EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

08.13.09

Vista 7 Vulnerable to Latest “Critical” Flaws

Posted in Deception, Marketing, Microsoft, Security, Vista, Vista 7, Windows at 7:43 am by Dr. Roy Schestowitz

Patches integrated quickly before RTM

Border

Summary: Microsoft uses a familiar stunt to pretend that Vista 7 is more secure and then makes a lot of noise about it

NOTHING will change when it comes to computer security once Vista 7 is finally released. We wrote about the subject in:

Using what Ryan has called a “sneaky” trick, Microsoft hid the fact that Vista 7 too was vulnerable to the latest bucket of "critical" patches.

In his own words: “There’s articles describing Windows 7 RTM as safe from the Patch Tuesday vulnerabilities that have been fixed in Vista and XP this month, but that’s why Microsoft made 7600.16385 the RTM, they integrated those patches right before they declared it final, then said it was safe from the bugs that affected XP and Vista. 7600.16384 was almost the RTM, but they made a new build just for these.”

“Microsoft hid the fact that Vista 7 too was vulnerable to the latest bucket of “critical” patches.”In short, he argues: “They applied all the patches, called that build the RTM, then said the RTM was unaffected. Then [they] released a press release patting Windows 7 on the back for being more secure, even though at least half those bugs affected it too. You wouldn’t notice this unless you had been following the Windows 7 build process pretty closely.

“Watch what happens on Patch Tuesday in September and October and see how many of those bugs affect Windows 7 cause they can’t declare RTM again.

“They’re still patching Windows XP after 8 years. What does that tell you? I fired it up on my other laptop yesterday and had 9 security updates waiting. Well, after 8 years and ~4,000 patches you’d expect them to have tied up most of the loose ends. They said Windows XP was secure when it launched and they are *still* patching it routinely.”

“Great talker, great liar.”

French Proverb

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Slashdot

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

6 Comments

  1. aeshna23 said,

    August 13, 2009 at 9:50 am

    Gravatar

    I’m having trouble following this argument. Isn’t our argument that Linux has far few vulnerabilities than Windows, and not that any operating system is going to have zero vulnerabilities for quite a while?

    Roy Schestowitz Reply:

    I was pointing out Microsoft’s dishonesty. GNU/Linux does not play those PR games. It is upfront about deficiencies and there’s rarely a question about what’s good for shareholders; it’s about what’s good for users.

  2. Yuhong Bao said,

    August 13, 2009 at 12:12 pm

    Gravatar

    Well, all this means is that 7600.16384 is affected by these security bugs, but the real RTM, 7600.16385, is not. So MS is right in claiming that the RTM is not affected. Normal, I think.
    “Watch what happens on Patch Tuesday in September and October and see how many of those bugs affect Windows 7 cause they can’t declare RTM again.”
    Normal, I think, too. I remember the first patches released for XP RTM right on it’s launch on October 25:
    http://support.microsoft.com/kb/309521
    And not just for XP itself. Windows Movie Maker 1.1 and Windows Messenger 4.0 was shipped with XP, but by the time of the launch on October 25, Windows Movie Maker 1.2 and Windows Messenger 4.5 was already available.
    Here is a list:
    http://forums.windrivers.com/archive/index.php/t-39574.html
    http://news.cnet.com/2100-1001-274987.html

  3. Yuhong Bao said,

    August 13, 2009 at 12:36 pm

    Gravatar

    “Then [they] released a press release patting Windows 7 on the back for being more secure, even though at least half those bugs affected it too.”
    That is where the trick probably is.

  4. Yuhong Bao said,

    August 13, 2009 at 12:38 pm

    Gravatar

    “They’re still patching Windows XP after 8 years. What does that tell you? I fired it up on my other laptop yesterday and had 9 security updates waiting. Well, after 8 years and ~4,000 patches you’d expect them to have tied up most of the loose ends. They said Windows XP was secure when it launched and they are *still* patching it routinely.”
    That is I think normal too. Sometimes new features introduce new security holes, but this isn’t always the case.

    Roy Schestowitz Reply:

    Sometimes new features introduce new security holes, but this isn’t always the case.

    GNU/Linux receives many patches, but:

    1. Patches are distributed to all software from the repositories, not just the core O/S and core applications.
    2. GNU/Linux distributions are often released once or twice a year. If you look at LTS releases (over time), then your comparison becomes more valid.

    Windows XP hardly changes and the number of holes found in it so far is amazing. It was touted as very secure when it was released.

