EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

08.13.09

Vista 7 Vulnerable to Latest “Critical” Flaws

Posted in Deception, Marketing, Microsoft, Security, Vista, Vista 7, Windows at 7:43 am by Dr. Roy Schestowitz

Patches integrated quickly before RTM

Border

Summary: Microsoft uses a familiar stunt to pretend that Vista 7 is more secure and then makes a lot of noise about it

NOTHING will change when it comes to computer security once Vista 7 is finally released. We wrote about the subject in:

Using what Ryan has called a “sneaky” trick, Microsoft hid the fact that Vista 7 too was vulnerable to the latest bucket of "critical" patches.

In his own words: “There’s articles describing Windows 7 RTM as safe from the Patch Tuesday vulnerabilities that have been fixed in Vista and XP this month, but that’s why Microsoft made 7600.16385 the RTM, they integrated those patches right before they declared it final, then said it was safe from the bugs that affected XP and Vista. 7600.16384 was almost the RTM, but they made a new build just for these.”

“Microsoft hid the fact that Vista 7 too was vulnerable to the latest bucket of “critical” patches.”In short, he argues: “They applied all the patches, called that build the RTM, then said the RTM was unaffected. Then [they] released a press release patting Windows 7 on the back for being more secure, even though at least half those bugs affected it too. You wouldn’t notice this unless you had been following the Windows 7 build process pretty closely.

“Watch what happens on Patch Tuesday in September and October and see how many of those bugs affect Windows 7 cause they can’t declare RTM again.

“They’re still patching Windows XP after 8 years. What does that tell you? I fired it up on my other laptop yesterday and had 9 security updates waiting. Well, after 8 years and ~4,000 patches you’d expect them to have tied up most of the loose ends. They said Windows XP was secure when it launched and they are *still* patching it routinely.”

“Great talker, great liar.”

French Proverb

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Google Bookmarks

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

6 Comments

  1. aeshna23 said,

    August 13, 2009 at 9:50 am

    Gravatar

    I’m having trouble following this argument. Isn’t our argument that Linux has far few vulnerabilities than Windows, and not that any operating system is going to have zero vulnerabilities for quite a while?

    Roy Schestowitz Reply:

    I was pointing out Microsoft’s dishonesty. GNU/Linux does not play those PR games. It is upfront about deficiencies and there’s rarely a question about what’s good for shareholders; it’s about what’s good for users.

  2. Yuhong Bao said,

    August 13, 2009 at 12:12 pm

    Gravatar

    Well, all this means is that 7600.16384 is affected by these security bugs, but the real RTM, 7600.16385, is not. So MS is right in claiming that the RTM is not affected. Normal, I think.
    “Watch what happens on Patch Tuesday in September and October and see how many of those bugs affect Windows 7 cause they can’t declare RTM again.”
    Normal, I think, too. I remember the first patches released for XP RTM right on it’s launch on October 25:
    http://support.microsoft.com/kb/309521
    And not just for XP itself. Windows Movie Maker 1.1 and Windows Messenger 4.0 was shipped with XP, but by the time of the launch on October 25, Windows Movie Maker 1.2 and Windows Messenger 4.5 was already available.
    Here is a list:
    http://forums.windrivers.com/archive/index.php/t-39574.html
    http://news.cnet.com/2100-1001-274987.html

  3. Yuhong Bao said,

    August 13, 2009 at 12:36 pm

    Gravatar

    “Then [they] released a press release patting Windows 7 on the back for being more secure, even though at least half those bugs affected it too.”
    That is where the trick probably is.

  4. Yuhong Bao said,

    August 13, 2009 at 12:38 pm

    Gravatar

    “They’re still patching Windows XP after 8 years. What does that tell you? I fired it up on my other laptop yesterday and had 9 security updates waiting. Well, after 8 years and ~4,000 patches you’d expect them to have tied up most of the loose ends. They said Windows XP was secure when it launched and they are *still* patching it routinely.”
    That is I think normal too. Sometimes new features introduce new security holes, but this isn’t always the case.

