XP Vulnerable to hack attacks says Microsoft.

[NicColt]

Good mother of God.

Microsoft's newest version of Windows, billed as the most secure ever, contains several serious flaws that allow hackers to steal or destroy a victim's data files across the Internet or implant rogue computer software. The company released a free fix Thursday. A Microsoft official acknowledged that the risk to consumers was unprecedented because the glitches allow hackers to seize control of all Windows XP operating system software without requiring a computer user to do anything except connect to the Internet. Microsoft made available on its Web site a free fix for both home and professional editions of Windows XP and forcefully urged consumers to install it immediately. The flaws, discovered five weeks ago by independent security researchers, threatened to undermine widespread adoption of Microsoft's latest Windows software, which many hope will be an economic catalyst for the sagging technology industry.

 

[CodeJockey]

Just another example of MS helping viruses to spread and crackers to cause havoc...

They have shown little regard for security problems, as evidenced by the way that Outlook, IE, and such programs have constantly been exploited by viruses...with fixes only coming after reports from outside MS, or worse, when a virus is released.

I think I'll stick with ME for now.

 

[Feisters]

Gee, a patch for XP? Go figure! SR1 can't be far behind. GO BILL$$$

 

[Tomek]

"Microsoft security" is a paradox... i just hope the MS zealots don't show up 😀

 

[Demonicon]

This is old news, there is a patch already.

 

[BlackSoul]

<< XP Vulnerable to hack attacks says Microsoft >>



Well...DUH! It is Micro$haft after all.

 

[corkyg]

All that means is there is now a 4th "Critical" update when you go to Windows Update. No need to jaw about it . . . just do it. This is sort of yesterday's news.

 

[Saltin]

<< They have shown little regard for security problems, as evidenced by the way that Outlook, IE, and such programs have constantly been exploited by viruses...with fixes only coming after reports from outside MS, or worse, when a virus is released. >>



Please......



<< I think I'll stick with ME for now. >>



Ahh, that explains it.

 

[rbV5]

<< They have shown little regard for security problems, >>



Thats why they spend all that time and efforts on the patches that were/will be released. Strangely the fact that it is the dominating OS by far thereby attracting the vast majority of virus writers and efforts to break, disable and exploit the OS (which are largely completely ineffective BTW) always seems to escape the Anti-MS zealots. The patch is out, fixes the hole, end of story.

 

[cool]

<< Just another example of MS helping viruses to spread and crackers to cause havoc...

They have shown little regard for security problems, as evidenced by the way that Outlook, IE, and such programs have constantly been exploited by viruses...with fixes only coming after reports from outside MS, or worse, when a virus is released.

I think I'll stick with ME for now. >>



this security issues applies to WinME, too. So stick with it...

 

[Saltin]

<< Thats why they spend all that time and efforts on the patches that were/will be released. Strangely the fact that it is the dominating OS by far thereby attracting the vast majority of virus writers and efforts to break, disable and exploit the OS (which are largely completely ineffective BTW) always seems to escape the Anti-MS zealots. The patch is out, fixes the hole, end of story. >>



Well put. The fact of the matter is that almost any firewall makes it impossible for a cracker to take advantage of this or pretty much any other flaw. If you arent running a firewall, you don't have any right to whine about security in the first place.
I would also suggest that MS has been consistent and timely with patches and making thier availability known to the public.

 

[CodeJockey]

<< Thats why they spend all that time and efforts on the patches that were/will be released. Strangely the fact that it is the dominating OS by far thereby attracting the vast majority of virus writers and efforts to break, disable and exploit the OS (which are largely completely ineffective BTW) always seems to escape the Anti-MS zealots. The patch is out, fixes the hole, end of story >>



I'd much prefer they spend the time carefully designing, writing, and testing their code in the first place, rather than rushing through development in an effort to pack more and more features into the OS. I'm just sick of having to download and install patches, all seemingly for the same type of problem, buffer overruns that enable a virus to gain access to the system. Most annoying is Outlook, which seems to have been written with virus delivery as its primary function.
I do not think the viruses are largely completely ineffective, and nor would you once some twit in your office, after having ignored all requests to update their anti-virus data, mindlessly launched a virus attachment from their e-mail, one which then proceeded to nuke the office server. Yes, the server was restored from backup, and very little data was actually lost, but several dozen people had a day off...not an inconsiderable cost for something that should not happen.
As for The patch is out, fixes the hole, end of story, well...believe that if you wish, but there will be a next time, and a next time, etc.



<< Well put. The fact of the matter is that almost any firewall makes it impossible for a cracker to take advantage of this or pretty much any other flaw. If you arent running a firewall, you don't have any right to whine about security in the first place.
I would also suggest that MS has been consistent and timely with patches and making thier availability known to the public. >>



Why is a firewall better than Windows? Is it magically better, just because it is called a firewall? Is it because of the name? NO. It's because the writers of firewall software concern themselves with security, first and foremost. MS could do this themselves directly within the network layers of Windows, but they don't. The fact that such a hole was discovered in XP, their most recent "most secure ever" OS just proves that they haven't changed their tune.

 

[BFG10K]

This problem is blown way out of proportion. If you have firewalled connections (all XP connections are firewalled by default) then the security hole has no effect on you as the hackers can't get into your system in the first place. Anyone stupid enough to disable their firewalls is asking for trouble anyway.

 

[gopunk]

some twit in your office

and there you have it folks, the #1 threat to computer security.

 

[Turkey]

All code has bugs. Not much more to it than that. The fact remains, however, that the biggest security flaws in a system are misconfigurations and other user errors. It's like driving... all cars have problems. Some have more than others. But, the biggest cause of crashes? Bad driving.

And the latest security prob applies to 98, ME, and XP - NT and 2k are ok for this particular prob.