Author Topic: Exploit for "Zero-Day" Vulnerability Detected by Microsoft  (Read 36336 times)

0 Members and 1 Guest are viewing this topic.

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #30 on: April 03, 2007, 07:40:37 PM »
This is all I could find.

Description:
rthdcpl.exe is a process belonging to the Realtek HD Audio Control Panel and is bundled alongside Realtek sound cards and audio hardware. This program is a non-essential process, but should not be terminated unless suspected to be causing problems


Can you get an update?
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #31 on: April 03, 2007, 07:46:39 PM »
This is why Microsoft takes so long to issue fixes- if it rushes them out like today, it'll bugger up something else at the same time it fixes the problem.

 >:(
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline igor

  • Avast team
  • Serious Graphoman
  • *
  • Posts: 11808
    • AVAST Software
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #32 on: April 03, 2007, 07:53:28 PM »
Hm, interesting. Yes, (the updated) user32.dll now has the same base address as hhctrl.ocx. I wouldn't think it should be a problem, however... that's why they are DLLs - they are relocatable.

Maybe the system doesn't like to relocate its system libraries... but I'd expect user32.dll to be loaded before hhctrl.ocx anyway...
Strange.

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #33 on: April 03, 2007, 08:02:48 PM »
I've got the same process, and so far no problems (Vista HP).
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

Offline johnny223

  • Full Member
  • ***
  • Posts: 118
  • Go Avast!!!
    • Slick Guides
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #34 on: April 03, 2007, 08:48:48 PM »
Oops! What does this mean?  ???



I have exactly the same problem too!  and i do have the realtek audio as audio driver, for now i just restored the computer back to before the update, but i dont know how to fix this :'(
You can do anything you set your mind to.

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #36 on: April 03, 2007, 09:07:03 PM »
Have you tried the hotfix Frank? does it work?
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

Offline drhayden1

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 3233
  • Avast & Garfield-Best Protection
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #37 on: April 03, 2007, 09:08:28 PM »
thanks for the info freewheelinfrank...didn't get the error as some of you got since i don't have the realtek audio as audio driver on both of my computers..they must of rush this patch out and now they have another problem-way to go again microsoft
« Last Edit: April 03, 2007, 10:31:12 PM by drhayden1 »
Gateway Laptop-AMD Phenom™ II Quad-Core Processor N830 (2.1GHz)-5000MB Dual-Channel DDR3 1066MHz Memory-ATI Radeon® HD 5650 Graphics with up to 1024MB of dedicated memory-500GB 5400RPM SATA hard drive-Windows® 8 Pro (64bit)-Windows Live Mail-Kaspersky Pure 3.0-WinPatrol Plus....

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #38 on: April 03, 2007, 09:11:17 PM »
Quote
CAUSE
This problem may occur after you install security update 925902 (MS07-017) and security update 928843 (MS07-008). The Hhctrl.ocx file that is included in security update 928843 and the User32.dll file that is included in security update 925902 have conflicting base addresses. This problem occurs if the program loads the Hhctrl.ocx file before it loads the User32.dll file.

Quote
RESOLUTION
Hotfix information
A supported hotfix is now available from Microsoft. However, it is intended to correct only the problem that is described in this article. Apply it only to systems that are experiencing this specific problem. This hotfix may receive additional testing. Therefore, if you are not severely affected by this problem, we recommend that you wait for the next Windows XP service pack that contains this hotfix.

To resolve this problem immediately, contact Microsoft Customer Support Services to obtain the hotfix. For a complete list of Microsoft Customer Support Services telephone numbers and information about support costs, visit the following Microsoft Web site:
http://support.microsoft.com/contactus/?ws=support (http://support.microsoft.com/contactus/?ws=support)
Note In special cases, charges that are ordinarily incurred for support calls may be canceled if a Microsoft Support Professional determines that a specific update will resolve your problem. The usual support costs will apply to additional support questions and issues that do not qualify for the specific update in question.

Translation:

CAUSE
We goofed up.

RESOLUTION
We have a patch to fix the goof up, but it may goof up your computer even more, so we recommend you wait for the next blue moon XP service pack, or contact customer support where we will tell you how much we're going to charge for fixing our goof up.
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline Marc57

  • Avast Evangelist
  • Super Poster
  • ***
  • Posts: 1944
  • KISS Rules The World!!!
    • KISS Army
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #39 on: April 03, 2007, 09:27:23 PM »
They're actually going to CHARGE to fix a problem THEY caused??   ???  ???
You Wanted the Best You Got the Best the Hottest Band in the World KISS!!!

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #40 on: April 03, 2007, 09:30:07 PM »
Quote
Have you tried the hotfix Frank? does it work?

Quote
To resolve this problem immediately, contact Microsoft Customer Support Services to obtain the hotfix. For a complete list of Microsoft Customer Support Services telephone numbers and information about support costs, visit the following Microsoft Web site:

In special cases, charges that are ordinarily incurred for support calls may be canceled if a Microsoft Support Professional determines that a specific update will resolve your problem.

Translation:

You want us to fix our goof up? Let's talk money! Hey, maybe the call centre worker Microsoft Support Professional will let you have it for free if he's had a good day and is feeling generous.  :-X
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46317
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #41 on: April 03, 2007, 09:38:12 PM »
Frank your translations appear to be your attitude toward MS not their official policy.
I've yet to pay a dime for any problems with a Microsoft problem that directly traces back to their
product or a fix of a product.....
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, AvastOmni 21.6, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #42 on: April 03, 2007, 09:45:17 PM »
I think my translations are a fairly accurate paraphrase of what I read.

My attitude to MS is purely ad hoc: to ask customers to phone a national rate phone line (and wait half an hour for an answer, no doubt) and then maybe pay for the privilege of receiving a hotfix really sucks.

I don't know what sort of attitude you were expecting in this situation, but scoffing at Microsoft seems reasonably justified.  >:(
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 46317
  • 61 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #43 on: April 03, 2007, 09:50:14 PM »
Quote
I don't know what sort of attitude you were expecting in this situation, but scoffing at Microsoft seems reasonably justified.
Have you called MS ?    If so, where you charged?
False positives aren't anything new and this isn't any different. I'm sure if this related to Fireox, your words would be a little kinder.  :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 11 Pro v21H2 64bit, 16 Gig Ram, 1TB SSD, AvastOmni 21.6, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline johnny223

  • Full Member
  • ***
  • Posts: 118
  • Go Avast!!!
    • Slick Guides
Re: Exploit for "Zero-Day" Vulnerability Detected by Microsoft
« Reply #44 on: April 03, 2007, 10:01:08 PM »
i cant find the link to the hotfix file ???
You can do anything you set your mind to.