Jump to content
The Inquirer-Home
Software

Windows vulnerability a feature claims Microsoft

By default by design
By Nick Farrell
Thursday, 6 July 2006, 09:00
MICROSOFT CLAIMED a hacker trick that allows an executable file to be launched when a user types a Web address into Internet Explorer is a feature rather than any security vulnerability.

But security boffins have warned that this particular 'trick' is unnecessary and expect it to be exploited by malware writers. ZD Net Australia quotes Michael Warrilow, of Hydrasight as saying that Volish "useful features" have been shown to result in security exposures that are ultimately exploited for malicious purposes. This will be no exception.

Another security expert James Turner of Frost and Allen said that he could imagine that malware writers could definitely exploit this feature particularly with a little social engineering.

But a spokesVole insisted that it was a feature that had legitimate users for customers.

He said it was important to clarify the difference between security problems and legitimate features. A feature allows someone to do something. A security hole helps an attacker do something they shouldn't be able to do. I trust we are all clear on that?

More here. µ

Share this:

< Previous article| Next article >
Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Advertisement
Subscribe to the INQ Newsletter
Sign-up for the INQBot weekly newsletter
Click here to sign up Existing user
INQ Whitepapers

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

Jobs
Powered by INQJOBS
Advertisement
INQ Poll

Christmas computer sales

Will you be buying a new computer this Christmas?

View other polls
Follow us:
Business & Technology websites:
Business research resources:
Products:
Investment Market IT websites:
Find out what you are worth:
Search for a job: