Vista Exploit Surfaces on Russian Hacker Site 103
Datamation writes "Exploit code for Windows Vista (though at this point only proof-of-concept code) has been published to a Russian hacker site, Eweek reports. Certain strings sent through the 'MessageBox' API apparently cause memory corruption. Though this is obviously cause for concern, at the moment it would seem access to the system would already be required to make use of the exploit. Determina has an analysis of the bug. Just last week, Trend Micro reported that Vista zero-days are being sold at underground hacker sites for $50,000."
I don't have to... (Score:5, Funny)
Re:Jokes referencing "In Soviet Russia...." (Score:3, Funny)
Okay. In Soviet Russia, Windows runs you. Oh, wait. . . .
List of those strings... (Score:3, Funny)
A partial list of those strings appears to be: Linux, Open-Source, GNU, Stallman, and (oddly) chair.
Re:I don't have to... (Score:3, Funny)
Re:Meant to say this last week.. but.. (Score:5, Funny)
Yes it is. Would you believe that the reason for all the security holes is for Microsoft. They're the ones who create the holes so that later they can take crontrol of the bot nets and send out spam. On occasion they find a guy who's trying to go it alone and starts intruding on their turf. They send the police at that guy to take everyone's attention at what their other hand is doing. They're pretty sinister in that regard.
Holy crap, I could almost believe that. Anybody have any extra tin foil they can spare?
Re:I don't have to... (Score:3, Funny)
Re:curious (Score:4, Funny)
You'll be sleep()ing with the fishes?
Somehow, I don't think the idea of the "St. Valentine's Day TCP stack exploit" has quite the same impact. (Perhaps the "St. Valentine's Day Blue Screen of Death"?)
All things considered, I'd rather have my computer violated by the Mafia than my body.
Re:I don't have to... (Score:2, Funny)