Serious flaw discovered in Windows Vista's Explorer

By null_
in Back Page News

 Share

Recommended Posts

Grand Master

null_

Posted
  • Author
Posted
Instead of admitting that you blew it way out of proportion you choose to call everybody else fanboys? Comon, you could do better than that.

I've edited the original post. As far as the title, I posted this very late last night. Yes, I agree, the title could have been better worded, but the amount of disrespect is uncalled for. This isn't a personal attack on you, or anyone else, this is a general comment to the state of what has transpired. I don't want any more flaming to go on, it's a shame to see this happen on one of Microsoft's featured communities.

At this point, I'd like to ask a moderator to delete this thread.

Grand Master

Budious

Posted
Posted
I've edited the original post. As far as the title, I posted this very late last night. Yes, I agree, the title could have been better worded, but the amount of disrespect is uncalled for. This isn't a personal attack on you, or anyone else, this is a general comment to the state of what has transpired. I don't want any more flaming to go on, it's a shame to see this happen on one of Microsoft's featured communities.

At this point, I'd like to ask a moderator to delete this thread.

Why delete the thread if the information is accurate? Do you just prefer it gone for the flaming you are receiving? I personally don't see the seriousness of the flaw nor understand if using a NOT boolean argument in a search was such a common practice that it wasn't found until now. If explorer.exe terminates unexpectly and immediately reboots it's just like any other explorer.exe crash so where's the big issue? :blink:

Rookie

cullend11

Posted
Posted

Was that a joke? What's the big issue? Kristan is trying to make Windows better. You obviously could not care less for it. "what's the big issue" It is an explorer crash! I mean FFS! Are you going to claim to be part of the Windows Communitiy with a mindset like that? I would think one of the ohhh maybe top 3 resposibilites of a member of the Windows Community/ Windows enthusiast would be trying to make Windows better... It seems with you that you have given up on Windows and say "Hah Windows sucks, it crashes all the time."

Contributor

Isys_uk

Posted
Posted

As an experienced forum admin I would like to offer the following advice

@iCeFuSiOn....when posting on a forum where the average member age appears to be 14 and the average member iq appears to be 0, be careful how you word your posts.

@email flamers....if you have'nt got the guts to speak out publicly and instead resort to flaming in private, you need to reexamine your values.

Grand Master

zhangm Supervisor

Posted
  • Supervisor
Posted

It seems that you posted with a sensationalist headline in order to "rouse the community". It sounds like your intention was for Microsoft to receive negative attention - a small price to pay, no doubt, for raising awareness of the issue at hand - and found out the hard way that sensationalism is a double-edged sword.

Its unfortunate that you were the unwitting victim of your own devices here, but I think there was a lesson to learn, and it hasn't been picked up. How could the initial situation have been handled better?

You could very easily have written an objective post detailing the discovery of a bug in the usage of boolean operators which appears to lead to crashes of the shell under certain circumstances. Instead, you chose to flag this as a "serious flaw" and tried to spark off an emotional response in your readers to go yell at Microsoft for being a bunch of lazy *uckups. You've also wiped the original post, and source. Great job with the running away, but not an entirely laudable thing to do.

You could have followed up with more details of Microsoft's alleged irresponsibility in patching bugs commonly experienced by users of pre-SP1, and not addressed in SP1. But you choose not to take time to do that, and instead published with one bug example (which was contradicted by other users of SP1 RC shortly afterwards). Please understand that this weakened your point of how Microsoft will overlook user reported issues (and I agree, they do, and they need to reassess their user experience quality).

Now you've made some mistakes, drew fire on an obviously controversial topic (although you intended Microsoft to receive most of the flak from your article), and still you persist in non-objective responses, trying to arouse sympathy within the community. Well, I can be partially sympathetic, but really, you were the one playing with matches in a field of dry straw, and instead of burning down Neighbor Bill's farm, you burned down your own. But please don't try and erase your mistakes. You've acknowledged that you didn't handle things as well as you could have, and that's a great first step, but don't erase the dialogue that has been generated from all this. You've received childish responses. That's fine. Ignore them. When folks raise valid points, address them, and let them contribute to the dialogue. You're still raising awareness within the community when you're doing this, unlike when you just give up, wipe everything, and run away.

Grand Master

primexx

Posted
Posted
I've edited the original post. As far as the title, I posted this very late last night. Yes, I agree, the title could have been better worded, but the amount of disrespect is uncalled for. This isn't a personal attack on you, or anyone else, this is a general comment to the state of what has transpired. I don't want any more flaming to go on, it's a shame to see this happen on one of Microsoft's featured communities.

At this point, I'd like to ask a moderator to delete this thread.

I didn't see much problems as far as your original post goes, but I have to say I was indeed pretty frustrated that the title led me to believe there's actually a "serious flaw", and by that I (and I presume most people) assumed it was a security flaw.

