Biting the hand that feeds IT
Biting the hand that feeds IT
Security:
|
|
News ToolsReg Shops |
The Register » Security » ![[Print]](/Design/graphics/icons/pf.png "Printer-friendly version"){kind=icon} ![[Mobile]](/Design/graphics/icons/regmob.png "Read The Reg on your mobile phone"){kind=icon} ![[Alerts]](/Design/graphics/icons/alerts.png "Reg Desktop News Alerts"){kind=icon}
Windows source code exploit releasedThat didn't take long...Published Tuesday 17th February 2004 12:43 GMT The leak of Windows source code last week has already enabled a hacker to create an exploit. Days after portions of the Microsoft Windows 2000 and Windows NT 4.0 source code were illegally leaked onto the Web, an anonymous hacker has found a buffer overflow flaw and crafted an exploit. The attack relies on a vulnerability in the way that IE 5 processes bitmap files. This could allow an attacker to inject hostile code into vulnerable systems, according to an advisory published by the Security Tracker vulnerability database. This exploit is chiefly noteworthy because of how it was developed rather than its severity or other factors (IE 6.0 is reportedly not vulnerable to the exploit). IE exploits are hardly a rarity, despite Microsoft's best efforts to reduce their frequency through its much publicised Trustworthy Computing initiative. White hat hackers yesterday created an exploit for the latest critical flaw in Microsoft Windows, just days after the vulnerability made headlines worldwide. This flaw involves a vulnerability in Microsoft's Abstract Syntax Notation 1 (ASN.1) library which could be applied to seize control of vulnerable systems. Say what you like about them, these hackers work fast... ® Related StoriesMS Windows source code escapes onto Internet
Track this type of story as a custom Atom/RSS feed or by email.
|
|
Top 20 stories • All The Week’s Headlines • Archive • Search
Post to Slashdot
Digg this
Add to del.icio.us
Reddit
Previous Article
