Win XP SP2 kernel bug - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Closed Thread
Thread Tools Display Modes
Old 07-18-2005, 08:59 PM   #1 (permalink)
Techie Beyond Description
Osiris's Avatar
Join Date: Jan 2005
Location: Kentucky
Posts: 36,817
Send a message via ICQ to Osiris Send a message via AIM to Osiris Send a message via MSN to Osiris Send a message via Yahoo to Osiris
Default Win XP SP2 kernel bug

Windows XP SP2 has proved to be a lot more robust than critics give Microsoft credit for but that doesn't mean it's immune from security problems. Security researcher Tom Ferris of discovered a bug in XP's kernel that might be used by hackers to crash even fully patched systems with Windows firewall switched on.

The vulnerability stems from a flaw in Remote Desktop Services (disabled by default except on Windows XP Media Center Edition). A maliciously constructed RDP (Remote Desktop Protocol) request might be used to mount denial of service attacks but Ferris said the bug doesn't lend itself to injecting hostile code into vulnerable systems. Microsoft has confirmed the vulnerability but says the risk is limited to denial of service attacks. "We have not been made aware of attacks that try to use the reported vulnerability or of customer impact at this time, but we are aggressively investigating the public reports," it added.

Nonetheless security alert notification firm Secunia rates the bug as "critical". Seperately, Secunia last week also posted info on another Windows XP SP2 security bug. It warns that a flaw in a Windows Network Connections Service component (netman.dll) also poses a denial of service risk but this is only applies to local users not remote attackers hence a much reduced security risk.

Osiris is offline  
Old 07-18-2005, 09:35 PM   #2 (permalink)
Wizard Techie
Join Date: Jun 2005
Posts: 3,339

Good thing these bugs can get fixed unlike 2K bugs. *owned*

<sorry couldn't resist>

<form action=\"\" method=\"get\">
<input type=\"text\" name=\"search\"> <input type=\"submit\" name=\"submit\" value=\"Search TF before you post!\"></form>
Vista Discussion | 64 Bit Discussion |Microsoft Homepage | Yo Linux | Paul Thurrott | Fire Fox | Thunder Bird | Image Shack | Photo Bucket | Put File | Anti-Spyware | MS Anti-Spyware | Trillian | Anti-Virus | On Line Virus Scan
Tyler1989 is offline  
Old 07-18-2005, 10:01 PM   #3 (permalink)
Ultra Techie
Join Date: Jul 2005
Posts: 530
Send a message via AIM to TheHeadFL

Thank god for EM64T/AMD's x86-64 and the Execute Disable (XD) bit!
Desktop machine: 2 x Opteron 246, Asus K8N-DL, 2GB PC3200 ECC Reg., XFX GeForce 6600GT, 74gb WD Raptor, 2 x 19\" LCDs, Windows XP x64
Server machine: Intel P4 3.0GHz 2MB EM64T, ECS i865pe, 1GB PC3200, 36gb WD Raptor, Windows Server 2003
Laptop: Dell Inspiron 9100 (Intel P4 3.2GHz 1MB Prescott, i865pe, 512MB PC3200, Mobility Radeon 9700, DVD+R/DL Burner), Windows XP
Linux: P3 450Mhz, 386MB ram, Slackware 10.1 (Running mySQL/Apache)
TheHeadFL is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Our Communities

Our communities encompass many different hobbies and interests, but each one is built on friendly, intelligent membership.

» More about our Communities

Automotive Communities

Our Automotive communities encompass many different makes and models. From U.S. domestics to European Saloons.

» More about our Automotive Communities

Marine Communities

Our Marine websites focus on Cruising and Sailing Vessels, including forums and the largest cruising Wiki project on the web today.

» More about our Marine Communities

Copyright 2002-2015 Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 02:45 PM.

Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2016, vBulletin Solutions, Inc.