Breaking News

JCB Phone Launches New Rugged Smartphone Range to Power Global Expansion Sharkoon announces SKILLER SGK50 Wood Series TAMRON announces Ultra Wide-Angle 16-30mm F2.8 G2 Zoom Lens New Lexar ES5 Magnetic Portable SSD is A Game-Changer for Creators On-the-Go COLORFUL Launches iGame GeForce RTX 5050 Series Graphics Cards

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

Microsoft Confirms Dangerous Vulnerability in Windows 2000

Microsoft Confirms Dangerous Vulnerability in Windows 2000

Enterprise & IT Apr 25,2005 0

In atypical fashion, Microsoft program manager Stephen Toulouse remarked on the issue on the Microsoft Security Response Center blog.

Microsoft has confirmed reports that a potentially dangerous security hole exists in Windows 2000 systems and that users could be at risk for attack.

Details about the vulnerability were first reported by Israel-based GreyMagic, which posted details and relevant code on its Web site.

The company issued an advisory warning users that a malicious hacker could use Windows Explorer to navigate through the Windows file system of an unsuspecting user.

Response Call
In atypical fashion, Microsoft program manager Stephen Toulouse remarked on the issue on the Microsoft Security Response Center blog . Usually, Microsoft managers do not comment on specific security issues, especially on a blog.

Toulouse noted that the issue involves the Windows shell, and the company's initial investigation found that significant user interaction would be required for an attacker to exploit the vulnerability.

Microsoft has confirmed that Windows XP , Windows XP SP2 and Windows Server 2003 are not affected by the bug.

Manager Insight "We're also looking into reports of proof of concept code that has been made public that could seek to exploit this reported vulnerability," Toulouse wrote. "On that note, we're not currently aware of any customer impact as a result or an attack that seeks to exploit this vulnerability."

Once Microsoft's investigation is complete, it might decide to provide a fix through an out-of-cycle security update, he added.

In the meantime, he recommended that users block Server Message Block communications at the firewall to protect themselves from possible attack.

Critical Eye
Microsoft has criticized GreyMagic for publishing proof-of-concept code with its advisory, a move that is more true to form for the company, said Secunia security researcher Thomas Kristensen.

"Microsoft very much believes that code should not be made available and freely disclosed in the security community," he said.

As the debate rages over whether to disclose code, the fact remains that Microsoft patches for vulnerabilities like the Windows 2000 flaw are closely watched, Kristensen noted.

"We would hope that Microsoft would release a patch for this quickly," he said. "Microsoft vulnerabilities affect too many people to go unpatched for too long."

From TopTech News

Tags: MicrosoftWindowsWin2k
Previous Post
TiVo looks for an edge
Next Post
Clever design gives AMD edge over Intel

Related Posts

  • Snapdragon X Series is the Exclusive Platform to Power the Next Generation of Windows PCs with Copilot+ Today

  • Activision Blizzard King to Team Xbox

  • NVIDIA Studio Lineup Adds RTX-Powered Microsoft Surface Laptop Studio 2

  • Samsung and Microsoft Unveil First On-Device Attestation Solution for Enterprise

  • Introducing Xbox Game Pass Core, Coming This September

  • Announcing the next wave of AI innovation with Microsoft Bing and Edge

  • Microsoft Announces Security Copilot AI

  • Microsoft breaks new ground in healthcare with the next evolution of AI

Latest News

JCB Phone Launches New Rugged Smartphone Range to Power Global Expansion
Smartphones

JCB Phone Launches New Rugged Smartphone Range to Power Global Expansion

Sharkoon announces SKILLER SGK50 Wood Series
PC components

Sharkoon announces SKILLER SGK50 Wood Series

TAMRON announces Ultra Wide-Angle 16-30mm F2.8 G2 Zoom Lens
Cameras

TAMRON announces Ultra Wide-Angle 16-30mm F2.8 G2 Zoom Lens

New Lexar ES5 Magnetic Portable SSD is A Game-Changer for Creators On-the-Go
Smartphones

New Lexar ES5 Magnetic Portable SSD is A Game-Changer for Creators On-the-Go

COLORFUL Launches iGame GeForce RTX 5050 Series Graphics Cards
GPUs

COLORFUL Launches iGame GeForce RTX 5050 Series Graphics Cards

Popular Reviews

be quiet! Light Loop 360mm

be quiet! Light Loop 360mm

be quiet! Dark Mount Keyboard

be quiet! Dark Mount Keyboard

Arctic Liquid Freezer III 420 - 360

Arctic Liquid Freezer III 420 - 360

be quiet! Light Mount Keyboard

be quiet! Light Mount Keyboard

Soundpeats Pop Clip

Soundpeats Pop Clip

Noctua NH-D15 G2

Noctua NH-D15 G2

Crucial T705 2TB NVME White

Crucial T705 2TB NVME White

be quiet! Light Base 600 LX

be quiet! Light Base 600 LX

Main menu

  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed