Slashdot Mirror

← Back to Stories (view on slashdot.org)

GDI Vulnerabilities: An Open Letter to Microsoft

Posted by michael on from the your-call-is-important-to-them dept.

UnderAttack writes "Tom Liston, the guy that brought us the LaBrea Tarpit, wrote an open letter to Microsoft regarding the GDI JPEG vulnerability, and Microsoft's scanning tool for this vulnerability, which he calls 'worse then useless'. Tom, who wrote his own scanning tool, ends his letter with 'Please stop treating your customers like idiots and give us information; information that we can use.' Like Tom explains, the official Microsoft scanning tool misses a lot of vulnerable DLL's installed by third parties, and Microsoft fails to explain if these libraries are a problem or not."

3 of 444 comments (clear)

  1. Re :peoplesprimary by Anonymous Coward · · Score: 0, Offtopic



    Do not go to the peoplesprimary.com site.

    Last time I looked they had a javascript in place that automatically posts the contents of your "Copy" buffer to a remote server... and then displays it for everyone to see. Not good.

  2. An open letter to Tom Liston by daVinci1980 · · Score: 0, Offtopic
    Please stop treating your customers like idiots and give us information; information that we can use.

    Please look up what the semi-colon is used for; it should be used in place of a period for emphasis.

    Apologies for my grammar correction, but is seriously irks me when someone decides to send *an open letter* to a company and doesn't check for grammar, punctuation, and spelling mistakes. Or does OpenOffice not support these features? :-p
    --
    I currently have no clever signature witicism to add here.
  3. About your sig... by orcrist · · Score: 0, Offtopic

    Want to see Kerry's changing positions on Iraq, in his own words?

    For a more analytical look with some of Bush's words thrown in for context look here.

    --
    San Francisco values: compassion, tolerance, respect, intelligence