Home Messages Index
[Date Prev][Date Next][Thread Prev][Thread Next]
Author IndexDate IndexThread Index

Re: Microsoft Kill my Site

__/ [PeteM] on Monday 31 October 2005 10:36 \__

> Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx> posted
>>Microsoft have admittedly released a flawed operating system. That
>>operating system can be trivially hijacked due to a critical loophole
>>and then be converted into what is commonly called a 'zombie'.
> 
> Which particular OS version and exploit are you thinking of?

See below: 

http://www.eweek.com/article2/0,1895,1879102,00.asp

<snip>

   Updated: Security researchers highlight more errors in Microsoft's
   patch creation process and warn that the mistakes are proving costly
   for users.
        
   It's being called the "story of a dumb patch."

   A private security research firm has published an advisory with details
   on a fundamental mistake made by Microsoft Corp. that caused a security
   patch to ship without an adequate fix for the flaw it was meant to
   address.

</snip>

Does it not fall other the heading "negligence"?

Also see this research paper (PDF):

http://argeniss.com/research/MSBugPaper.pdf


The log files confirm that all attacks are Windows machines. That information
is held in one of the fields, which one would assume has not been spoofed by
so many machines across the world.


Thanks for the help,

Roy

[Date Prev][Date Next][Thread Prev][Thread Next]
Author IndexDate IndexThread Index