PDA

Visualizza versione completa : Flaws in WinXP SP2 security features


Giorgius
18-08-2004, 15.17.40
Effetti:
With Service Pack 2, Microsoft introduces a new security feature which warns users before executing files that originate from an untrusted location (zone) such as the Internet.
There are two flaws in the implementation of this feature: a cmd issue and the caching of ZoneIDs in Windows Explorer. The Windows command shell cmd ignores zone information and starts executables without warnings. Virus authors could use this to spread viruses despite the new security features of SP2.
Windows Explorer does not update zone information properly when files are overwritten. So it can be tricked to execute files from the internet without warning.

Leggi:
http://www.heise.de/security/artikel/50051

P8257 WebMaster
18-08-2004, 17.56.39
No, non ci posso credere ... :D

Bye :cool:

RNicoletto
19-08-2004, 15.31.58
DOH ! :wall:

Downloader
19-08-2004, 15.36.53
E bravo zietto caro :crying:

RNicoletto
20-08-2004, 11.05.07
MICROSOFT SMENTISCE ! :o

Microsoft Refutes Windows XP SP2 Flaw Claims

Some German security researchers briefly held the spotlight
yesterday after they claimed that they were the first to discover
flaws in Microsoft's newly released and eagerly anticipated Windows XP
Service Pack 2 (SP2) update. But Microsoft was quick to dismiss the
claims, arguing that the flaws are theoretical, not actual. By late
yesterday, the researchers were forced to admit that they were wrong.
The heise Security researchers had claimed that XP SP2 contains two
security flaws that could potentially let attackers execute code on
users' PCs. They allegedly found the flaws in the new XP SP2 code
that handles potentially malicious attachments and downloads.
Microsoft quickly issued a statement about the claims, noting that
the company "has investigated these reports and is not aware of any
instance in which an attacker could specifically bypass the service in
email or a Web browser to allow a malicious attacker access to a
user's system. This feature is one that is supposed to protect users
against executable files from an unknown source or untrusted
locations. As a best practice, users should always exercise extreme
caution when opening unsolicited attachments from both known and
unknown sources. We don't see these issues as being in conflict with
the design goals of the new protections [in XP SP2]."
The heise Security researchers subsequently admitted that the flaws
are theoretical only and that no software code exists to exploit them.
And the company still recommends that users install XP SP2.
Regardless, other security researchers are certain that XP SP2 flaws
will eventually be found. A representative of vulnerability-assessment
company PivX Solutions told CNET.com that his company has alerted
Microsoft to several problems, and eEye Digital Security says that
it's still investigating XP SP2.
Microsoft has been quite upfront about the update's capabilities.
Although the service pack will make XP more secure, it isn't a panacea
and won't solve all security problems. "SP2 is a step along the way to
better security," Windows Group Product Manager Greg Sullivan told me
recently. "But it's only a step. We still have more work to do."
FONTE: WinInfo Daily UPDATE (http://www.winnetmag.com/windowspaulthurrott/Article/ArticleID/43710/windowspaulthurrott_43710.html)

Giorgius
20-08-2004, 23.41.35
Aspetterei altri gg. prima di valutare l'eventuale installazione italiana del Service Pack 2 non appena sarà rilasciata. ;)

Giorgius
21-08-2004, 22.24.53
Microsoft's (Nasdaq: MSFT - news) Service Pack 2 for Windows XP (news - web sites) is one of the company's most ambitious operating system updates ever, and -- as expected -- some experts already have discovered security vulnerabilities in the giant patch.

Leggi:
http://story.news.yahoo.com/news?tmpl=story&ncid=1209&e=1&u=/nf/20040820/tc_nf/26469&sid=95573734

P8257 WebMaster
22-08-2004, 16.45.59
Il fatto che abbiano detto che le falle sono solo teoriche non significa nulla, perché anche se difficili da sfruttare o addirittura impossibili, restano presenti come "vizio" di creazione del software.

Bye :cool:

The Saint
22-08-2004, 22.07.39
Originariamente inviato da P8257 WebMaster
Il fatto che abbiano detto che le falle sono solo teoriche non significa nulla, perché anche se difficili da sfruttare o addirittura impossibili, restano presenti come "vizio" di creazione del software.

Bye :cool: Non mi pare che siano così impossibili da sfruttare:
http://www.wintricks.it/news1/article.php?ID=3138 :D

Non sono sicurissimo che abbiano sfruttato lo stesso buco, ma sembrerebbe cmq collegato... :rolleyes:

P8257 WebMaster
22-08-2004, 23.19.24
The Saint ha scritto:
Non mi pare che siano così impossibili da sfruttare:
http://www.wintricks.it/news1/article.php?ID=3138 :D

Non sono sicurissimo che abbiano sfruttato lo stesso buco, ma sembrerebbe cmq collegato... :rolleyes:

Non è lo stesso "buco"...

Mi riferivo alla falla sulla console che ignora in esecuzione la "zonatura" di Internet Explorer.

Bye :cool: