Microsoft Admits XP Has Same Bug As Win2K 161
Arashtamere sends in a Computerworld story on a security flaw in the Windows 2000 pseudo-random number generator published by Israeli researchers earlier this month. Microsoft has now admitted that the flaw is present in XP too. Microsoft denies that the bug is a security vulnerability, since an attacker would have to have gained administrative access to a system before exploiting it. (The Israeli researchers point out that many common exploits provide admin access.) This stance apparently lets them off the hook for patching Win2K, which is in "extended support" mode, though it powers about 9% of US and EU business computers. Microsoft said that XP SP3, due in the first half of next year, will fix the bug. The company said that Vista, Windows Server 2003 SP2, and the new Windows Server 2008 are not vulnerable.
Re:At last... (Score:1, Interesting)
Article (Score:5, Interesting)
Very brief summary of article
Each process has their own instance of the generator, and the refresh of the internal state is done after 128 kbs of output from the generator (roughly 600-1200 SSL connections with IE). Not only that, it is run in the userspace so it is not a security violation to examine the internal state of the generator. The function used is not one-way which provides a means looking at past transactions of a user (within the 128 kbs of data).
Re:I have to agree with MS on this one... (Score:3, Interesting)
on multiple systems. If you can crack them you can
very likely gain access to other systems without having
to wait for uses to login at a time when you dont know
how long you have control of the system
Re:Naw. You just have to take a different approach (Score:4, Interesting)
Thanks for the flashback to l0pht's old page....! For those who don't remember it before it got rolled into @stake:
L0pht, making the theoretical practical since 1992."
No hotfix ? (Score:3, Interesting)
It should be an offence to know and state you know about a bug but sit on the fix for months. This is a really stupid MS position and will push people more towards alternatives like GNU/Linux.
It should be a hot fix right now.