| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
Microsoft Windows Leak – Has it opened up the door to viruses? | |
|
||
| Time: 10:35 EST/15:35 GMT | News Source: E-Mail | Posted By: Byron Hinson | ||
|
Last week the Microsoft Corporation announced that part of the source code for Windows 2000 and Windows NT 4.0 had been leaked and posted illegally online. The day before the Microsoft announcement on February 12th, hundreds megabytes of text files containing source code for Windows 2000 and Windows NT 4.0 were published across a number of hacker websites. The files included the code of applications such as WINSOCK, Internet Explorer, and Outlook. All the websites where the code was published have since been closed, however there is no guarantee that the information will not resurface. | ||
|
Write Comment
Return to News |
Displaying 1 through 25 of 215 Last | Next |
The time now is
7:36:15 PM
ET.
Any comment problems? E-mail us |
| #1 By 12071 (203.185.215.149) at 2/16/2004 7:05:27 PM |
|
Viruses... perhaps. Exploits... definetely!
http://www.securitytracker.com/alerts/2004/Feb/1009067.html |
| #2 By 12071 (203.185.215.149) at 2/16/2004 9:15:58 PM |
|
#3 *bzzzzzt* wrong! try again!
http://www.microsoft.com/presspass/press/2004/Feb04/02-12windowssource.asp: "On Monday, February 16, Microsoft began investigating a reported exploit on versions of Internet Explorer allegedly discovered by an individual studying the leaked source code. This exploit is a known issue that Microsoft had discovered internally and addressed with the latest release of Internet Explorer -- Internet Explorer 6.0 Service Pack 1." It's a KNOWN issue that was fixed in IE6 SP1. Therefore I would say that not only is IE5 affected, but so it IE5.5 and IE6 (pre-SP1)!! This post was edited by chris_kabuki on Monday, February 16, 2004 at 21:23. |
| #3 By 12071 (203.185.215.149) at 2/16/2004 9:59:09 PM |
|
Here is a list of all the fixes that Microsoft publicised as part of SP1 for IE6:
http://support.microsoft.com/common/canned.aspx?R=d&H=List%20of%20Fixes%20in%20Microsoft%20Internet%20Explorer%206%20SP1&LL=&Sz=kbIE600sp1fix&Fr=&DU=&SD=GN&LN=EN-US&CND=1&VR=&CAT=&VRL=&SG=&MaxResults=150 Can you point out where they fixed this bug? I mean, I'm assuming that they wouldn't silently fix something and then not let anyone know about it! |
| #4 By 12071 (203.173.26.52) at 2/17/2004 4:44:21 AM |
|
#7 "The smart thing would be to keep quiet about it."
I'm intrigued by this. So if the smart thing to do is to keep quiet and rollup several bug fixes in one and then call it a single bug fix.... how do we accurately count the number of actual bugs that Microsoft have released fixes for? That's a rhetorical question as we both know that the answer is that there is absolutely no way for us to know just how many things any 1 patch actually fixes. Now given that we both know this, I'm curious to know why you're always comparing the number of fixes Microsoft releases compared to someone else (OS X, Linux, some other OSS etc)... Surely it fairly meaningless to compare the NUMBER of patches or even the NUMBER of critical patches if, at the end of the day, you don't know what's in that executable fix that you just downloaded from Windows Update! Sure it may have fixed 1 bug, but it could have just as easily fixed 2 or 3 or maybe even 20 bugs! Sure 20 is going over the top as I can't see anyone bundling more than a couple of fixes together but it does go to illustrate my point. We'll never see eye to eye on this and that's fine, makes it a little more interesting this way, but I definetely prefer the OSS way of going about bug fixes. i.e. Keep everything in the open, if this means more bug fixes that's fine, as long as I can, at any stage, have a look at exactly what fixes what. That way if I apply a patch and something stops working I'll know what broke it or at least be able to work out what broke it, as opposed to applying some patch which patches more than it says! |
| #5 By 12071 (203.185.215.149) at 2/17/2004 6:30:27 PM |
| #9 I'm not 100% sure what your point there was... yes what you pointed out is in fact an updated kernel PACKAGE, a bit like a Security Rollup from Microsoft. And as I had previously mentioned, with OSS you get details of EVERYTHING fixed, not just the bits and pieces that they want to inform you about. Even someone like you, someone who hates Linux with a passion and doesn't use it can go in and have a look at exactly what was done in every bug fix! You may think this is bad, I think it's great, everything is kept in the open and everyone knows what's going on. If I had applied that package and then found an issue with one of my SCSI devices then I could have a look and notice that it could have been caused by "106399 - SCSI I/O stall problem". You can't do anything like that with proprietary closed software, especially if they don't even tell you what has REALLY been fixed. |
|
Write Comment
Return to News |
Displaying 1 through 25 of 215 Last | Next |
The time now is
7:36:15 PM
ET.
Any comment problems? E-mail us |
