Skip to comments.Microsoft Warns of Critical Windows' Flaw (Windows users alert)
Posted on 02/10/2004 2:37:35 PM PST by gdyniawitawa
SEATTLE/SAN FRANCISCO (Reuters) - Microsoft Corp. (MSFT.O: Quote, Profile, Research) on Tuesday said a critical flaw in most versions of its flagship Windows operating system could allow attackers to run malicious programs on personal computers.
In its monthly security bulletin, the world's largest software maker warned that Windows NT, Windows 2000, Windows XP and Windows Server 2003 were at risk and offered software updates to fix the flaws, which were given Microsoft's highest severity rating of "critical."
"It does affect all (current) versions of Windows," said Stephen Toulouse, security program manager for Microsoft's Security Response Center. "We're not aware of anyone affected by this at this time."
Marc Maiffret, co-founder of eEye Digital Security, the company that discovered the flaw, criticized Microsoft for taking more than six months to come up with a patch to fix the problem, particularly since the flaw allows an attacker multiple ways to break into a system and could do almost anything they wanted to the system.
"We contacted Microsoft about these vulnerabilities 200 days ago, which is insane," he said. "Even the most secure Windows networks are going to be vulnerable to this flaw, which is very unique."
In response, Toulouse said Microsoft needed to take time to make sure to get the fix right, especially given how pervasive the vulnerability is in the software.
"We wanted to make absolutely sure we were doing as broad an investigation as possible," he said.
Windows users can download the patch for the vulnerability from www.microsoft.com/security.
The obvious steps to take are to run Windows Update and install the patches to fix the vulnerabilities as soon as possible," said Craig Schmugar, a virus research manager at Network Associates Inc.'s (NET.N: Quote, Profile, Research) McAfee anti-virus unit.
The latest fixes for Microsoft's software are unrelated to the latest virus attacks by MyDoom and its variants, Schmugar said.
Microsoft switched to a monthly cycle of releasing security updates in order to make it easier for system administrators to keep their software secure and up to date But the company released a critical update a week ago, ahead of Tuesday's scheduled release, in order to fix a patch in its Explorer Web browser that could make PCs vulnerable to attackers. In addition, Microsoft announced a mid-grade security warning for the latest version of its server products for networked computers.
Two years ago, the Redmond, Washington-based company pledged to make its software products more secure and reliable under an initiative, called Trustworthy Computing, outlined in a companywide memo by Chairman Bill Gates.
But computers running the company's software have been hit by several high-profile attacks, such as the SQL Slammer, Nimda and SoBig attacks.
On Monday, a new worm called "Doomjuice," an offshoot of the MyDoom worm, emerged, which used personal computers compromised by the original MyDoom worm to attack and slow down parts of Microsoft's Web site, according to security experts.
The MyDoom worm, as well as its variant MyDoom.B, were designed to entice e-mail recipients to click open an attachment, which then installed malicious software on a personal computer. The worms then instructed infected PCs to flood the Web sites of the SCO Group Inc. (SCOX.O: Quote, Profile, Research) and Microsoft in an effort to shut them down
Gee, and here I thought you cared. . . sniff. ;)
Nobody uses Macs...
You're probably right, there are only about 10,000,000 of us nobodies out here... including:
President George W. Bush
G. Gordon Liddy
Paul MacCready - Gossamer Condor and Mac!
Burt Rutan - Aeronautical Engineer and builder of the globe cirlcing Voyager plane (which runs on a Powerbook)
Buzz Aldrin - "the Mac is outta this world!"
Fleetwood Mac - Well, with a name like that you think they'd use a PC???
Peter Jackson - a "Ring"ing endorsement
Mario Puzo - "Make an offer you can't resist... use a Mac!"
Gerry Spence -Constitutional attorney with a pony-tail and a Mac.
The Flying Karamazov Brothers - Macs really help us juggle our files?
Katie Kouric (Choke)
Michael Jackson - uses it to try on new faces?
Tom Brocaw (Urk)
Dr. Murray Gell-Mann - Nobel Laureate Physics
Dr. Roger Guillemin, M.D., Ph.D, Nobel Laureate in Medicine and Physiology
Dr. Donald Glaser - Nobel laureate Physics
Michael Crichton - definetly someone who knows futuristic.
Gabriel Garcia Marquez, Nobel Laureate Literature
The Late Dr. Timothy Leary - "What a trip!"
Leonard Nimoy - "Macs live long and prosper!"
William Gibson - 'Cyberspace' was created on a Mac!
Bob Dole - It didn't help him keep Clinton out of office...
Stephen Sondheim - Sweeney Todd made him do it!
The Grateful Dead
Al Gore - Ex VP and statue
Martha Stewart - but only to do insider trading?
The Late Seymour Cray - yes, THAT Cray... as in supercomputer.
Sir Roger Banister - "I'd run a mile for a Mac!"
Francis Ford Coppola
Malcolm Forbes, Jr.
Bill Gates!!! - Yup!
Scott Adams - "Dilbert"
Gray Davis - as I "recall"
Jim Cameron - a "titanicc" user
All real nobodies.
Most of us adult Mac users utilize our computers to be productive... not play games. Look at that list. Do you see anyone on there that you would suspect spent their time playing the latest and greatest 3D graphic kill-the-bad-guy game or even FreeCell for that matter or do you see a list of people who work hard and get the job done?
Mac users are interested in productivity, not time wasting. That is why we selected a computer that promotes productivity rather than impedes it!
Bush, you were the one claiming "nobody" and I just invalidated your argument. Being wrong doesn't mean you have to be crude.
Bush, I have always been interested in the most productive computer I can own. So far, Windows has failed to impress me in that area.
I make MONEY with my computers when I am not 'wasting time' surfing FreeRepublic... and I have five Windows computers around here. Two running XP, one running 2000, one still on 95 and another on 98. I still perfer to use a Macintosh. These computers are here so I can run copies of my clients' vertical software on machines similar to the ones in their businesses. I occasionally need to run their software so I can advise accurately over the phone on processes where they are having problems.
I can be much more productive on my G5 Macintosh on other things I use my computer for than any of those other machines... and that is what counts for me. At any one time, I have between 20 and 25 business clients that depend on me to keep their computers and networks running and secure. Four or Five of those businesses operate on Macintoshes... and the level of complaint and problems from them is extremely low. About the only time they need me is for upgrades or advice on some area of their software they don't use too often.
I regret I cannot say the same about the PC using businesses. The PCs businesses experience "downtime" about 10 -15 times more often than the Macs. When they are down, they are down longer. All of this impacts productivity. Since my Mac clients were moved to OS-X, downtime has been non-existent at their businesses due to computers.
In the real world, people want their computers to enhance their ability to make money. Playing games is nice... but it is not what pays the bills.
Far more paranoid than is necessary, but wherever you find comfort....
Oh, okay. It's because Windows is popular. I see.
It's got nothing to do with the "features" of Windows, which make it easier for idiots to use it, which also make Windows easier to exploit.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.