already a new sp2 flaw

[oldman420]

http://www.expatica.com/source/site_article.asp?subchannel_id=52&story_id=11144

 

[MrChad]

According to trade magazines, the new Microsoft Security Center - which is meant supervise the computers' defences against viruses and other hacking attempts - may give users a false sense of security and allow hackers to remain undetected even when they have in effect taken over the computer.

The Security Center can be spoofed by hackers into displaying false information thereby allowing viruses to turn off firewalls and anti-virus software, according to TechWeb. The threat was said to be more serious for home machines which are generally less well protected than corporate networks.

So do they have a specific example of a spoof, or are they just spreading FUD?

 

[stash]

We discussed this at length in another thread. This article is even worse than the original, since it leaves out that part that this only works when you are an administrator. Which is exactly what it is supposed to do.

It also neglects to mention that this "flaw" requires getting the user to download and run malicious code. If I get the user to do that (especially if he is running as admin), why would I spoof the security center? I could format the entire drive at that point.

Edit: Well, they do make a reference to that fact that this only works as admin, but I doubt the author realizes it.

The threat was said to be more serious for home machines which are generally less well protected than corporate networks.

Users on corporate networks are less likely to be running as admins (but many do), whereas the majority of home users do, since that is the default behavior.