Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Critical Bug In All Current Windows Versions

Posted by timothy on from the innocent-whistling-sound dept.

Trailrunner7 writes "Microsoft is warning its users about a dangerous flaw in the way that Windows handles certain MHTML operations, which could allow an attacker to run code on vulnerable machines. The bug affects all of the current versions of Windows, from XP up through Windows 7 and Windows Server 2008. Microsoft issued an advisory about the MHTML vulnerability, which has been discussed among security researchers in recent days. There is some exploit code available for the bug, as well. In addition to the advisory, Microsoft has released a FixIt tool, which helps mitigate attacks against the vulnerability in Windows."

18 of 156 comments (clear)

  1. Knowledge Base containing Fixit Link by Nuisance · · Score: 5, Informative

    Would be nice to have seen these in the article...

    http://support.microsoft.com/kb/2501696

    1. Re:Knowledge Base containing Fixit Link by icebike · · Score: 5, Interesting

      Perhaps also useful would be a hint that simply avoiding Internet Explorer would provide all the protection from this bug that is needed.

      --
      Sig Battery depleted. Reverting to safe mode.
    2. Re:Knowledge Base containing Fixit Link by TheLink · · Score: 3, Insightful

      Uh that's all the data most of their users need. Most of their users want a simple "FixIt" (that's how they often get into trouble in the first place, but that's not MS's fault). Most of these users aren't going to even know about this problem though. They'll only get a fix if MS ever releases it in a Windows Update and they have Windows Updates enabled.

      As for the rest of the users who actually care to know more: https://www.microsoft.com/technet/security/advisory/2501696.mspx
      The very few who are that interested can find out even more details themselves.

      So it's inaccurate to say MS doesn't give a shit about this problem.

      --
  2. Investing by cosm · · Score: 4, Funny

    Can I just say that now is probably a good time to invest in the tech industry. Since /. has redesigned the site, I believe productivity levels in the industry will be on the rise due to the number of commenters leaving in droves.

    --
    'We are trying to prove ourselves wrong as quickly as possible, because only in that way can we find progress.' RPF
    1. Re:Investing by Anonymous Coward · · Score: 5, Funny

      I'd mod you up but moderation is broken on opera

    2. Re:Investing by lowlymarine · · Score: 3, Funny

      Clearly it's just your horribly dated hardware. Everything's fine on my i7-2600k, time to get with the times grandpa!

    3. Re:Investing by artor3 · · Score: 5, Insightful

      And I'd mod you down, but doing so would make my post (and all other child posts) invisible as well. Heck, since you posted as AC, odds are no one will ever know this post was here.

    4. Re:Investing by Culture20 · · Score: 3, Informative

      Assuming you're using the javascripty version of Discussion2
      Take a look at your process list. Your browser is eating at least one of your cores. open a few more /. windows. Feel the burn. My single core machine was dying with just one window open. I had to go back to Discussion1 and flag /. with noscript. http://slashdot.org/users.pl?op=editcomm

    5. Re:Investing by seifried · · Score: 4, Insightful

      I think they've "pulled a Digg"

    6. Re:Investing by icebraining · · Score: 3, Insightful

      Classic version ftw. It doesn't use more than 6-7% of one core (AMD AthlonII X4 620).

      --
      Dilbert RSS feed
    7. Re:Investing by DAldredge · · Score: 4, Funny

      I would mod you up but /. hasn't given me mod points for 3 or 4 years.

    8. Re:Investing by Mr.+DOS · · Score: 5, Informative

      Sorry, but the 10 mod points is because you've been singled out (check the question “Why do I have 10 moderator points instead of the usual 5?” under Comments and Moderation), not because of the new design.

    9. Re:Investing by ikkonoishi · · Score: 4, Funny

      I must be a moderating god because I get mine in chunks of 15. O_o

      Yes. The power! Its going to my head. I am the mod god! Its me!

    10. Re:Investing by uvajed_ekil · · Score: 3, Interesting

      You're right, I'm not seeing the number of comments, either. I liked having it - I knew instantly if there was a big buzz about something, or if taking time to throw in my two cents might matter for a stalled thread.

      --
      This is a hacked account, for which the owner can not be held responsible.
  3. Re:Which versions by PatPending · · Score: 5, Informative


    Windows XP Service Pack 3
    Windows XP Professional x64 Edition Service Pack 2
    Windows Server 2003 Service Pack 2
    Windows Server 2003 x64 Edition Service Pack 2
    Windows Server 2003 with SP2 for Itanium-based Systems
    Windows Vista Service Pack 1 and Windows Vista Service Pack 2
    Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2
    Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2**
    Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2**
    Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2
    Windows 7 for 32-bit Systems
    Windows 7 for x64-based Systems
    Windows Server 2008 R2 for x64-based Systems**
    Windows Server 2008 R2 for Itanium-based Systems
    Source: http://www.microsoft.com/technet/security/advisory/2501696.mspx
    Appears to apply only to Internet Explorer

    --
    What one fool can do, another can. (Ancient Simian Proverb)
  4. Re:uhh by hairyfeet · · Score: 5, Informative

    Hi MR AC! If you would have read TFA or even TFS (I know I know, but I got bored) you would see they provide a link to The MSFT "fix it for me" page for this problem. Just click on "fix it for me" run the fix it, and that's it. Don't even need a reboot.

    I'm sending the link to my customers and family now, and since it makes a restore point before applying it is easy to undo if you need to, although with previous "fix it for me" tweaks that I've run the MSFT patch released later took care of the fix it tweak before applying the patch.

    So I don't really see why you or anyone would complain about this one. They have a quick fix that is so simple your grandma can run it, and released the fix quickly to tide people over until they have worked up a patch. I don't see how they could have done any better on this, as a full patch will take time to test and rightfully so as you wouldn't want MSFT releasing patches that break apps and/or drivers and cause more pain than the bug would you? This is easy, simple to apply, and painless to deploy. I don't see how you can get better and the guy that came up with the "fix it for me" program really deserves a raise and company car, as it really has made these fast released workarounds painless for home users..

    --
    ACs don't waste your time replying, your posts are never seen by me.
  5. Re:uhh by hairyfeet · · Score: 5, Insightful

    What EXACTLY is wrong with system restore? I've found especially with my click happy love to install software customers and relatives having a "quick undo" button comes in damned handy! Now of course system restore is in no way shape or form a substitute for backups, which is why I have them set up with weekly differentials and full backups monthly on USB HDDs, but you can't expect them to run a differential every time they want to try something new.

    And who cares about "gigabytes" of anything anymore? Hell the lowest machines I sell have 500GB HDDs and even the kids P4 hand me downs have 400Gb drives, so why would anybody care? It isn't like huge drives are expensive.

    So I really don't see what the problem is with system restore. For a quick undo button it works just fine, with huge drives worrying about 20-50Gb being reserved for system restore is frankly pointless when everyone has more space than they know what to do with, and when used with a combination of good AV, weekly backups, and a lower risk browser like Firefox or Chrome with ABP it does just what it should do, which is provide a quick way to roll back changes if something goes wrong. So what EXACTLY is so bad about it, because frankly I haven't seen a problem with system restore since XP SP2 came out.

    --
    ACs don't waste your time replying, your posts are never seen by me.
  6. Someone call teh ROFLCOPTER by Crypto+Gnome · · Score: 3

    MSIE just shot itself in the foot.

    MHTML is a microsoft-ism

    If you do not use the worlds-most-villified-browser, and if you have also not explicitly installed a plugin (or otherwise) to enable MHTML support in our *much less sucky* browser, then you are golden.

    --
    Visit CryptoGnome in his home.