Microsoft Patches 1990s-Era 'Ping of Death'

CWmike writes "Microsoft on Tuesday issued 13 security updates that patched 22 vulnerabilities in Internet Explorer, Windows, Office and other software, including one that harked back two decades to something dubbed 'Ping of Death.' While other patched vulnerabilities we more serious, one marked 'CVE-2011-1871' brought back memories for nCircle's Andrew Storms. 'This looks like the Ping of Death from the early-to-mid 1990s,' he said. 'Then, when a specially-crafted ping request was sent to a host, it caused the Windows PC to blue screen, and then reboot.' Two decades ago, the Ping of Death (YouTube video demonstration) was used to bring down Windows PCs remotely, often as a way to show the instability of the operating system."

Re:POD has long since been patched.

You're forgetting about the part where Microsoft wrote a *BRAND NEW* TCP stack for Vista+. This is why these old bugs keep popping up in the news. Yes, it was patched -- but that was when they were using the forked BSD stack. Now they get to play this game for the next 10 years until their new stack matures.