Microsoft Misrepresenting WGA's Functionality?
Legal Ethics writes "According to an article on Groklaw, Microsoft is misrepresenting what the Windows Genuine Advantage (WGA) tool is to pressure people into installing it. It comes with no uninstall, it fails to disclose many pieces of information it provides to Microsoft, and it misrepresents itself as a 'critical update' when it does not address any security vulnerability, although it remains to be seen if it can create one. ZDNet has a series of screenshots so that you can see exactly how badly it misrepresents itself. Oh, and it also checks for updates, so Microsoft can presumably execute arbitrary code on any machine with it installed, merely by making that code part of a WGA update."
.
We also know that Linux is a European consipracy to attack our computers.
This story was probably planted by GOOGLE, the America-hating empire.
Bill Gates is a true patriot who has spread the American Way of Freedom and Capitalism around the world, and he is clearly far cleverer than this mysterious "P" "J". Friends, don't let the democ-rat lies stop you from getting the facts
Hello, Sir. I represent the manufacturer of the car you are driving. I have just replaced the motor in the vehicle with a treadwheel powered by four asthmatic hamsters. I hope you enjoy the improvement to our car.
Have nice day.
Bwwwwwwwwwwwahahahahah!
KFG
A Critical Security Vulnerability has been reported for all x86-platform PCs.
Short description: By retailing a piece of software called an "Operating System" to a computer user, and then using social engineering to promote the installation of this software, a so-called "Operating System Vendor" may be able to execute ARBITRARY CODE on a user's computer.
Severity: Severe. The exploit allows an entity to execute arbitrary code on a machine so compromised. Challenge Vector: Remote or local installation of components, either onto a pre-existing Operating System or onto an otherwise bare x86 PC. Mechanism: A package of executable software, called an "Operating System" is distributed by "Operating System Vendors." These Operating Systems have declared purposes which they fufill with wildly-varied results. These operating systems posess code which may not be fully understood by the user, often these Operating Systems enforce systems of privilege and resource maganement which place the Operating System in a position of "arbitrating" between the PC hardware platform and the user. When the Operating System has been so installed, it is capable of executing arbitrary code on the host system.Don't blame me, I voted for Baltar.
1. Download Knoppix iso
2. Burn iso to CD
3. Reboot computer with CD in drive
4. Use Linux
5. If you like it, open a shell and type "knoppix-installer" to make it permanent
6. ???
7. Profit
"I've got more toys than Teruhisa Kitahara."
I noticed that everytime wgatray.exe is run, it's making a quick call out to MS to check for updates. It's not alot of bandwidth, but I imagine it's a special server at MS that is doing the checking.
Now, if, for example, someone were to write a simple program that called wgatray.exe in an infinite loop and had a few hundred thousand people running it, then Microsoft would wind up on the end of a DoS attack. What would happen if the wga server was down? Would Windows stop working?
(When I say simple, I mean simple, as in a 2 line batch file, didn't Microsoft think this through?)
tray.bat
-----------
wgatray.exe
tray.bat