    Roy Schestowitz Reply:

    Sometimes new features introduce new security holes, but this isn’t always the case.

    GNU/Linux receives many patches, but:

    1. Patches are distributed to all software from the repositories, not just the core O/S and core applications.
    2. GNU/Linux distributions are often released once or twice a year. If you look at LTS releases (over time), then your comparison becomes more valid.

    Windows XP hardly changes and the number of holes found in it so far is amazing. It was touted as very secure when it was released.

What Else is New


  1. IRC Proceedings: Wednesday, July 01, 2020

    IRC logs for Wednesday, July 01, 2020



  2. IBM-Funded FSF Censors Itself on Software Patents

    Donald Robertson’s article bemoaning and openly condemning the U.S. Patent and Trademark Office (USPTO) over software patents, which it illegally grants in some cases, was modified a week later; and why? One can only guess… (but remember that the FSF’s foremost sponsor is lobbying against 35 U.S.C. § 101 and for software patents)



  3. [Humour/Meme] Remember That As Recently as Last Year Microsoft Was Still Shaking Down and Even Suing Companies Over 'Linux Patent Infringement'

    There's no 'new Microsoft' except a (better at) lying Microsoft; its covert actions tell us a lot about its ongoing hatred of GNU/Linux, which it is assaulting in new and more sophisticated ways



  4. Contrary to Common Misconceptions, Free Software is More 'Corporate' or More 'Enterprise-Grade' Than Proprietary Abandonware (All Proprietary Software Will Die)

    Free software can leverage the superficial and bland boardroom lingo/slang to promote itself; it would definitely harm or dilute/weaken the terms which proprietary software giants like to leverage against us



  5. Social Control Media Will Not Exist One Day

    Digital obsolescence and Internet bitrot — that’s what Social Control Media is really good for; as many Google+ ‘users’ (useds) found out, they’re just being ‘farmed’ for their ‘content’, which is neither valuable nor resilient (definitely of no value to Google)



  6. What Freedom of Software Actually Means to Us

    Liberty or libre (freedom) is about more than brands or personalities, as names or institutions or individuals can change or completely perish; but concepts outlast superficialities



  7. [Humour] Thinking Beyond Just the Linux Brand

    We're supposed to believe that because "Linux" is dominant we finally have freedom; but almost all the very big companies that are using GNU/Linux leverage it for freedom-hostile purposes and keep about 99% of their code secret from us, so the fight for software freedom must go on



  8. Corporate Media Blames 'China' and 'Open Source' for Back Doors in Microsoft's Intentionally Flawed Proprietary Software That's Causing Chaos

    'Red Scare' tactics are being used to divert attention away from Microsoft's incompetence and conspiracy with the NSA (to put back doors in everything, essentially making all software inherently vulnerable, by design)



  9. Microsoft Has Infiltrated Authorities and/or Their Consultation Processes

    In the European Union, the United States and just about everywhere else in the world one can find Microsoft officials replacing public officials, as if the decision-making too has been outsourced to the "Good Folks" from Microsoft



  10. Links 1/7/2020: Tails 4.8, Serpent OS

    Links for the day



  11. IRC Proceedings: Tuesday, June 30, 2020

    IRC logs for Tuesday, June 30, 2020



  12. EPO Management Celebrates the Lowering of Patent Quality While Granting Invalid Patents (IPs) Instead of European Patents (EPs)

    Europe's most autocratic institution continues to cheat and lie to everybody; even twice in one day, together with... the Communist Party of China (through CNIPA)



  13. Links 30/6/2020: OpenSUSE Leap 15.2, 4MLinux 34.0 Beta and IPFire 2.25 - Core Update 146

    Links for the day



  14. [Humour] There's Always a Way... (to Grant Patents on Almost Anything)

    The referral from European Patent Office (EPO) President António Campinos leaves the door open to patents on life, provided one paints those as uniquely clever, e.g. GMO (same tricks for software patents in Europe with “Hey Hi” — an overblown buzz wave)



