Major XP secuirity flaw

This is a discussion on Major XP secuirity flaw within the A Brief History of Cprogramming.com forums, part of the Community Boards category; Major XP security flaw. This is the worst flaw that there is. By just visiting a website, or looking at ...

  1. #1
    . Driveway's Avatar
    Join Date
    May 2002
    Posts
    469

    Major XP secuirity flaw

    Major XP security flaw. This is the worst flaw that there is. By just visiting a website, or looking at e-mail, you could lose inportant files. This was kept a secret for 11 weeks. This is a major secruity flaw. If you have Xp you _MUST_ fix this. For info, go to the microsoft homepage. I have already fixed this problem myself.

  2. #2
    Microsoft. Who? MethodMan's Avatar
    Join Date
    Mar 2002
    Posts
    1,198
    Were any more details released on how you would loes the important files?
    -MethodMan-

    Your Move:Life is a game, Play it; Life is a challenge, Meet it; Life is an opportunity, capture it.

    Homepage: http://www.freewebs.com/andy_moog/home.html

  3. #3
    . Driveway's Avatar
    Join Date
    May 2002
    Posts
    469
    Nope, it's just some simple html code.

  4. #4
    &TH of undefined behavior Fordy's Avatar
    Join Date
    Aug 2001
    Posts
    5,789
    Sounds like yet another ActiveX vulnerability...

    So glad I dont use Internet Explorer or Outlook

  5. #5
    . Driveway's Avatar
    Join Date
    May 2002
    Posts
    469
    Doesn't need to be either

  6. #6
    RoD
    RoD is offline
    Redundantly Redundant RoD's Avatar
    Join Date
    Sep 2002
    Location
    Missouri
    Posts
    6,331
    yes it does :P Netscape won't do it. And hacker community has known about it for much longer then 11 weeks, microsofts a little slow.

  7. #7
    Registered User
    Join Date
    Sep 2002
    Posts
    254
    Originally posted by Ride -or- Die
    yes it does :P Netscape won't do it. And hacker community has known about it for much longer then 11 weeks, microsofts a little slow.
    oh so your from the hacker community but you didnt know where to find wingates?

  8. #8
    Peace
    Join Date
    Aug 2001
    Posts
    1,510
    Actually I can remember reading about this quite some time ago on an obscure "security" site. I cant recall which one at the moment. And AFAIK it is only successful with IE and Outlook. I believe this is the 'execute anyway' flaw. No?
    "There's always another way"
    -lightatdawn (lightatdawn.cprogramming.com)

  9. #9
    Registered User
    Join Date
    Sep 2002
    Posts
    254
    This is scarry as hell. I know that some of you still use windows so this is why this is being posted here. If you are using Windows XP check this out. Go to your C:\ drive and place a text file in C:\ called test.txt [make sure lowercase]. Close out of everything and then click on this link It is going to bring up help and support. Once it comes up wait a couple of seconds and then close or minimise it and then go back to your C:\ drive... test.txt is now gone.

    This is the scarry part this is what was used to delete test.txt
    (line removed to keep the clueless away)if you do this though
    Im not going to post the whole thing because if B2 turns it to a link and someone clicks on it they will loose everything in C:\Windows but if you change the c:\test.txt to c:\windows\* Bye Bye everything in C:\windows. Point is you might want to right click and click properties just to see where the link you are clicking on goes to if you are using WinXp.......

    http://www.unixhideout.com/
    much worse than it sounds... your whole windows folder could be gone

    i did not include the testing link as i am sure someone here would end up posting it and modifying it and deleting someone's files...
    Last edited by ZerOrDie; 09-09-2002 at 09:42 PM.

  10. #10
    train spotter
    Join Date
    Aug 2001
    Location
    near a computer
    Posts
    3,859
    And the next good reason not to use new MS OS's (until the rest of you have compleated the beta testing for MS) is........
    "Man alone suffers so excruciatingly in the world that he was compelled to invent laughter."
    Friedrich Nietzsche

    "I spent a lot of my money on booze, birds and fast cars......the rest I squandered."
    George Best

    "If you are going through hell....keep going."
    Winston Churchill

  11. #11
    Peace
    Join Date
    Aug 2001
    Posts
    1,510
    Heh. My thoughts exactly, novacain.

    Never buy brandnew software. Especially something crucial... like an OS.
    "There's always another way"
    -lightatdawn (lightatdawn.cprogramming.com)

  12. #12
    RoD
    RoD is offline
    Redundantly Redundant RoD's Avatar
    Join Date
    Sep 2002
    Location
    Missouri
    Posts
    6,331
    1) I didn't say "I'm a hacker. We've known about this." I said the hacker community has. I'm a big security type person and often read up on alot of it as a learning deal, i am by no means practicing the art of hacking.

    2) There is only two versions of windows which is effected by this flaw, as they forgot to mention. Windows XP Home Edition and Windows XP Professional. These are the two common versions.

    The third version, Windows XP Professional Corporate Edition, is not effected by it. Many of you won't have this version however(this is the version i am using). It is made for very very big corporations such as maybe something like Dell(for the company not distrabution on new pcs). The reason they made this third version is because it has no licenses(its unlimited), the Product key is good for as many installs as you want, so you only need by one cd and install on as many pcs as you want, and there is no "forced" or "required" registration. This version will cost you a hefty 10 grand in US dollars and good luck getting it from them.

    So if your as lucky as me to have this third version you need not worry.
    Last edited by RoD; 09-10-2002 at 04:19 AM.

  13. #13
    Banned Troll_King's Avatar
    Join Date
    Oct 2001
    Posts
    1,784
    Way back when I used to use a Microsoft operating system, the one thing that I didn't like is that the default setup is to run the OS as an administrator. This does not exist in most professional operating systems. Anyone using windows should be logged in as a user and not have privlige to system files. On the other hand since the OS is not designed this way, that might be more pain than it's worth. At any rate, the security is poor, but than that might be their plan.

  14. #14
    Refugee face_master's Avatar
    Join Date
    Aug 2001
    Posts
    2,052
    I dont really care if I lose files like my windows dir becuase i can always just insert my system disks and format . I burn all my downloaded/important (ahem) things straight away.

  15. #15
    Refugee face_master's Avatar
    Join Date
    Aug 2001
    Posts
    2,052
    The only stuff I leave on my computer is stuff i'm willing to lose.

Page 1 of 2 12 LastLast
Popular pages Recent additions subscribe to a feed

Similar Threads

  1. IE flaw threat hits the roof
    By axon in forum A Brief History of Cprogramming.com
    Replies: 2
    Last Post: 01-16-2005, 10:29 AM
  2. yet another unexplainable flaw
    By stormbreaker in forum C++ Programming
    Replies: 4
    Last Post: 06-01-2003, 12:56 PM
  3. MAJOR security flaw in xp!!
    By RoD in forum A Brief History of Cprogramming.com
    Replies: 12
    Last Post: 02-17-2003, 06:14 AM
  4. linked list of templates (or a design flaw?)
    By Ess in forum C++ Programming
    Replies: 3
    Last Post: 11-30-2002, 07:15 PM
  5. is this a design flaw
    By blight2c in forum C++ Programming
    Replies: 5
    Last Post: 03-19-2002, 11:33 PM

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21