Windows Security Guide

The Windows® Security Guide provides information and resources to secure the Windows® operating system and networks with details about the latest vulnerabilities and fixes, articles and technical support. Get started by exploring the categorized vulnerabilites below:

BackOffice Software
Vulnerabilites in Microsoft BackOffice
General Software
Vulnerabilities in Software Applications
Internet Explorer
Vulnerabilites in Microsoft Internet Explorer
Internet Services
Vulnerabilites in Internet Information Server
Windows 95, 98 & ME
Vulnerabilites in Windows 95, 98 and ME
Windows NT, 2000 & XP
Vulnerabilites in Windows NT, 2000 and XP
Recent Security Issues

Cumulative Patch for Internet Explorer New
Microsoft has released a cumulative patch that includes the functionality of all previously released patches for Internet Explorer 5.01, 5.5 and 6.0, in addition, it eliminates two newly discovered vulnerabilities.
Updated: October 3, 2003

Buffer Overrun In RPCSS Service New
Three critical security vulnerabilities exist in the Remote Procedure Call (RPC) service that could allow an attacker to take any action on the system by sending a malformed RPC message to a vulnerable system.
Updated: September 10, 2003

Flaw in NetBIOS Could Lead to Information Disclosure New
A security vulnerability exists in the NetBIOS Name Service on Windows NT, 2000 and XP which could possibly allow a remote user to view random segments of memory on a user's computer.
Updated: September 3, 2003

Flaw in Microsoft Word Could Enable Macros New
A flaw in Microsoft Word 97, 98, 2000, 2002 and Microsoft Works 2001, 2002, 2003 could allow documents to run macros automatically bypassing the normal security restrictions.
Updated: September 3, 2003

Buffer Overrun in WordPerfect Converter New
A security flaw exists in the WordPerfect converter included with the Microsoft Office and Works suites that could allow an attacker to run the code of their choice by persuading a user to open a malicious WordPerfect document.
Updated: September 3, 2003

Articles and Utilities

Spyware Doctor Showcase
Spyware Doctor is an advanced spyware removal utility that detects and cleans thousands of potential spyware, adware, trojans, keyloggers, spybots and tracking threats from your PC.

Secure Password Generator
The password generator allows you to create random passwords that are highly secure and extremely difficult to crack or guess due to an optional combination of lower and upper case letters, numbers and punctuation symbols.

What is the index.dat file? And how can I delete it?
The index.dat file is hidden database used by Microsoft Internet Explorer 4, 5 and 6 to record information about Internet sites that have been visited and details of cookies being stored on your computer.

Privacy and Security on Windows XP
We begin our new series by looking at several ways you can your files and folders more secure. As most security feature on Windows XP require an NTFS file system we've included a tutorial on how to easily convert your drive.

Windows Security Overview
With the constant media bombardment about viruses, worms, hacking and crackers youd be forgiven for believing that you shouldnt touch the Internet with a ten foot pole for fear of someone stealing your identity and running off with your life savings.