Slashdot Mirror

← Back to Stories (view on slashdot.org)

Shattering Windows

Posted by timothy on from the fundamentalism dept.

ChrisPaget writes: "I've just released a paper documenting and exploiting fundamental flaws in the Win32 API. Essentially, they allow you to take control of any window on your desktop, regardless of whether that window is running as you, localsystem, or anywhere in between. The technique has been discussed before, but AFAIK this is the first working exploit. Oh, did I mention it's unfixable?" You may want to read this CNET interview with Microsoft security head Scott Charney to learn even more about "trustworthy computing."

5 of 772 comments (clear)

  1. Jeez by roguerez · · Score: 0, Troll

    That's really OLD. Like >15 years or so. It's not comparable at all to X-Windows where the clients run on a multi-user system.

  2. Is this really a security risk? by turbine216 · · Score: 0, Troll

    This whole exploit seems flawed in its assumptions...I mean, how can it be classified as a security risk of ANY sort if it requires that someone is sitting in front of the computer? It seems like this is something that could easily (EASILY) be avoided by - wait for it - preventing unauthorized access! Something that Windows has been doing pretty well since Windows 2000 (flame on, zealots, but it's true).

    Sounds like this guy is just trying to gain cool-guy points with the slashbot crowd by showing off his 1337 windoze hacking skillz. Pass.

  3. Re:Take control? by Tassleman · · Score: 1, Troll

    You're either full of shit or have some bad hardware in your box. Alternatively, you could just be incompetent or want to join in on the MS bashing with all the others. Either way, BS.

  4. Re:here we go by turbine216 · · Score: 1, Troll

    The END of WINDOWS? Christ, could you pack just a little more apocalyptic FUD into that statement?

    This "exploit" is hardly even an exploit - it requires the ability to run arbitrary code. And if just anybody can acquire the ability to run arbitrary code, then i would say the problem runs a bit deeper than msgsvr32.dll.

    Here's something to chew on, zealot: use this exploit on my win2k server. I dare you. What? You can't get in? Oh, you mean the BASIC SECURITY FEATURES BUILT INTO THE OPERATING SYSTEM HAVE THWARTED THIS EXPLOIT BEFORE IT COULD EVEN GET OFF THE GROUND? That's what I thought.

    Christ, your drivel is actually making me sick. Do you actually believe what you just wrote?

  5. Re:Take control? by Moonshadow · · Score: 1, Troll

    No, his first mistake was running IIS.

    The second was running an internet-visible server on Windows.

    *shudder*

    I'm a big fan of Windows workstations. They let you work quickly and get the stuff done that needs to be done. However, the need for user friendliness isn't there with servers. A server should be run and maintained by someone who knows what they're doing, both in the arenas of security and optimization. Running a webserver on Windows is somewhat indicitive of a lack of both.

    I in no way, shape, or form advocate, condone, or approve of Windows servers. Not good.