Vista gets owned

http://Windows.Vista.JustGotOwned.com

Hacker, Microsoft duke it out over Vista design flaw
http://blogs.zdnet.com/security/?p=29

MS Watches as Vista Gets '0wn3d' by Rootkit
http://www.eweek.com/article2/0,1895,1999241,00.asp

--
Priceless quotes in m.p.w.vista.general group:
http://protectfreedom.tripod.com/kick.html

Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
"I do know for a fact that his monkey really needs a spanking. The
monkey gets "out of hand" if you know what I mean!"

"Good poets borrow; great poets steal."
- T. S. Eliot

It's not a hole, per se, it just means that admins should only install from
reputable folks (of course). And it doesn't matter to standard user
accounts - only admins who do the installing anyway.

BTW, the root kit exploit was closed some time ago before Vista went RTM.
Next time you post a set of articles and draw such definite conclusions, you
should at least try to be up-to-date about it.

--

Saucy Lemon
(For email, remove the caps in address)



"Nina DiBoy" <> wrote in message news:er081o$1e5$...
> http://Windows.Vista.JustGotOwned.com
>
> Hacker, Microsoft duke it out over Vista design flaw
> http://blogs.zdnet.com/security/?p=29
>
> MS Watches as Vista Gets '0wn3d' by Rootkit
> http://www.eweek.com/article2/0,1895,1999241,00.asp
>
> --
> Priceless quotes in m.p.w.vista.general group:
> http://protectfreedom.tripod.com/kick.html
>
> Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
> "I do know for a fact that his monkey really needs a spanking. The monkey
> gets "out of hand" if you know what I mean!"
>
> "Good poets borrow; great poets steal."
> - T. S. Eliot

Agreed. From the eWeek article dated 8/4/2006:

"We've already fixed that path [of attack] … It's beta software that will
have bugs. That [attack scenario] has already been fixed in later builds,"
Fathi said.

"Saucy Lemon" wrote:

> It's not a hole, per se, it just means that admins should only install from
> reputable folks (of course). And it doesn't matter to standard user
> accounts - only admins who do the installing anyway.
>
> BTW, the root kit exploit was closed some time ago before Vista went RTM.
> Next time you post a set of articles and draw such definite conclusions, you
> should at least try to be up-to-date about it.
>
> --
>
> Saucy Lemon
> (For email, remove the caps in address)
>
>
>
> "Nina DiBoy" <> wrote in message news:er081o$1e5$...
> > http://Windows.Vista.JustGotOwned.com
> >
> > Hacker, Microsoft duke it out over Vista design flaw
> > http://blogs.zdnet.com/security/?p=29
> >
> > MS Watches as Vista Gets '0wn3d' by Rootkit
> > http://www.eweek.com/article2/0,1895,1999241,00.asp
> >
> > --
> > Priceless quotes in m.p.w.vista.general group:
> > http://protectfreedom.tripod.com/kick.html
> >
> > Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
> > "I do know for a fact that his monkey really needs a spanking. The monkey
> > gets "out of hand" if you know what I mean!"
> >
> > "Good poets borrow; great poets steal."
> > - T. S. Eliot
>
>

"PNutts" <> wrote in message
news:0EE7624C-7E98-45CD-96C5-...
> Agreed. From the eWeek article dated 8/4/2006:
>
> "We've already fixed that path [of attack] … It's beta software that will
> have bugs. That [attack scenario] has already been fixed in later builds,"
> Fathi said.
>


Actually out of the links that one is by far the scariest. The exploit has
wide ranging implications for all OS' not just Vista. It uses a flaw in
hardware virtualization that could allow a program to have complete control
of a computer in ways that would be almost impossible to detect. This
doesn't just affect Vista but any OS that runs on the newer AMD and Intel
CPUs with hardware virtualization. Any exploit for any OS could be used to
install a program that takes advantage of this hardware exploit. Once
installed the only way to get rid of it would be to remove the hard drive
and do it from another computer.

The actual flaw or exploit for Vista had two parts. The main one about
unsigned drivers was patched long before the RTM and only applies to Vista
x64. That vector of attack has always existed if unsigned drivers are
allowed so in a sense Vista x86 is vulnerable It's not an exploit per se but
a design decision to allow unsigned drivers. The exploit got around the
unsigned driver blocking in Vista X64. The other part of her exploit was
that it was easy to bypass UAC (which stopped the exploit by the way) by
just clicking on OK. That's a specious argument as that is the way UAC is
supposed to work. It gives you a choice to allow or disallow something from
happening. If social engineering can be used to persuade you click to OK
then that's a human exploit not a Vista exploit. The good news about the
whole thing is that UAC worked. If you didn't allow the program to continue
at the first UAC prompt then it was stopped dead.

--
Kerry Brown
Microsoft MVP - Shell/User
http://www.vistahelp.ca

> "Good poets borrow; great poets steal."''


and IDIOTS are oblivious
bet ya didn't know

Rich

Rich wrote:
>> "Good poets borrow; great poets steal."''
>
>
> and IDIOTS are oblivious
> bet ya didn't know
>
> Rich
>
>
>

Don't like T. S. Eliot, eh?

--
Priceless quotes in m.p.w.vista.general group:
http://protectfreedom.tripod.com/kick.html

Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
"Nope. Just CLUELESS CUNTS LIKE YOU too stupid to work it out. Thank
the bittorent brigade."

"Good poets borrow; great poets steal."
- T. S. Eliot

There you go again, sputtering trash from that gutter mouth of yours.

You a HO or something?


"Nina DiBoy" <> wrote in message news:er2cd0$mq9$...
> Rich wrote:
>>> "Good poets borrow; great poets steal."''
>>
>>
>> and IDIOTS are oblivious
>> bet ya didn't know
>>
>> Rich
>>
>>
>>
>
> Don't like T. S. Eliot, eh?
>
> --
> Priceless quotes in m.p.w.vista.general group:
> http://protectfreedom.tripod.com/kick.html
>
> Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
> "Nope. Just CLUELESS CUNTS LIKE YOU too stupid to work it out. Thank the
> bittorent brigade."
>
> "Good poets borrow; great poets steal."
> - T. S. Eliot

Saucy Lemon wrote:
> It's not a hole, per se, it just means that admins should only install
> from reputable folks (of course). And it doesn't matter to standard user
> accounts - only admins who do the installing anyway.

In an ideal world. But this world ain't ideal.

>
> BTW, the root kit exploit was closed some time ago before Vista went
> RTM. Next time you post a set of articles and draw such definite
> conclusions, you should at least try to be up-to-date about it.
>

It was to show some history and perspective. Vista has been owned
before, and it will be so again.

--
Priceless quotes in m.p.w.vista.general group:
http://protectfreedom.tripod.com/kick.html

Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
"Nope. Just CLUELESS CUNTS LIKE YOU too stupid to work it out. Thank
the bittorent brigade."

"Good poets borrow; great poets steal."
- T. S. Eliot

Zim Babwe wrote:
> There you go again, sputtering trash from that gutter mouth of yours.
>
> You a HO or something?

You'd like that wouldn't ya? LOL

It's very telling of your personality that you are so interested in so
many disgusting things.

>
>
> "Nina DiBoy" <> wrote in message news:er2cd0$mq9$...
>> Rich wrote:
>>>> "Good poets borrow; great poets steal."''
>>>
>>> and IDIOTS are oblivious
>>> bet ya didn't know
>>>
>>> Rich
>>>
>>>
>>>
>> Don't like T. S. Eliot, eh?
>>

--
Priceless quotes in m.p.w.vista.general group:
http://protectfreedom.tripod.com/kick.html

Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
"I do know for a fact that his monkey really needs a spanking. The
monkey gets "out of hand" if you know what I mean!"

"Good poets borrow; great poets steal."
- T. S. Eliot

Well, like I said, Mark Russinovich, who discovered the Sony rootkit,
probably won't be announcing any more such discoveries. Why do you think
that, after at least 10 years of running Winternals and Systernals, suddenly
Microsoft wanted to buy him out? To shut him up, that's why.

Dale

"Nina DiBoy" <> wrote in message news:er081o$1e5$...
> http://Windows.Vista.JustGotOwned.com
>
> Hacker, Microsoft duke it out over Vista design flaw
> http://blogs.zdnet.com/security/?p=29
>
> MS Watches as Vista Gets '0wn3d' by Rootkit
> http://www.eweek.com/article2/0,1895,1999241,00.asp
>
> --
> Priceless quotes in m.p.w.vista.general group:
> http://protectfreedom.tripod.com/kick.html
>
> Most recent idiotic quote added to KICK (Klassic Idiotic Caption Kooks):
> "I do know for a fact that his monkey really needs a spanking. The monkey
> gets "out of hand" if you know what I mean!"
>
> "Good poets borrow; great poets steal."
> - T. S. Eliot