Microsoft Warns of Word Vulerability
6 December 2006
Microsoft is urging everyone to avoid opening Word documents from unknown sources due to a serious and as yet un-patched flaw that allows hackers to remotely compromise a machine sources said today. Hackers are actively exploiting the zero-day flaw, however risk to those who do not accept or open word documents is still very low. Microsoft is working on a patch at this time. Experts found the memory corrupting error in the software from the few attacks that were already occurring. The flaw affects several versions of Word including Word 2000, 2002, 2003, Word Viewer 2003, Word 2004 for Mac and Word 2004 X for Mac. Microsoft Works 2004, 2005 and 2006 are all affected by this vulnerability as well. All users of Word products are highly advised to not open any documents received from unknown sources or unexpectedly from known sources to avoid problems. A patch will hopefully be released on the next patch cycle from Microsoft but no official date exists at this time.

Microsoft November Security Updates Available
14 November 2006
Microsoft’s monthly patches are available for download today, with 6 published security advisories, and addressed thirteen vulnerabilities affecting various Windows and Internet Explorer bugs. Some of these flaws being patched are already being exploited in the wild, so installing these updates is highly recommended for security and stability of your system. You may download the updates as usual from Windows Update or you may download the IT distribution ISO with all patches for various versions of Windows. The ISO disk is handy for users with multiple computers in the home who do not run windows update on automatic.

iTunes 7.0.2 Relased Today
2 November 2006
iTunes version 7.0.2 was released from apple today. The small update primarily adds support for the 2nd Gen iPod shuffles to be released this Friday. From an apple rep the update also includes “iTunes 7.0.2 adds support for the Second Generation iPod shuffle and addresses a variety of stability and performance issues found in iTunes 7 and 7.0.1.”

While the statement from apple is somewhat vague, any performance or stability updates will come welcome to any users of iTunes 7. Under most systems the Win32 version of the software is highly lacking in both of these features, with most users reporting an unresponsive interface and multiple crashes. During our tests, the new version of iTunes does seem to offer slightly better UI and network performance, but more needs to be done to bring the software up to the usability and speed of previous iTunes versions. This update is recommended to all iTunes 7 users, and can be downloaded from http://www.apple.com/itunes/download/

Firefox 2.0 Released Today!
21 October 2006
Firefox 2.0 is being released today, you can download it by clicking the link above or by going to http://www.mozilla.com/en-US/firefox/. The new browser has had many additions and bug fixes added since 1.5.0.7. Some of the highlights that I have found are:

• Larger search bar that helps when searching for multiple words or phrases
• Better extension and theme management, automatic add-on compatibility and update checking
• New RSS reader functionality with options for set reader or to choose when an RSS link is clicked
• A new tab drop down that lets you see and select between all open tabs
• And many more!

If you haven’t already, it is highly recommended that you install this new version, which can be downloaded from http://www.mozilla.com/en-US/firefox/

Security Notice to iTunes 7 Users
14 October 2006
Important notice to iTunes 7 users. I just today uncovered this recommendation from the apple website recommending that iTunes 7 users should enabled Terminal Services in Windows XP in order to get iTunes 7 to recognize their iPod´s. However, Apple does not mention anything of remote access or of possible security holes being opened by enabling this service. Users behind a hardware firewall should be ok, but everyone should be aware that this service enables remote desktop connections to Windows Xp Pro on port 3389. If you have insecure users or passwords on your system and have this service enabled, it can allow any remote user to gain full access to the machine and all network resources. If you are running this service to support iTunes, but not for remote access you can block access to the service through your router or firewall or you can disable connections through the Control Panel>System>Remote Tab, uncheck "Allow users to connect remotely to this computer". This will allow the service to run while denying stray users from logging on to the system, however, it will not prevent anyone with the administrative password from logging onto the system remotely. If you have any friends running iTunes 7 on windows you may want to notify them of this potentially serious security issue. If you would like to read the article from Apple you can see it here.

Microsoft October Security Patches
10 October 2006
Today is Microsoft’s monthly patch day which includes several updates. A few are MS Office related, but there are some Critical Windows 2000, XP, 2003 patches as well. All users are recommended to update their machines through Windows Update or tech heads and professionals can review and download from the Review Summary available here. Although only 6 updates are listed as critical, the Moderate and Low updates also contain possible Remote Code Execution vulnerabilities in ASP.Net, so if you are running .Net applications or services, you should also install this update as well.

Fujitsu now issuing battery recall
4 October 2006
More battery recalls today as Fujitsu recalls 287,000 laptop batteries that could burst and catch fire according to a company spokesman. The following models are included in the recall, and if affected you should stop use and contact the company immediately.
The following models sold in the US are being recalled:

• Lifebook P1510, P1510D, P7120, P7120D
• Lifebook S7020, S7020D, S7025, S7025D
• Lifebook C1320, C1320D

There are also several Japan sold models that are not listed here, so if you have imported a laptop from Japan or brought one back over with you check the companies recall website for details. If g by the recall or to find out more information Fujitsu´s recall website can be accessed here.

Sony & CSPC now to recall batteries
2 October 2006
The Consumer Product Safety Commission (CSPC) today confirmed that Sony will now be issuing a recall of it's own on lithium-ion battery packs. The recall is expected sometime this month and will include all possibly defective battery packs, although the batteries expected to be in the recall will only be for laptop computers contrary to the Consumer Reports blog stating that other electronic devices would be included in the recall. Sony has been working closely with the CSPC on this issue and they will both work jointly on the recall. We will keep you posted on any developments to this and other stories relating to the recall of lithium-ion batteries. To read the full article of this story this link will take you to the original CNet article.

