Jump to content
The Inquirer-Home

Microsoft patches 'evil' bug

Nibble Kernel clunk
Wednesday, 11 March 2009, 13:46

MICROSOFT HAS REPAIRED has repaired a kernel bug in Windows which was dubbed evil by insecurity experts.

The patch, MS09-006, fixed a vulnerability in the kernel which meant that all a victim had to do was look at a webpage to be infected.

MS09-008 fixed four separate flaws in Windows' DNS and WNS servers and Microsoft tells us it is very important.

L'Inq
VNUNet

Share this:

Comments
Extra Stuff for Darn Patch Tuesday....

Although Update Might Be light, Another Thing to Do On Patch Tuesday Is Address All Compromised Partitions With Extra Hard Registury Cleaner, Try msn tech downloads for sample, Removed 6,710 of Buggers just Yesterday. Defrag & Try to Unblock partition thru computer on wporking partition.Speedo UP Memory. Its Simple & Every 4 Months Spending Day Trying Everything including Restore & NewsGroups is way to spend Sunny, Not HOT, Afternoon. Might Pick UP Some REAL Space.AdViseMent By: drashek

posted by : Techie, 11 March 2009 Complain about this comment
Duh

"The patch, MS09-006, fixed a vulnerability in the kernel which meant that all a victim had to do was look at a webpage to be infected."

I'm guessing that a victim had to be using Internet Exploder for this to be an issue - which should be the ONLY browser out there with security holes to the kernel.

Why any user would expose their system to such ugly security holes by using IE is way beyond me...

HB

posted by : Hucklebuck, 11 March 2009 Complain about this comment
@Hucklebuck

@Hucklebuck:

Well guess what, not every security hole can be circumvented by using Firefox because Firefox also has to use GDI to draw content and the bug is in the GDI passing unvalidated input to the kernel mode (or as some would say "to the other side of a fence").

http://www.microsoft.com/technet/security/bulletin/ms09-006.mspx

posted by : Igor, 12 March 2009 Complain about this comment
@Hucklebuck

Wasn't it a couple of months back that Safari for Windows was doing the same thing you are accusing IE of? That browser would download and automatically run all applications from the net without user authorization, and run them administratively

posted by : John Tagart, 12 March 2009 Complain about this comment
Don't blame the bugs!

Bugs (and hackers) have to live,too. Bugs, and the opportunistic viruses that cohabit with them, gravitate toward financially-nutritious places riddled with holes and tunnels in which they burrow deep inside, hiding and gorging themselves and their masters.

Microsoft Windows operating systems are designed to fill all these requirements, and thus are natural habitats to a menagerie of various bugs and viruses.

It is not the bug's fault. If you happen to be bug-allergic, use Linux.

posted by : Orkin man, 13 March 2009 Complain about this comment
Pshh... All browsers are vulnerable

It's actually obvious. Firefox, IE, Opera, Safari, etc. All have vulnerabilities, hell Firefox and IE have the most. And yes, Firefox does have them.

At least Microsoft made a good move with it.

posted by : Smalls, 13 March 2009 Complain about this comment
Advertisement
Subscribe to the INQ Newsletter
Sign-up for the INQBot weekly newsletter
Click here to sign up Existing user
Advertisement
INQ Poll

Windows 7 impressions

How is windows 7 working out for you?