As far as I could see all the angry posts were directed at your choice of title, not much (if any) were directed at you personally, so I'm not sure what you have to be so sensitive about.

And I'd think that it's not much of an expectation from the general public that these kinds of reports are accurate in both information and magnitude, what's to be surprised about when a gross exaggeration is met with negative attitudes?

Rookie

LCA

Posted
Posted
It seems that you posted with a sensationalist headline in order to "rouse the community". It sounds like your intention was for Microsoft to receive negative attention - a small price to pay, no doubt, for raising awareness of the issue at hand - and found out the hard way that sensationalism is a double-edged sword.

Its unfortunate that you were the unwitting victim of your own devices here, but I think there was a lesson to learn, and it hasn't been picked up. How could the initial situation have been handled better?

You could very easily have written an objective post detailing the discovery of a bug in the usage of boolean operators which appears to lead to crashes of the shell under certain circumstances. Instead, you chose to flag this as a "serious flaw" and tried to spark off an emotional response in your readers to go yell at Microsoft for being a bunch of lazy *uckups. You've also wiped the original post, and source. Great job with the running away, but not an entirely laudable thing to do.

You could have followed up with more details of Microsoft's alleged irresponsibility in patching bugs commonly experienced by users of pre-SP1, and not addressed in SP1. But you choose not to take time to do that, and instead published with one bug example (which was contradicted by other users of SP1 RC shortly afterwards). Please understand that this weakened your point of how Microsoft will overlook user reported issues (and I agree, they do, and they need to reassess their user experience quality).

Now you've made some mistakes, drew fire on an obviously controversial topic (although you intended Microsoft to receive most of the flak from your article), and still you persist in non-objective responses, trying to arouse sympathy within the community. Well, I can be partially sympathetic, but really, you were the one playing with matches in a field of dry straw, and instead of burning down Neighbor Bill's farm, you burned down your own. But please don't try and erase your mistakes. You've acknowledged that you didn't handle things as well as you could have, and that's a great first step, but don't erase the dialogue that has been generated from all this. You've received childish responses. That's fine. Ignore them. When folks raise valid points, address them, and let them contribute to the dialogue. You're still raising awareness within the community when you're doing this, unlike when you just give up, wipe everything, and run away.

I was going to comment on this affair but this post said everything I wanted to say.

Apprentice

Shane2

Posted
Posted

Fanboyism is nothing new, it has been part of the internet for years, and will always continue to be part of the internet. Without making this sound rude, a lot of sceners seem to be falling in on their own egos and believing their own self-hype, and the problem is that if you write sensationalist articles like this, you are bound to draw some criticism from people, that is what the internet is like, and it has to be something you are willing to accept if you are going to blog about these kind of matters. I would also like to point out that including your personal email address in any blog post is also inveterantly stupid, and is really just asking for trouble, because at the end of the day that is what comments are there for.

I value everyone's contributions from the scene, but if people can't take the heat of what they post then I personally have no sympathy for them, it is a simple fact that no matter what your opinion is someone IS gonna flame you for it because the internet is a wide bed of such diverse opinions.

Community Regular

Jock Horror

Posted
Posted (edited)

actually serious flaw is $400 off the bank account due to an 'ultimate POS' that is full of flaws/bugs/annoyances and ultimately is obfuscated by its 6 years old predecessor... great pos.... we all should be wow'ed

edit: wow bold

Edited by Jock Horror
Grand Master

Hurmoth

Posted
Posted

This is a fluke on certain people's systems. I've tried it on three different systems, two that don't have SP1 and one that does and it only happened once. I don't see why anyone would be trying to search for everything on their system that isn't a shortcut in the first place.

This thread is going no where and only serves the purpose for those who hate Vista to bash Vista and for those who love Vista to bash those who don't.

thread closed

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • ABSTRACT//AWESOME//WALLPAPERS - made by me!

      By remixedcat · Posted

      thank you!
    • Apple and Tesla Supplier Tata Electronics Confirms 630 GB Data Theft: iPhone Specs on Dark Web

      By +Nik Louch · Posted

      Ooopsie!
    • A coalition of publishers sued OpenAI and Microsoft over scraping content without consent

      By Hamid Ganji · Posted

      A coalition of publishers sued OpenAI and Microsoft over scraping content without consent by Hamid Ganji Image via Depositphotos.com AI companies often rely on readily available internet content to train their chatbots and provide users with instant answers. This method of AI training is fast and relatively inexpensive, but using a website’s content without permission or compensation is not something publishers like to see, and this is exactly why Microsoft and OpenAI are now being sued. As reported by Bloomberg, a group of publishers that collectively own nearly 400 newspapers has filed a lawsuit against OpenAI and Microsoft. The coalition argues that the two companies scraped their content to build AI chatbots like ChatGPT and Copilot without paying any compensation. The complaint, filed in the U.S. District Court for the Southern District of New York, argues that while AI products have generated billions of dollars in market value using publishers’ work, none of that value has been shared with the publishers. The plaintiffs are seeking statutory damages and injunctive relief for alleged copyright infringement and violations of the Digital Millennium Copyright Act. “Defendants systematically and secretly crawled the Publishers’ websites—including content behind paywalls and other access restrictions—and copied the Publishers’ articles, stories, and other original works onto their own servers without authorization,” the complaint states. The publishers also described the AI boom as a “death knell for local journalism” if AI companies that scrape content for free are not held accountable. Former New Jersey Attorney General Matthew Platkin and his law firm, Platkin LLP, are representing the publishers. “Our models empower innovation, are trained on publicly available data, and are grounded in fair use,” OpenAI spokesperson Drew Pusateri told Bloomberg. This is not the first lawsuit involving the unauthorized use of publishers’ content by AI firms, but it is one of the largest coalitions ever formed against the free use of content by AI chatbots. In 2024, OpenAI and Microsoft also faced a similar lawsuit from eight newspapers that claimed AI products were benefiting from their content without permission.
    • Rufus alternative Ventoy now supports Windows 11's mandatory update, fixes major boot bug

      By hellowalkman · Posted

      Rufus alternative Ventoy now supports Windows 11's mandatory update, fixes major boot bug by Sayan Sen While Microsoft has its own official Media Creation Tool used for making bootable USB media, there are some popular third-party utilities as well which offer additional options like bypassing system requirements, Microsoft Account creation, and more. One of these is Ventoy, and the software has received its latest update today. In fact, the app actually got a slew of updates over the last couple of days, three version releases in total, to be specific. The first release, version 1.1.13, was pulled as there was some unspecified error in the update, and as such, the corrected version 1.1.14 was pushed out. Following that on very short notice, 1.1.15 was published as well. For those unfamiliar, Ventoy is an open-source utility that lets users create a bootable USB drive once and then simply copy ISO, WIM, IMG, VHD, or EFI files onto it without repeatedly formatting the drive. It supports both legacy BIOS and UEFI boot modes, Secure Boot, and a wide range of operating systems, making it one of the most versatile tools in the category. The biggest change in version 1.1.14 is an updated Secure Boot shim file aimed at resolving the UEFI CA 2023 issue, which is basically a compatibility problem that has affected Secure Boot environments on some systems. If you recall, we reported about severe boot issues on HP devices following the release of updated Secure Boot 2023 keys. For anyone who may not be aware, back in early 2024, Microsoft announced that it was updating Secure Boot keys as they were going to become 15 years old in 2026, which is also when they are set to expire. As such, the new 2023 certificates have been rolling out with the newest Windows 11 updates. Updated boot manager and Secure Boot certificates are crucial for protection against malware like bootkits. These are mandatory updates. Alongside that, the VentoyPlugson graphical plugin configurator was updated in sync with the release. The update also introduces a new VTOY_SECURE_BOOT_POLICY option within the Global Control plugin, giving users more flexibility in managing Secure Boot behavior. Ventoy has also received a fix for a startup issue when Secure Boot was disabled. Microsoft does officially allow users to boot systems without Secure Boot as long as the PC is Secure Boot capable. The full changelog is given below: Update secure boot shim file to solve the UEFI CA 2023 issue. The new release use a new CA, so you need to enroll the new key for the first boot time. VentoyPlugson update synchronously. Global control plugin add a VTOY_SECURE_BOOT_POLICY option. Fix the boot issue when Secure Boot is disabled in the UEFI firmware. You can download the latest version of the app here on Ventoy's official GitHub repo or from Neowin software stories.
    • Windows 11 is now five years old

      By grunger106 · Posted

      Windows 11 is fine, no issues on any of the machines I've run it on since release. The stricter security requirements are a good thing, sometimes the baseline needs to change and people will winge, but it is what it is. Happened with the move from 9x to NT - broke compatability Happened with XP SP2 when security started to become a serious consideration Certainly happend with Vista that brought in UAC, the concept of not running as admin (something that has been the norm in Linux/Unix from pretty much the start) and a completely new driver stack. Windows 11 will probably get looked back at as the point where even consumer and SMB IT was dragged kicking and screaming into a somewhat secure by default configuration.

  • Recent Achievements

    • Rookie
      krychek57 went up a rank
      Rookie
    • Grand Master
      Jaybonaut went up a rank
      Grand Master
    • One Year In
      Philsl earned a badge
      One Year In
    • Dedicated
      Scoobystu earned a badge
      Dedicated
    • First Post
      Tom Schmidt earned a badge
      First Post

  • Popular Contributors

    1. 1
      +primortal
      441
    2. 2
      +Edouard
      172
    3. 3
      PsYcHoKiLLa
      134
    4. 4
      Michael Scrip
      78
    5. 5
      Xenon
      77
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!