people say one thing and do another?

Now I know Vista isn’t what people expected and that it had high expectations when they first released it.  I think that is due to the fact Microsoft tried so hard to make Vista seem more than it actually was.  Now According to Ina Fried from CNET her post was about Windows 7: A better Vista?. In her post she talked about the features of Windows 7, and how Windows 7 is almost like Vista. I tend to agree because of the look from screenshots I’ve seen to make me think it will be Version 2 of Vista. I don’t think it is anything that will change from Vista to Windows 7. It will however be more ready to boot up and shutdown that is according to what Microsoft said to Ina.

Fake Wordpress update 2.6.4 steals data!

The hacked version of the file pluggable appears to be stealing the content of cookies on larger installations of WordPress. Sophos are now detecting this file as Troj/WPHack-A.

[Via Sopho's]

Apparently this little update is a rogue update.  According to Sopho’s and Craig Murphy’s blog, it is said to steal your data and send it to another site.  This hacked version of Wordpress is coming from wordpresz.org so if you happen to stumble onto this fake update, just delete it and go on with your blogging.   Craig talked about how when he logged it this fake update popped up.  So sometimes it is safer to do some digging before you apply an update especially to your Operating system.  Thanks to Sopho’s for telling people about this fake and dangerous problem.

Windows update is getting a revision!

According to Computer World, dated Oct 31, 2008 and I’ll quote:

“Over the next couple of months, we’ll be rolling out another infrastructure update to the Windows Update agent (client code),” said an unidentified Microsoft employee on the Windows Update team’s official blog. “This update makes it possible for users to install more than 80 updates at the same time.”

[via Computer World]

Now if your like me and have several computers who need to be updated at a given schedule, you sometimes worry about these updates that come along that might just break your system. I have been using a program call Offline Updater, which does what Autopatcher does really nicely. So why is Microsoft sending out this patch? Two reasons, one they want you to be able to update your operating System without hurting your system integrity.

Now lets talk about the integrity of having to reboot your system. You see, every time you reboot the system, it causes the system hardware some strain.  It is something like having starting up a car, sooner or later you will have the starter go out, because of to much start up.

Microsoft Fixes some Performance issues with Vista a Month early!

Update for Windows Vista (KB957200)

This is a reliability update. This update resolves some performance and reliability issues in Windows Vista. By applying this update, you can achieve better performance and responsiveness in various scenarios. After you install this item, you may have to restart your computer. This update is provided to you and licensed under the Windows Vista License Terms.

Now if I know Microsoft, this update actually helps with some versions of programs that is currently out. I am just curious as to why they sent this updates out early. Has Microsoft changed there tactics with updates? Have they decided to send them out as soon as they are done?

Microsoft Releases MS08-062 to the Public a Month Early!

Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution (KB953155)

This update resolves a privately reported vulnerability in the Windows Internet Printing Service that could allow remote code execution. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.

This update is rated Important for all supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, and Windows Server 2008. For more information, see the subsection, Affected and Non-Affected Software, in this section.

The security update addresses this vulnerability by changing the way that memory is allocated within the Internet Printing Protocol (IPP) service. For more information about the vulnerability, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry under the next section, Vulnerability Information.

[via Microsoft Bulletin]

Now from what I understand, if you have a Network attached printer on your system this would make you more vulnerable to someone taking control over your system. So this patch is supposed to fix that. I am recommending to all to update this and fix this update ASAP. I do not know if you don’t have one what that would do so just install this update, because you will undoubtedly still be runing the Internet Printer Protocol even if you don’t have a printer.