« MacOSX: TextWrangler... free? | Main | MacOS X: Onyx »

January 30, 2005

Microsoft Windows SP2 subject to memory attacks

Microsoft Windows Service Pack 2. Definitely one service pack that you should never install. If you do, be forewarned.

It was discovered by MaxPatrol team that it is possible to defeat Microsoft(R) Windows(R) XP SP2 Heap protection and Data Execution Prevention mechanism. As a result it is possible to implement:

* Arbitrary memory region write access (smaller or equal to 1016 bytes) Arbitrary code execution

* DEP bypass.

BoingBoing < MaxPatrol

Posted by darkmoon at January 30, 2005 09:28 AM

Trackback Pings

TrackBack URL for this entry:
http://life.firelace.com/mt-cgi/mt-tb.cgi/251

Comments

That just SUCKS. I reformatted almost specifically to include SP2 for the protection it supposedly offered (not to mention that my main production machine's Windoze was hosed). Suck city.

Posted by: Sue at January 30, 2005 09:53 AM

I'm not even going to mention that I did say not to load SP2. No one in IT should be even suggesting their users/clients to use SP2. If they do, then there's something seriously wrong. SP2 was a joke. Opened up more holes than it closed.

Posted by: darkmoon [TypeKey Profile Page] at January 30, 2005 10:39 AM

Post a comment




Remember Me?

(you may use HTML tags for style)