Results 1 to 3 of 3

Thread: Windows 7's Unfixable Glitch?

  1. 04-27-2009, 12:49 AM #1
    7th
    7th is offline
    7th's Avatar the brazilian guy BT Rep: +1
    Join Date
    Jan 2007
    Location
    São Paulo
    Posts
    802
    Send a message via MSN to 7th
    source: IGN.com - http://gear.ign.com/articles/976/976242p1.html

    Researchers claim new operating system's boot up sequence is flawed and completely unfixable.

    April 24, 2009 - This week the world's leading cybersecurity professionals gathered in Dubai at the Hack In The Box Security Conference to discuss the state of the industry, identify new threats, share pro-tips, and play Dungeons and Dragons. Ok, probably not that last part, but you get the point; high-nerdery was clearly afoot at the Sheraton Dubai Creek. One of the more prominent topics of discussion was Microsoft's latest operating system, Windows 7. While a number of exploits and potential vulnerabilities of the system were discussed at the conference, one identified loophole in the system has security professionals troubled…and morbidly fascinated.



    A team of researchers located an exploit within the new operating system that can allow hackers to take control of a user's machine during the startup process. The problem was identified by Vipin Kumar and Nitin Kumar, who created a program called VBootKit 2.0 that exploits the weakness and allows a hacker to bypass the machine's hard drive entirely, making it nearly impossible to detect. Once hackers can implement the software, they can then change access permissions, passwords, and gain access to a user's sensitive information. What's worse, a program like the one created by Vipin and Nitin Kumar can be as small as 3KBs, and thus can be spread rapidly. Naturally, problems like these are common during the pre-release beta stages, but Vipin and Nitin Kumar claim that this vulnerability is unique and completely unfixable.

    "There's no fix for this. It cannot be fixed," said Vipin during his presentation in Dubai. "It's a design problem."

    Microsoft has yet to comment on the exploit or formally acknowledge its existence, however, if Vipin and Nitin's claims are true, it could mean serious trouble for the forthcoming operating system's sales.
    Last edited by 7th; 04-27-2009 at 12:50 AM.
  3. 04-27-2009, 12:50 AM Software & Hardware   -   #2
    tesco
    tesco is offline
    tesco's Avatar woowoo
    Join Date
    Aug 2003
    Location
    Canadia
    Posts
    21,669
    This is stupid.
    Read the comments here: http://www.neowin.net/news/main/09/0...curity-experts
  5. 04-27-2009, 12:51 AM Software & Hardware   -   #3
    Skiz
    Skiz is offline
    Skiz's Avatar (_8(I)
    Join Date
    May 2003
    Location
    CO
    Age
    46
    Posts
    22,943
    Send a message via MSN to Skiz
    Plus its already been posted in the News section.


    yo
« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules

Page Generation Time
0.02
Number of Queries
15
Links: Talkgold Forum | AdServices