Microsoft PPTP Buffer Overflow; VPNs Vulnerable

An anonymous reader writes "According to this InfoWorld article, a buffer overflow exploit has been discovered for Microsoft's PPTP implementation, which leaves Microsoft VPN solutions vulnerable to exploit. This overflow was discovered by the German security firm Phion; they have posted more info on this page." We might as well throw in yet another remote exploit for FrontPage, too. No, not last week's remote exploits - these are new. Coincidentally, the front group Microsoft organized for the purpose of quashing bug disclosure (that is, reducing Microsoft's bad press) is just now getting underway.

I just reinstalled Windows 2000

[Inthewire]

I've reloaded all the service packs, patches, etc, and it's still telling me there's more - every day or so I get another "your system is about to be anally raped if you get online without this patch, now go get online and download the patch" message.
Maybe that month (or longer) of bugfixing is doing some good.

Another Windows Bug

[Eric+Savage]

Why is it that /. constantly posts a considerably higher % of MS's bugs than other software? It seems counterintuitive that a non-MS crowd would care about MS stuff so much. We knows its buggy, we know its unstable and hard to manage, big deal, what is knowing about another exploit or two going to do for us?