Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: Is this old news?

  1. #1

    Is this old news?

    I just ran across this Winduhs exploit called Shatter. Don't know how old this news is, but it's fairly serious and is going to put M$ in a very bad position if it hasn't already. It's nothing new and effects every Windows OS. Apparently M$ has known about it for a loooooooong time and realize there is little they can do about it without completely re-inventing Windows. I think they were just banking on the possibility that no one would ever figure out this vunerablility. Talk about security by obscurity falling flat on its face.

    This quote is just priceless:
    This research was sparked by comments made by Microsoft VP Jim Allchin who stated, under oath, that there were flaws in Windows so great that they would threaten national security if the Windows source code were to be disclosed. He mentioned Message Queueing, and immediately regretted it. However, given the quantity of research currently taking place around the world after Mr Allchin's comments, it is about time the white hat community saw what is actually possible.
    Here's the article:
    http://security.tombom.co.uk/shatter.html

    [edit:gorn]Fixed url[/edit]

  2. #2

    Re:Is this old news?

    What can I say?

    Bah!! ;D

    I'm actually enjoying (to some extent) the entertaining bug/hole reports coming out from MS and other parties at the moment about problems with Windows. How long are windows users going to keep putting up with this? "Oh, well if you have an anti-virus program, you'll be fine" :-\

  3. #3

    Re:Is this old news?

    [quote author=segfault link=board=5;threadid=5312;start=0#51833 date=1034459435]
    "Oh, well if you have an anti-virus program, you'll be fine" :-\
    [/quote]

    That's a joke right? This exploit kind of relies on the fact that you have an anti-virus program running.

  4. #4

    Re:Is this old news?

    [me=Kernel_Killer]bookmarks the link[/me]

    Thank you. Thank you very much. ;D

  5. #5

    Re:Is this old news?

    [quote author=tolstoy link=board=5;threadid=5312;start=0#51837 date=1034488111]
    [quote author=segfault link=board=5;threadid=5312;start=0#51833 date=1034459435]
    "Oh, well if you have an anti-virus program, you'll be fine" :-\
    [/quote]

    That's a joke right? This exploit kind of relies on the fact that you have an anti-virus program running.
    [/quote]

    Yes, of course its a joke. I was making fun at people who say that and think that they'll be alright.

  6. #6

    Re:Is this old news?

    Is this not big news? I had just finished a taking class with an instructor who works with the US government on military security who thinks this was the biggest thing to ever happen in the computer security field since sliced bread. At this point, anyone with physical access to a windows box can root it, and the fix will come no time soon, since the exploit has been around, but unknown, since NT 3.5 and has persisted in every Windows OS ever since. Imagine once this exploit becomes remote or automated. Appearently the problem lies in the fact that every window on a Windows desktop is a peer to any other, no matter what privladge any of them are running at. I'm guessing that one can be used to smash the stack of another.

  7. #7

    Re:Is this old news?

    Spooky---spooky---spooky

  8. #8
    Moderator
    Good Guru
    Schotty's Avatar
    Join Date
    Jul 2001
    Location
    Milwaukee, WI
    Posts
    5,760

    Re:Is this old news?

    Saturday I finally had the time to review in detail the article.

    HOLY SHIT!!

    This aint good. At least it seems like X11 is much less prone (altough neither he nor I can be 100% certain). But the M$ world can be in one serious realm of pain if this becomes a popular exploit.

    And, to answer your Q -- This is definitely new to me!!

  9. #9
    Junior Member
    Join Date
    May 2001
    Posts
    53

    Re:Is this old news?

    I would like to point out that to the best of my knowledge, when I last looked at that vuln, it was a local exploit only, meaning someone had to be sitting down in front of the box and be able to run the tools. In this situation, you've already lost. If someone with malicious intent has physical access to a machine, game over. Period. There's nothing an attacker can't do at this point. This exploit certainly makes things a lot easier, but it's not the magic bullet.

  10. #10

    Re:Is this old news?

    Of course it is a joke, and of course it requires anti-virus running, and of course I am kidding - the stuff is serious, I tried it months ago on my friend's computer with his permission of course, what can I say he is running OpenBSD now.

Similar Threads

  1. News
    By Fatal Error in forum General Chat
    Replies: 0
    Last Post: 08-10-2005, 02:00 AM
  2. GLO LinuxToday News! I can't get my NEWS!!!
    By SkyNet in forum Announcements and Suggestions
    Replies: 6
    Last Post: 03-15-2004, 03:36 PM
  3. Can't use News
    By Ashcrow in forum Announcements and Suggestions
    Replies: 9
    Last Post: 10-03-2003, 08:05 PM
  4. New News
    By in forum Announcements and Suggestions
    Replies: 1
    Last Post: 01-14-2003, 03:32 AM
  5. News
    By cheeves in forum Linux - General Topics
    Replies: 6
    Last Post: 11-20-2001, 08:26 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •