MS bug busting tool is buggy • The Register

Skip to content

Whitepapers

MS bug busting tool is buggy

Trusted Computing, anyone?

By John Leyden • Get more from this author

Posted in Business, 17th February 2002 21:45 GMT

Free whitepaper – Migrating to the new Dell Management Console

A design flaw in security tool which comes with Microsoft's development could explain why itss applications continue to be subject to buffer overflow attacks.

Executable code built by using Microsoft's Visual C++.NET and Visual C++ version 7 compiler is vulnerable to a buffer overflow attack, software risk management firm Cigital reports.

So a security feature designed to provide bug free code is itself subject to exactly the same kind of bug it's supposed to prevent. Developers who use the tool have a false sense of security, according to Cigital, which recommends additional testing procedures.

Microsoft is evaluating the problem which ,combined with a monster patch for Internet Explorer and the spread of 'Cool Worm', a relatively benign but effective Internet worm which attacked users of Microsoft's MSN Messenger service, caps a difficult week in Redmond's push to gain user trust in its software. ®

External links

target="new Cigital Warns of Security Flaw in Microsoft .NET Compiler

Related stories

MSN Messenger worm entices the unwary
MS issues monster IE security fix
Charney an ominous MS pick
MS taunted with 'trustworthy computing' Web page
MS declares programming moratorium - report
What Billg's new security effort will cost
MS' highest priority must be security - Billg

Free whitepaper – The Cloud threat Landscape

Whitepapers

Analyst Keynote: The Register Agile Data Center Summit

MP3 Download: Opening keynote speech of The Register’s Agile Data Center Summit by European analyst of the year Jon Collins.

Checklist: Midmarket ERP Solutions

Learn how to control your rising business costs by choosing a midmarket ERP solution. Download your Research Briefing now.

Hosted CRM Can Be Your Secret Weapon to Success!

Get an unbiased, FREE comparison of the top 15 CRM industry leaders while you evaluate which CRM vendor solution will work best for your company.

Managing desktop software for fun and profit

Up to 30% of desktop software is unused. This webcast discusses software asset management as a service.

Market Primer: ERP Systems

Still stuck in the clouds when in comes to ERP? This FREE Market Primer can help. You’ll get all your questions answered about the powerful software without spending a cent.

Search more Resources

Most read

Sponsored links

Don’t Miss

Google Spanner — instamatic redundancy for 10 million servers?

Mountain View wants your exabyte

Early adopters bloodied by Ubuntu's Karmic Koala

Smooth Windows upgrade it ain't

Fedora 12 polishes Linux for netbooks

Review RHEL power management

Sign up, sign up for The Register IT security newsletter

Narrowcasting for the email classes