Jump to content


anyweb

A 17-year-old bug

Recommended Posts

A 17-year-old bug in Windows will be patched by Microsoft in its latest security update.

 

The February update for Windows will close the loophole that dates from the time of the DOS operating system.

 

First appearing in Windows NT 3.1, the vulnerability has been carried over into almost every version of Windows that has appeared since.

 

The monthly security update will also tackle a further 25 holes in Windows, five of which are rated as "critical".

 

Home hijack

 

The ancient bug was discovered by Google security researcher Tavis Ormandy in January 2010 and involves a utility that allows newer versions of Windows to run very old programs.

 

Mr Ormandy has found a way to exploit this utility in Windows XP, Windows Server 2003 and 2008 as well as Windows Vista and Windows 7.

 

The patch for this vulnerability will appear in the February security update. Five of the vulnerabilities being patched at the same time allow attackers to effectively hijack a Windows PC and run their own programs on it.

 

 

more > http://news.bbc.co.uk/2/hi/technology/8499859.stm

Share this post


Link to post
Share on other sites



×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.