  15. Crocodiles Can Only Ever Fake Empathy

    Greenwashing, pinkwashing, openwashing and abduction of various authentic civil rights movements (centered around gender, race, and sometimes economic issues) is very easy and cheap relative to the depths of corporate pockets; the problem is, those things help distract the 'masses' from objectively immoral and universally unacceptable acts



  16. [Humour/Meme] History in the Making or History Being Rewritten?

    he idea that history can just totally eliminate particular people and particular views overlooks the very nature of historical studies; banning words impedes the telling of history itself and society cannot tackle the underlying issues without talking about them



  17. A Lot of Things Are Offensive to Someone and Appeasing the Easily Offended is an Endless Adventure That Can Offend Free Speech Ideals

    Free speech may be the main casualty of the recent flamewars, which were initially rationalised as ethics-driven and nowadays boil down to speech police



  18. Feeling Vindicated About the Harms of Social Control Media Being Widely Recognised

    The cleansing of social control media sites reinforces our long-held views about social control media in general



  19. [Humour/Meme] ZDNet Promoting LOT/OIN as a Force for Good. Says a Lot About ZDNet...

    ZDNet has long been a mouthpiece or a parrot for LOT and OIN (overlaps exist); that says so much about the software patents agenda of ZDNet and its parent company, which became defunct 6 months ago, then passed to friends of Bill Gates (privately-owned)



  20. Linus Torvalds Explains Why GNU/Linux Development Speeds Up (Likely Owing to Coronavirus Lock-downs)

    The COVID-19 pandemic has so far boosted not only GNU/Linux market share; it's also speeding up development, leaving proprietary software players in the ashes (it's harder for them to make sales and to pay their developers)



  21. IRC Proceedings: Monday, June 29, 2020

    IRC logs for Monday, June 29, 2020



  22. The MeatHub

    Coding liberates! Join Microsoft's MeatHub today!



  23. [Humour] “Technological Progress is Like an Axe in the Hands of a Pathological Criminal,” Albert Einstein, Famous European Patent Clerk

    The European Patent Office’s (EPO) António Campinos and Benoît Battistelli continued their regime of illegal digital surveillance; is anyone holding them accountable? No.



  24. The Rumours of North Carolina Layoffs and the Atmosphere at IBM/Red Hat Under New Management

    IBM would send the wrong message if it laid off even a single Red Hat employee; we shall be watching closely how IBM changes (if at all) its patent policy and what kind of staff it is planning to let go (maybe the in-house lawyers, which would be a sign of progress)



  25. Links 29/6/2020: GnuCash 4.0, Firefox 78 Available

    Links for the day



  26. [Humour] Nothing Says Feminism Like Microsoft Corporation, JEDI Winner

    Microsoft’s shallow claims of support for women are laughable at best (it’s what some women have called “corporate feminism”); but facts-free marketing, if enough money is sunk into it, can have exceptionally broad reach



  27. Addendum: Notes Associated With Other GNU Redirects, Mostly to GitHub (Microsoft)

    A detailed list of GNU projects (pertinent parts of the GNU Project) that redirect to other sites, especially Microsoft's and especially after Richard Stallman (rms) was pushed out of the FSF 9 months ago



  28. I Won't Ever Support the FSF Again -- That's Their Own Fault

    "There have been several coups (or several coup stages -- I've counted and named 5 or 6 of them) at the FSF in the past 2 years, and the largest of them is something we warned about -- did anybody listen? I guess not."



  29. The GNU Project is Bleeding Into Microsoft

    "A large part of this “loss of integrity” is simply a lack of desire to resist competition, or even recognize the nature of the threat."



  30. Monday Without Microsoft Stores

    Microsoft Stores will never reopen again; with thousands laid off (never mind if disguised as contract workers; way to ruin people's weekend, telling them they're jobless) and half a billion dollars less Microsoft can only hope that its late Friday 'news dump' won't be noticed by journalists and shareholders who return to work today


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts