Security researchers have discovered a serious boundary error vulnerability in multiple versions of Microsoft's Windows platform and warned that attackers could hijack systems via Windows Explorer and Internet Explorer (IE).
Rodrigo Gutierrez, a researcher with Trustix AS, notified Microsoft of the flaw with a warning that it could be exploited by malicious attackers to cause a buffer overflow and lead to system takeover.
Microsoft confirmed Gutierrez's findings in an advisory and recommended users install the latest service packs for Windows XP and Windows 2000. The software giant said the hole was fixed in the service packs but independent security consultants Secunia said the vulnerability "has been confirmed on fully patched systems running Windows XP and Windows 2000."
Secunia rates the flaw as "highly critical" and urged Windows XP and Windows 2000 users to restrict traffic in border routers and firewalls as a temporary workaround. Users could also disable the "Client for Microsoft Networks" for network cards to impact file sharing functionality.
The flaw also reportedly affects Windows 95, 98, and Me and Secunia said it was unknown whether Windows NT 4.0 and Windows 2003 were at risk.
View: Read more at Internet News
News source: Internet News
Rodrigo Gutierrez, a researcher with Trustix AS, notified Microsoft of the flaw with a warning that it could be exploited by malicious attackers to cause a buffer overflow and lead to system takeover.
Microsoft confirmed Gutierrez's findings in an advisory and recommended users install the latest service packs for Windows XP and Windows 2000. The software giant said the hole was fixed in the service packs but independent security consultants Secunia said the vulnerability "has been confirmed on fully patched systems running Windows XP and Windows 2000."
Secunia rates the flaw as "highly critical" and urged Windows XP and Windows 2000 users to restrict traffic in border routers and firewalls as a temporary workaround. Users could also disable the "Client for Microsoft Networks" for network cards to impact file sharing functionality.
The flaw also reportedly affects Windows 95, 98, and Me and Secunia said it was unknown whether Windows NT 4.0 and Windows 2003 were at risk.
View: Read more at Internet News News source: Internet News
pulled, rude comments, shit story. Not worth the hassle.
And to further protect yourself, unplug all cables from the back of your computer, turn off the lights, lock the door and go sit in a corner, silently.
ohhhhh..the bogeyman is coming!
People should have a reasonable expectation that the major app they prefer should be relatively free from major security problems (and when these problems show up, as they always will), then a rapid patch to fix the problem.
The real ambiguity at this point is: Microsoft claims this was fixed with SP1, while Trustix AS claims that even the patched version is still vunerable.
Oh, wait, it doesnt
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.