Holes found in Windows XP update

zippyjuan · 08-20-2004, 11:55 PM

Holes found in Windows XP update
From the BBC

Reported bugs in SP2 let files find their way onto users' machines
Barely hours after home users started securing their PCs with a key update for Windows XP, security experts have found ways around it.
The SP2 update makes XP less attractive to virus writers and malicious hackers by plugging widely exploited loopholes.

But discoveries by security firms Secunia and German company Heise show that some holes have been left open.

Microsoft said it was investigating one of the new bugs but said no users had been caught out by this loophole.

Bug watch

The bug Microsoft is looking into lets malicious programs hide as images that automatically install and then run when Windows is re-started.

Microsoft only put the SP2 security patch for the Home edition of Windows XP on its auto-update servers this week.

SP2 provides a single place for people to control anti-virus software, firewall and XP updates as well as blocking pop-up ads, some spyware and warning about the dangers of e-mail attachments.

SP2 CHANGES
Pop-up ads blocked
Revamped firewall on by default
Outlook Express, Internet Explorer and Windows Messenger warn about attachments
Origins of downloaded files logged
Web graphics in e-mail no longer loaded by default
Some spyware blocked
Users regularly reminded about Windows Updates
Security Centre brings together information about anti-virus, updates and firewall
Protection against buffer over-runs
Windows Messenger Service turned off by default

The update also tweaks XP to make it less vulnerable to the bugs exploited by viruses and other malicious programs.

But security expert Secunia has posted information about a bug in Internet Explorer that could, it says, let a malicious website "plant an arbitrary executable file in a user's start-up folder".

When an infected system is re-booted, the planted program will run.

The bug works on systems patched with SP2.

The loophole, which strikes when files are dragged and dropped from the net on to a local zone, was found by an ethical hacker who goes by the handle of http-equiv.

A demonstration of the bug has been posted on the Malware website.

"Given the significant amount of user action required to execute an attack, Microsoft does not consider this to be a high risk for customers," said Paul Randle, head of all things XP at Microsoft UK.

But he added that Microsoft was investigating to see what action needed to be taken to deal with the bug.

Tricking Windows

Other problems with SP2 were discovered by German security firm Heise, which published information about two of them.

Heise found that the system SP2 introduces to warn users about the dangers of running untrusted files downloaded from the net can be subverted.

The company found a way to trick Windows into running net-downloaded files without warning users about what was happening.

When Heise asked Microsoft about the bugs, the software giant said it did not think that it needed to produce patches or workarounds to tackle them.

The vulnerabilities discovered have are not being exploited in the wild and have only been demonstrated as working in ideal circumstances.

However, Microsoft has produced a so-called hotfix for SP2 to help tackle a problem some people are having with programs that use particular net addresses.

bachviet · 08-21-2004, 05:12 PM

I don't think M$ could ever plug all the security holes.

Bires · 08-21-2004, 09:28 PM

Surprised I am not.

mechmike0034 · 08-24-2004, 12:30 PM

Counterpoint: http://www.eweek.com/article2/0,1759,1637531,00.asp

08-20-2004, 11:55 PM	#1
zippyjuan Picture of the Day Guru Join Date: Oct 2002 Location: Sunny San Diego Posts: 8,756	Holes found in Windows XP update Holes found in Windows XP update From the BBC Reported bugs in SP2 let files find their way onto users' machines Barely hours after home users started securing their PCs with a key update for Windows XP, security experts have found ways around it. The SP2 update makes XP less attractive to virus writers and malicious hackers by plugging widely exploited loopholes. But discoveries by security firms Secunia and German company Heise show that some holes have been left open. Microsoft said it was investigating one of the new bugs but said no users had been caught out by this loophole. Bug watch The bug Microsoft is looking into lets malicious programs hide as images that automatically install and then run when Windows is re-started. Microsoft only put the SP2 security patch for the Home edition of Windows XP on its auto-update servers this week. SP2 provides a single place for people to control anti-virus software, firewall and XP updates as well as blocking pop-up ads, some spyware and warning about the dangers of e-mail attachments. SP2 CHANGES Pop-up ads blocked Revamped firewall on by default Outlook Express, Internet Explorer and Windows Messenger warn about attachments Origins of downloaded files logged Web graphics in e-mail no longer loaded by default Some spyware blocked Users regularly reminded about Windows Updates Security Centre brings together information about anti-virus, updates and firewall Protection against buffer over-runs Windows Messenger Service turned off by default The update also tweaks XP to make it less vulnerable to the bugs exploited by viruses and other malicious programs. But security expert Secunia has posted information about a bug in Internet Explorer that could, it says, let a malicious website "plant an arbitrary executable file in a user's start-up folder". When an infected system is re-booted, the planted program will run. The bug works on systems patched with SP2. The loophole, which strikes when files are dragged and dropped from the net on to a local zone, was found by an ethical hacker who goes by the handle of http-equiv. A demonstration of the bug has been posted on the Malware website. "Given the significant amount of user action required to execute an attack, Microsoft does not consider this to be a high risk for customers," said Paul Randle, head of all things XP at Microsoft UK. But he added that Microsoft was investigating to see what action needed to be taken to deal with the bug. Tricking Windows Other problems with SP2 were discovered by German security firm Heise, which published information about two of them. Heise found that the system SP2 introduces to warn users about the dangers of running untrusted files downloaded from the net can be subverted. The company found a way to trick Windows into running net-downloaded files without warning users about what was happening. When Heise asked Microsoft about the bugs, the software giant said it did not think that it needed to produce patches or workarounds to tackle them. The vulnerabilities discovered have are not being exploited in the wild and have only been demonstrated as working in ideal circumstances. However, Microsoft has produced a so-called hotfix for SP2 to help tackle a problem some people are having with programs that use particular net addresses. __________________ I add new pictures to my photo gallery pretty regularly. You can see them here if you are interested: http://www.pbase.com/jeffryz

08-21-2004, 05:12 PM	#2
bachviet What's Da Pho*? Join Date: Aug 2001 Location: SoCal (714) Posts: 13,296	I don't think M$ could ever plug all the security holes. __________________ Dell Dimension 9200 \| Intel Core 2 Quad Q6600 (2.4GHz) \| 4x1GB DDR2 \| 256MB nVidia GeForce 8800GT Dell Studio 17 \| Intel Core i7-720QM (1.6GHz) \| 2x2GB DDR3 1066MHz \| 1GHz ATI Mobility Radeon HD 4650 Intel P4-C 3.0GHz \| ECS 865PE-A \| 3x512MB PC3200 \| 128MB PNY GeForce 6600GT

08-21-2004, 09:28 PM	#3
Bires Admiral Join Date: May 2000 Posts: 5,064	Surprised I am not. __________________ Five years...

08-24-2004, 12:30 PM	#4
mechmike0034 aka the keg killer Join Date: Dec 2002 Location: Ala-effin'-bama! Posts: 2,738	Counterpoint: http://www.eweek.com/article2/0,1759,1637531,00.asp __________________ "The price of progress is trouble." (C. F. "Boss" Kettering) "50% of the American public has below-average intelligence. 70% of the American public now has regular access to the Internet. Do the math." (unknown)

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

User Name
Password
Remember Me?