Dell Laptop after Lithium-Ion battery fire.

Toshiba recall now official
29 September 2006
Toshiba is now the 4th major PC manufacturer to recall lithium-ion batteries currently in consumer use announcing today that they will be recalling some 830,000 batteries on the market. The batteries covered under the recall were manufactured for use in Toshiba portable computers between March and May of 2006. Unlike the other 3 recalls however, Toshiba does not list the recall as a safety concern saying that the batteries do not overheat or pose any safety related issue. The batteries on some of their portable computers will simply stop working, no longer accepting a charge or supplying power to the computer. The batteries affected were sold with several models of Toshiba laptops and accessories, although the company said that all units released after June 1, 2006 had been fixed by the supplying "third party" vendor, with that "vendor" again being Sony. With this being the fourth major recall of Sony batteries, the vendor is now working closely with all recalling companies as well as the Consumer Products Safety Commission (CPSC) to facilitate a fast resolution to this fiasco for the electronics giant. If you own a Toshiba laptop or accessory that may have been manufactured between March and May of 2006, you can check the companies homepage for the "Battery Exchange Program" or go here to directly access the recall page for listed models and systems affected by the recall.

Lenovo to recall half a million batteries
28 September 2006
Lenovo today announced that it will be recalling 576,000 laptop batteries that could overhead & burst. This makes Lenovo the third PC manufacturer to recall laptop batteries behind Dell and Apple. Of the batteries being recalled, only 168,500 of the offending packs were sold in the US that had been used in IBM ThinkPad notebooks. The problem first appeared when a consumer's IBM ThinkPad T43 caught fire in Los Angeles International Airport right as he was boarding a plane. The batteries being recalled were sold between February 2005 and September 2006. The following models may have a battery subject to recall: ThinkPad R Series (R51e, R52, R60, R60e), ThinkPad T Series (T43, T43p, T60) and the ThinkPad X Series (X60, X60s). Since these batteries can also be used with ThinkPad T4x or R5x series systems, consumers who purchased an extra battery, or received a replacement battery between Feb 2005 and Sep 2006 may also have a battery included in the recall. Anyone owning the models above are advised to discontinue use of the battery and contact Lenovo for a replacement. The information on the recall is available from Lenovo's website at http://www.lenovo.com or you can go here to be directed to the recall page for the US.

IE Buffer Overflow Exploit
21 September 2006
Today a nasty zero-day exploit was found in IE which allows remote code execution, and worse, allows downloading of malware to your PC. The problem comes from a bug in the way IE renders the vector graphics VML picture format.. Luckily, by un-registering the dll which processes these files, you can prevent infection until Microsoft releases a patch which will probably be on their next update cycle. According to the security community, several thousand websites are already using this exploit to load malware onto vulnerable systems. Some were found to be downloading over 50 different malware applications to user PC's during testing. It is highly recommended that all users take the necessary steps to prevent infection immediately. You can find instructions for protecting your PC here at Steve Gibson's excellent security website http://grc.com.

"Update" Thanks primarily to public outcry, Microsoft has released a patch for this issue outside of their usual patch cycle as article KB 925486. You can use Windows Update or download the patch manually here. Please note that if you have used the techniques above to disable the rendering dll, these changes will need to be undone prior to installing this update.

New Website Goes Live!
18 September 2006
Our new website went live today changing from our old and dated table based site to a new CSS & XHTML site with more JavaScript and hopefully soon, some AJAX applications. Until we get everything together we apologize in advance for any dead or seemingly identical pages. That will be our CSS templates that have yet to be completed, but were put up in order to pass link testing. If anyone has any serious formatting problems or obvious errors on the site, you are welcome to let us know by emailing us at admin@onsitepcr.com. We welcome any and all email you may send on this matter. While we have tried to bring every browser possible under support, there are several legacy browsers still in use that may have some trouble rendering the site correctly. Right now we are testing the site in Firefox 1.0.7 ­ 1.5.0.7, IE 5.5, 6.0 & 7 RC1, Konqueror 3.5.1 and Opera Mini. We are still making appointments and on the road for your PC needs.

iTunes Rollback
16 September 2006
Thanks to a flood of complaints, and a buggy first release of iTunes version 7, many users are inquiring how to revert to the previous iTunes version 6.0.5. Primary bugs being reported from the newest iTunes release is crashing, inability to upload certain podcasts or tracks to your iPod, or inability to play certain podcasts or tracks after uploading. If you are also having trouble with version 7 or want to rollback to the previous version to avoid trouble, this link to the apple forums has instructions for rolling back your iTunes installation to the previous version.

"Update" Apple has quietly released a small update to iTunes bringing it to version 7.0.1 which can be downloaded at http://www.apple.com/itunes/download/. While some do report this update as fixing the issues, an equal number also reported no effect. However if you are running iTunes version 7, it is recommended that you update.

Firefox 1.5.0.7
15 September 2006
Mozilla released their latest update to Firefox today bringing it to version 1.5.0.7. It is recommended that all users upgrade to the newer version for bug fixes and overall stability. It is now available through the Firefox updater or it can be downloaded manually from the Firefox website at http://www.mozilla.com/firefox/.

Patch Tuesday
12 September 2006
This being the second Tuesday of the month, makes today patch Tuesday.  If you do not have automatic updates enabled in your Windows installation, head over to Windows Update to download the newest patches and bug fixes. There are several serious updates and are highly recommended for all windows users. You can also download the September Patch ISO disk for distribution through your network or business here.