Hot Downloads

Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1

TOPIC: Microsoft set to fix17yearold Windows vulnerability nxtweek

Microsoft set to fix17yearold Windows vulnerability nxtweek 8 years 4 months ago #33570

Microsoft has confirmed it is on course to issue a patch next Tuesday for a recently discovered 17 year old Windows vulnerability.

In January Neowin reported on the recent discovery of a Windows vulnerability that has existed since the release of Windows NT 3.1 in 1993. The vulnerability has only recently been published but it appears 32-bit Windows operating systems have inherited the flaw since NT 3.1.

Microsoft issued a Security Advisory on the vulnerability. The software giant described the flaw as an "Elevation of Privilege (EoP) vulnerability in the Windows kernel, affecting all currently supported versions of 32-bit Windows." 64-bit versions of Windows, including Windows Server 2008 R2, are not affected. The problem exists due to a flaw in the Virtual DOS Machine (or VDM), which was used to support 16-bit applications. The flaw allows for a 16-bit program to manipulate the kernel stack of processes.

In a company blog posting on Thursday, Jerry Bryant, Sr. Security Communications Manager at Microsoft confirmed "we are on track to release an update for this issue next Tuesday (February 9)." Microsoft will also be releasing 13 bulletins - five rated Critical, seven rated Important, and one rated Moderate - addressing 26 vulnerabilities.

Please Log in to join the conversation.

Re: Microsoft set to fix17yearold Windows vulnerability nxtweek 8 years 4 months ago #33572

What's your source on this?


ZiPPy

Please Log in to join the conversation.

ZiPPy

Re: Microsoft set to fix17yearold Windows vulnerability nxtweek 8 years 4 months ago #33589

Actually it looks like it is true, according to:
www.h-online.com/security/news/item/Wind...s-Update-908917.html

Tavis Ormandy foud it, and in MS site, they thanked him for reporting this:
www.microsoft.com/technet/security/Bulletin/MS10-001.mspx

Please Log in to join the conversation.

always Face your Fears...

Re: Microsoft set to fix17yearold Windows vulnerability nxtweek 8 years 4 months ago #33599

DOS is alive and well, underneath it all, no matter what they tell us! I feel young again...

Please Log in to join the conversation.

  • Page:
  • 1
Time to create page: 0.146 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup