LinkBack URL
About LinkBackshttp://www.eeye.com/html/Research/Ad...D20040210.html
Shame it took MS 6 months to patch...
http://www.eeye.com/html/Research/Ad...D20040210.html
Shame it took MS 6 months to patch...
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
I swear they employ someone to name these exploits/flaws in the most awkward way possible!
"Microsoft ASN.1 Library Length Overflow Heap Corruption"
Good lord
Home cinema: Toshiba 42XV555DB Full HD LCD | Onkyo TX-SR705 | NAD C352 | Monitor Audio Bronze B2 | Monitor Audio Bronze C | Monitor Audio Bronze BFX | Yamaha NSC120 | BK Monolith sub | Toshiba HD-EP35 HD-DVD | Samsung BD-P1400 BluRay Player | Pioneer DV-575 | Squeezebox3 | Virgin Media V+ Box
PC: Asus P5B | Core2duo 2.13GHz | 2GB DDR2 PC6400 | Inno3d iChill 7900GS | Auzentech X-Plosion 7.1 | 250GB | 500GB | NEC DVDRW | Dual AG Neovo 19"
HTPC: | Core2Duo E6420 2.13GHz | 2GB DDR2 | 250GBx2 | Radeon X1300 | Terratec Aureon 7.1 | Windows MCE 2005
Laptop: 1.5GHz Centrino | 512MB | 60GB | 15" Wide TFT | Wifi | DVDRW
Didn't see that one comingNew critical Windows flaw discovered
Originally Posted by Saracen
if i had a penny for every time............ you know the rest!
HEXUS|iMc
This is the "still abit of a newbie" bit of me showing through here but,
Why does it take Microsoft so long to correct such flaws as this ??
Dave.
SPEC:
Windows 7 64Bit / Core i7 920 (D0) @ 3.8Ghz (o/c) / CPU Cooling -Corsair H50
6Gb Corsair DDR3 (cas 7) @ 1814Mhz / Crossfire 2x ATI 5870 Stock (850Mhz/1200Mhz)
2x Corsair 256Gb SSD (Raid 0) / Creative SoundBlaster X-Fi / Asus X58 P6TD Dlux Motherboard
Antec 1200, 7x 80mm, 1x 120mm / Corsair 1000W PSU
CPU idle - 30/45c / CPU load - 65/76c (79c Highest recorded temp)
GPU idle - 35c / GPU load - 53c (57c Highest recorded temp)
Windows is (this is a fact, not just cause I hate it) the most unreliable and unstable operating system on the market. Microsoft basically release too buggy software to the consumer without thinking, thats why they have these service packs and upgrades.
*pats linux*
AMD Athlon XP 2400+ | Connect3D Radeon 9600PRO | Seagate Barrcuda 80GB HDD | 512mb PC2700 Crucial RAM | MSI KT6 Delta FIS2R | Zorro Silver Case | Windows XP/Gentoo Linux
Whereas Linux, being open source and having hundreds of contributors, tends to have deliberate back door code injected into the source code for the kernel
~ I have CDO. It's like OCD except the letters are in alphabetical order, as they should be. ~
[ Technet Blog ]
PC: Win8 x64 | Gigabyte GA-X58A-UD3R | Core i7 950 | 12GB DDR3 | 120GB SSD | 2x500GB SATA-300 | GeForce GTX670 4GB
Camera: Canon 60D | Sigma 10-20/4.0-5.6 | Canon 100/2.8 | Tamron 18-270/3.5-6.3
Your signature picture is flawed, my IP address is not that, I am not with that service and I am not using that webbrowser either.
I didn't say Linux was excluded from problems, just windows is succumbed to them more.
AMD Athlon XP 2400+ | Connect3D Radeon 9600PRO | Seagate Barrcuda 80GB HDD | 512mb PC2700 Crucial RAM | MSI KT6 Delta FIS2R | Zorro Silver Case | Windows XP/Gentoo Linux
Erm, if anyone did that everyone would be able to see it...Whereas Linux, being open source and having hundreds of contributors, tends to have deliberate back door code injected into the source code for the kernel
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
windows releasing stuff too early? never....!
