Microsoft to patch 17-year-old computer bug
Page 1 of 2 12 LastLast
Results 1 to 10 of 17

Thread: Microsoft to patch 17-year-old computer bug

Hybrid View

  1. #1
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003

    Microsoft to patch 17-year-old computer bug

    I don't have words to describe this one..


    http://news.bbc.co.uk/2/hi/technology/8499859.stm
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  2. #2
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,188
    Wow... just... wow.

    Kind of makes you want to switch to a less targeted OS?
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  3. #3
    AO BOFH: Luser Abuser BModeratorFH gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Lol you mean like DOS? I'm starting to wonder if they were really just tired of fixing it and said switch to Windows now.

    Man....17 years of the same thing sitting there ready to be exploited, and NO ONE fixed it. I wonder if they're going to change those ads about how they take care of problems better than Linux does now. (Remember? With Linux you're waiting on a kid in China to fix your exploit, with Windows, we fix them!"....)....

    I don't think I've ever heard of a bug going for this long ever. Anyone know if this is a record?
    Kill the lights, let the candles burn behind the pumpkins’ mischievous grins, and let the skeletons dance. For one thing is certain, The Misfits have returned and once again everyday is Halloween.The Misfits FreeBSD
    Cannibal Holocaust
    SuSE Linux
    Slackware Linux

  4. #4
    0_o Mastermind keezel's Avatar
    Join Date
    Jun 2003
    Location
    Atlanta
    Posts
    1,024
    HAHAHAHAHA!!

    Wow. Good job Microsoft.

    And the ad campaign about "some kid in China" is hysterical. As if Linux is still primarily supported by random freelance coders. They are totally exploiting that misnomer.

    Maybe we should go easy on them. After all, Microsoft bloatware is huge and hard to fully patch.

    But then again, 17 years?! Wow.

  5. #5
    AO BOFH: Luser Abuser BModeratorFH gore's Avatar
    Join Date
    Oct 2002
    Location
    Michigan
    Posts
    7,177
    Wasn't it the big Steve who said that originally? The part about "Well yea Linux has customers but do you really want to have to tell your boss the system will be patched once some 12 year old in China is done writing it?" ... I can't remember the exact quote but it was along those lines about a kid in China being the one writing your patches.

    I think he was pissed off because people have seen a problem in Linux where there was an exploit possible, and within like 4 hours, there was a patch. The same problem popped up on a few other OSs and it took like a month to get one.
    Kill the lights, let the candles burn behind the pumpkins’ mischievous grins, and let the skeletons dance. For one thing is certain, The Misfits have returned and once again everyday is Halloween.The Misfits FreeBSD
    Cannibal Holocaust
    SuSE Linux
    Slackware Linux

  6. #6
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Kind of makes you want to switch to a less targeted OS?
    Not really..................you need an authenticated login and physical access from what I can see?

    Hell! I am looking at a CD on my desk that will reset the admin password from bootup................no login required.

    I am still of the opinion that if someone has unrestricted physical access you are as good as owned.

    Anyway, it took 17 years to find it..............hardly earth shattering?
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  7. #7
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003
    Since it took me lot of time to find words to describe this one (abuse basically). I've decided to switch to Linux. OpenSuse, buddy i love you..
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  8. #8
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Well,

    1. I don't believe in security through obscurity as a general principle.
    2. I will certainly stay where the money is (Microsoft).
    3. What makes you think that Linux is any better?..............if I have physical access and a password you are owned.

    Do you still run 16bit applications?...............I do, and have Windows 3.11, 98, 98SE and ME boxes for that. They are mostly games that won't work in compatibility mode anyway, because they want to directly access the hardware and do other things that 2000, XP, Vista and 7 don't allow.

    This is the fix:

    1.
    Click Start, click Run, type gpedit.msc in the Open box, and then click OK.
    This opens the Group Policy console.
    1.
    Expand the Administrative Templates folder, and then click Windows Components.
    2.
    Click the Application Compatibility folder.
    3.
    In the details pane, double click the Prevent access to 16-bit applications policy setting. By default, this is set to Not Configured.
    4.
    Change the policy setting to Enabled, and then click OK.
    Impact of Workaround: Users will not be able to run 16-bit applications.


    REMEMBER: You have to make the change in both User and Computer settings. If it isn't turned off in Computer settings it will be allowed because they override the User settings


    No big deal as far as I am concerned.
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  9. #9
    StOrM™
    Join Date
    Aug 2004
    Posts
    1,003
    Nihil how dare you come in defense of Microsoft.. I write this from my Opensuse using Opera (and after uninstalling Firefox)..
    Last edited by ByTeWrangler; February 7th, 2010 at 04:01 PM.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  10. #10
    Banned
    Join Date
    Jan 2008
    Posts
    605
    The thing about linux is these distros either lie or spend so much time repackaging stuff they have no idea whats-what themselves. They'll sit there and call something a "local denial of service flaw" for five years intil someone changes a single byte in the return address. People know better than that... you don't just make something seg fault at ring-0.

    Meh... people don't want to admit there are more kernal flaws out there than the number of waves in the pacific ocean.

Similar Threads

  1. August security hotfixes
    By mohaughn in forum Microsoft Security Discussions
    Replies: 1
    Last Post: August 9th, 2005, 07:37 PM
  2. Spyware/Maleware User Agreements
    By moxnix in forum Spyware / Adware
    Replies: 7
    Last Post: July 8th, 2004, 01:42 PM
  3. suse is crap on finding cdrom
    By rajunpl in forum Operating Systems
    Replies: 43
    Last Post: July 1st, 2004, 07:30 AM
  4. The history of the Mac line of Operating systems
    By gore in forum Operating Systems
    Replies: 3
    Last Post: March 7th, 2004, 07:02 AM
  5. Securing Your Windows PC
    By E5C4P3 in forum The Security Tutorials Forum
    Replies: 10
    Last Post: June 12th, 2002, 04:54 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides