Windows security problem makes it to CNN
December 21, 2001
CNN has a nice article on a major security problem Windows XP has (I’m so glad I don’t use Windows)..
– snip
A Microsoft official acknowledged that the risk to consumers was unprecedented because the glitches allow hackers to seize control of all Windows XP operating system software without requiring a computer user to do anything except connect to the Internet.
–
– snip
The vulnerabilities were discovered by three young security researchers with eEye Digital Security Inc. of Aliso Viejo, California, led by Marc Maiffret, a 21-year-old former hacker. In recent months, Maiffret, who calls himself the firm’s “chief hacking officer,” has advised the FBI and the White House on Internet security questions and testified before Congress.
The Windows XP problems affect a little-used feature that eventually will allow consumers to control high-tech household appliances using their computers. Called “universal plug and play,” the feature is activated by design in every copy of Windows XP and can be added manually to Microsoft’s earlier Windows ME software, also used by millions of consumers worldwide.
“This is the first network-based, remote compromise that I’m aware of for Windows desktop systems,” said Scott Culp, manager of Microsoft’s security response center. “Every Windows XP user needs to immediately take action.” He called it a “very serious vulnerability.”
–
You can use drizzle which is the new system updater to download the patch…
URL: http://www.cnn.com/2001/TECH/ptech/12/20/microsoft.hackers.ap/index.html
Comments
Got something to say?
