BIG SURPRISE: Not safe to use Windows today.
Thread Starter
Registered User
Joined: Mar 2005
Posts: 16,702
Likes: 0
From: █ SF, CA █
BIG SURPRISE: Not safe to use Windows today.
http://blogs.washingtonpost.com/securityfi...it_release.html
Exploit Released for Unpatched Windows Flaw
Security researchers have released instructions for exploiting a previously unknown security hole in Windows XP and Windows 2003 Web Server with all of the latest patches applied.
Anti-virus company Symantec warned of the new exploit, which it said uses a vulnerability in the way Windows computers process certain image files (Windows Meta Files, or those ending in .wmf).
Symantec said the exploit is designed to download and run a program from the Web that downloads several malicious files, including tools that attackers could use to control vulnerable computers via Internet relay chat (IRC) channels.
The exploit code, first posted on security mailing list Bugtraq, states that the included Internet address can successfully exploit a fully patched Windows XP system with a freshly updated [Symantec] Norton Anti-Virus. Symantec said it has verified that the exploit works on fully-patched Windows XP systems, and that updates that would allow its anti-virus program to detect threats trying to exploit the new flaw would be released as soon as possible, though it noted that "some of the components of this attack, including the exploit itself, are NOT detected by Symantec products."
Exploit Released for Unpatched Windows Flaw
Security researchers have released instructions for exploiting a previously unknown security hole in Windows XP and Windows 2003 Web Server with all of the latest patches applied.
Anti-virus company Symantec warned of the new exploit, which it said uses a vulnerability in the way Windows computers process certain image files (Windows Meta Files, or those ending in .wmf).
Symantec said the exploit is designed to download and run a program from the Web that downloads several malicious files, including tools that attackers could use to control vulnerable computers via Internet relay chat (IRC) channels.
The exploit code, first posted on security mailing list Bugtraq, states that the included Internet address can successfully exploit a fully patched Windows XP system with a freshly updated [Symantec] Norton Anti-Virus. Symantec said it has verified that the exploit works on fully-patched Windows XP systems, and that updates that would allow its anti-virus program to detect threats trying to exploit the new flaw would be released as soon as possible, though it noted that "some of the components of this attack, including the exploit itself, are NOT detected by Symantec products."
if it aint broke...
Thread Starter
Registered User
Joined: Mar 2005
Posts: 16,702
Likes: 0
From: █ SF, CA █
Now it's considered "severe":
http://www.washingtonpost.com/wp-dyn/conte...5122901456.html
Hope no one here is using Outlook...
http://www.washingtonpost.com/wp-dyn/conte...5122901456.html
Hope no one here is using Outlook...
Registered User
Joined: Jan 2004
Posts: 4,938
Likes: 0
From: limerick
in older versions of Microsoft Outlook
The key statement
"The problem with this attack is that it is so hard to defend against for the average user,"
Registered User
Joined: Jan 2004
Posts: 4,938
Likes: 0
From: limerick
That article reads like an add for Firefox. If people weren't douches and kept their software up to date the probability of this issue effecting them would be near zero.
Oh you mean you can get a viruse using Firefox? What a peice of crap we should all stop using it. 
Web browsers, such as older versions of Firefox and Opera, can still get their PCs infected if they agree to download a file from a site taking advantage of the flaw.
Thread Starter
Registered User
Joined: Mar 2005
Posts: 16,702
Likes: 0
From: █ SF, CA █
Originally Posted by exceltoexcel,Dec 30 2005, 10:21 AM
That article reads like an add for Firefox. If people weren't douches and kept their software up to date the probability of this issue effecting them would be near zero.
Oh you mean you can get a viruse using Firefox? What a peice of crap we should all stop using it.
Oh you mean you can get a viruse using Firefox? What a peice of crap we should all stop using it.
More articles:
http://blogs.zdnet.com/Spyware/?p=735
http://www.entmag.com/news/article.a...torialsID=7111
http://au.sys-con.com/read/166894.htm
http://www.earthtimes.org/articles/show/4833.html
http://www.internetnews.com/security...le.php/3574291
Trending Topics
Thread Starter
Registered User
Joined: Mar 2005
Posts: 16,702
Likes: 0
From: █ SF, CA █
Originally Posted by exceltoexcel,Dec 30 2005, 10:21 AM
That article reads like an add for Firefox. If people weren't douches and kept their software up to date the probability of this issue effecting them would be near zero.
Oh you mean you can get a viruse using Firefox? What a peice of crap we should all stop using it.
Oh you mean you can get a viruse using Firefox? What a peice of crap we should all stop using it.
Only Windows is affected.
Thread Starter
Registered User
Joined: Mar 2005
Posts: 16,702
Likes: 0
From: █ SF, CA █
Originally Posted by exceltoexcel,Dec 30 2005, 10:25 AM
Yeah there is its called office 2003 and you don't have to worry about the outlook issue then. 