Please, Don't ask for that one 'as a desktop'...its really not worth wasting your time asking, unless you're able to pay £££?
Powered by Marmite and Wet Dog
Light Over Water Photography :: Blog
flickr
... and in great windows style, the windows update site seems to be down due to the current MyDoom onslaught.. LOL
(\__/)
(='.'=)
(")_(")
While the comment was slightly tongue-in-cheek, there have been 3 attempts to get such backdoor code into the Linux kernel fairly recently, and 1 was detected in the live kernel so a patch was issued.
For the other 2 attempts, the Linux developers are trying to work out how they bypassed the change control mechanism, as at least 1 was only picked up by mistake when looking at fixing something else.
So yes, you are right in that everyone should be able to see it, but it still doesn't stop it happening, and it could be argued it is more dangerous than a flaw as these are specifically designed holes with attempts to cover them up.
~ I have CDO. It's like OCD except the letters are in alphabetical order, as they should be. ~
[ Technet Blog ]
PC: Win8 x64 | Gigabyte GA-X58A-UD3R | Core i7 950 | 12GB DDR3 | 120GB SSD | 2x500GB SATA-300 | GeForce GTX670 4GB
Camera: Canon 60D | Sigma 10-20/4.0-5.6 | Canon 100/2.8 | Tamron 18-270/3.5-6.3
Windows is buggy, yes. But it's the best operating system available. I love it.
With the amount of features it has, I'm not in the slightest bit surprised it falls over now and again (which for me is hardly ever, mine's very stable). Linux is not a desktop operating system, it's designed for purposes, Windows does everything and it's fantastic.
Home cinema: Toshiba 42XV555DB Full HD LCD | Onkyo TX-SR705 | NAD C352 | Monitor Audio Bronze B2 | Monitor Audio Bronze C | Monitor Audio Bronze BFX | Yamaha NSC120 | BK Monolith sub | Toshiba HD-EP35 HD-DVD | Samsung BD-P1400 BluRay Player | Pioneer DV-575 | Squeezebox3 | Virgin Media V+ Box
PC: Asus P5B | Core2duo 2.13GHz | 2GB DDR2 PC6400 | Inno3d iChill 7900GS | Auzentech X-Plosion 7.1 | 250GB | 500GB | NEC DVDRW | Dual AG Neovo 19"
HTPC: | Core2Duo E6420 2.13GHz | 2GB DDR2 | 250GBx2 | Radeon X1300 | Terratec Aureon 7.1 | Windows MCE 2005
Laptop: 1.5GHz Centrino | 512MB | 60GB | 15" Wide TFT | Wifi | DVDRW
Interesting. Do you have a URL on this? I wasn't aware that anything had made it into production code...I know that people have tried to hack the SSH code before, but not the kernel...
How? An exploit is an exploit.So yes, you are right in that everyone should be able to see it, but it still doesn't stop it happening, and it could be argued it is more dangerous than a flaw as these are specifically designed holes with attempts to cover them up.
The bottom line is, Linux has a FAR better history of security than Linux. I mean, come on, it has taken MS SIX MONTHS to release a fix for this one...Open Source software is normally patched within hours (sometimes minutes) of the exploit being made publicly available. The same thing happened with the IE URL spoofer bug...That was public knowledge for weeks before a fix was made available. MS's temporary fix was to...get users to type URL's in by hand!!!
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
i know its WAY off topic.... but Paul Adams how does that pic work?
adn by the way windows is fun... just cause you can piss people using the fun little features like the shutdown remote computer command in the console, doesnt mean its a BAD thing..
The pic works by checking your IP address and Browser agent string when you request his sig. I guess there must be a database of ISP's assigned to different IP batches to work out who your ISP is. Pretty cool!
"All our beliefs are being challenged now, and rightfully so, they're stupid." - Bill Hicks
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote