Slashdot Mirror


Newly-Found Windows Bug Affects All Versions Since NT

garg0yle writes "A researcher has found a security bug that could allow privilege escalation in Windows. Nothing new there, right? Well, this affects the Virtual DOS Machine, found in every 32-bit version of Windows all the way back to Windows NT. That's 17 years worth of Windows and counting. 'Using code written for the VDM, an unprivileged user can inject code of his choosing directly into the system's kernel, making it possible to make changes to highly sensitive parts of the operating system. ... The vulnerability exists in all 32-bit versions of Microsoft OSes released since 1993, and proof-of-concept code works on the XP, Server 2003, Vista, Server 2008, and 7 versions of Windows, Ormandy reported.'"

3 of 393 comments (clear)

  1. I was RIGHT ! by Anonymous Coward · · Score: -1, Troll

    Don't just dump IE.

    Dump MicroSLOP
    completely !

    Yours In Novosibirsk,
    K. Trout

  2. Except for the few years it stuck in Ubuntu by ccham · · Score: 0, Troll

    No, ignore the problem after all there is plenty of randomness available in Ubuntu. Randomly qualified maintainers fiddling with other randomly qualified maintainer's fiddling of the original maintainer's code. Nothing wrong what so ever with packaging in meta Linux distros...

  3. Excellent News : There is a Patch by Anonymous Coward · · Score: -1, Troll

    There is a patch for not only this new bug in Windows, but every other bug, known or unknown. This patch will also boost performance and even removes all of those pesky Windows bugs that is erroniously attributed to open source software such as Firefox, Openoffice.org, etc. Click here for more info about the patch.