What Else is New


  1. 'Appeal to Novelty' as a Lever for Proprietary Software Monopolies, Bloat (Planned Obsolescence) and More Surveillance

    Novelty is generally fine, but in many cases products are developed iteratively (not cumulatively) not to advance society or to objectively improve services, only to increase control over people (because emergent ‘freemium’-like business models nowadays revolve around addiction and subjugation, e.g. ‘brain-farming’ and manipulation of minds)



  2. IRC Proceedings: Friday, September 25, 2020

    IRC logs for Friday, September 25, 2020



  3. Microsoft Windows is Obsolete

    The so-called 'leak' of old Windows code (almost 20 years old) is rather meaningless and useless; the world is moving past Windows, plus old Windows code cannot be used (due to the licence) and is barely used anymore, even in binary form



  4. [Meme] Conflating Critics of Corporate/Class Abuse With Womanisers and Chauvinists (and Now Doing the Same to Influential Women)

    It's regretful to see real victims of discrimination having their grievances and legitimate causes hijacked by opportunistic corporate media, which rallies a bunch of Internet trolls while oligarchs sponsor the whole thing, emboldening attacks on critics of powerful people (the likes of Jordan Peterson are a distraction; even women are nowadays being targeted using the very same tricks)



  5. Losing the Battle for Rights/Justice, Freedom/Liberty, and Emancipation Potential

    We're losing our most basic rights amid transition to "digital"; too little is being done to push back against this worrisome trend, which necessarily means reduction in both our freedom and our fundamental human rights



  6. Response to Eric Raymond (ESR) on “Last Phase of the Desktop Wars”

    Eric Raymond (ESR) talks about Microsoft's "embrace"; but there are many misunderstandings and misconceptions in his blog post, as we'll explain patiently, based on known facts



  7. Links 25/9/2020: Calibre 5.0, Fedora 33 Beta Days Away, Snap Setback

    Links for the day



  8. Faking 'Progress' to Distract From True Justice or From a Full, Meaningful Reform

    Activism for truly meaningful change doesn't stop at superficialities and cosmetic changes (which merely give a false sense/impression of accomplishment, resulting in inaction); we need to regularly consider how to dismantle injustice, not based on the criteria set by oligarchs-owned media, rallying gullible mobs to appease only big egos



  9. IRC Proceedings: Thursday, September 24, 2020

    IRC logs for Thursday, September 24, 2020



  10. Richard Stallman: New Interview About Privacy (Published This Morning)

    “The last few months have put data protection back in the spotlight. During a crisis of this kind, do we have to choose between safety and privacy? We talked about this with Richard Stallman, digital privacy activist and the founder of the Free Software Movement,” RT says



  11. Links 25/9/2020: PostgreSQL 13, DragonFly 5.8.2 and Python 3.8.6

    Links for the day



  12. Code of Ethics Versus Code of Conduct in Action

    Reprinted from Daniel Pocock's Web site



  13. Linux Foundation: “Transformation Through Open Source” is Proprietary Software That Rejects Linux

    The Linux Foundation, run by proprietary software companies that don’t really care about Linux, is still a lot more about openwashing (perception management techniques) than about “Open Source” or even Linux (which most of the Foundation rejects)



  14. Links 24/9/2020: KaOS 2020.09, Arch Conf 2020 Coming, IBM Z Day 2020 Ends

    Links for the day



  15. At ZDNet, in 2020, “Linux” Means Microsoft and Windows

    The incredible charade of ZDNet carries on; the site whose parent company went bust last December isn’t even trying to hide its true agenda



  16. Red Hat is Spamming People in Order to Promote Its Sites and Its Products, Subscribing People to Mass-Marketing Lists Without the Recipients' Consent

    "Engagements" from Red Hat; have the IBM-led marketing people gone overboard, subscribing lots of people to marketing spam without bothering to ask for consent?



  17. “If I'm the Father of Open Source, It Was Done by Artificial Insemination With Stolen Sperm”

    The father of the Free software movement, Richard Stallman, is being wrongly compared to some patron of an “open source” ‘movement’ (an early effort to cancel Stallman and the FSF), which is basically a hostile corporations-led ploy these days



  18. IRC Proceedings: Wednesday, September 23, 2020

    IRC logs for Wednesday, September 23, 2020



  19. The Second Wave (of Free/Libre Software)

    Despite some major setbacks and new threats to digital freedom (autonomy is perhaps a more suitable term), progress is being made and activism must adapt to tackle newer trends



  20. Exploring the Relationship Between Red Hat and Microsoft: They're Barely Even Rivals Anymore

    The ‘older Microsoft’ (serial monopolist IBM) bought Red Hat, but evidence shows that one would be wrong to assume Red Hat really competes against Microsoft (any more than Novell did; there’s a strong relationship)



  21. Microsoft Lost More Than 15 Million Web Domains in One Month!

    Microsoft's presence on the Web is being reduced to ridiculously low levels; sooner or later Microsoft will turn from 'king' of parked (unused) domains to master of nothing



  22. Links 23/9/2020: Lenovo's Deeper GNU/Linux Dive and Tor Browser 10/Tails 4.10

    Links for the day



  23. IRC Proceedings: Tuesday, September 22, 2020

    IRC logs for Tuesday, September 22, 2020



  24. The Latest Greenwashing Campaign by the EPO is Just 'Chinese Propaganda'

    When the EPO speaks of “innovation” and “clean energy transition” it means nothing but patents on batteries, in effect monopolies being granted in Europe (to a lot of Asian — not European — companies)



  25. Links 23/9/2020: Librem 14 Shipping in December, Linux Journal Returns, Istio 1.6.10 Released, Release Candidate 3 of LLVM 11.0

    Links for the day



  26. Welcome Back, Linux Journal!

    Linux Journal is coming back under the ownership/umbrella of Slashdot folks, who are sadly preoccupied and obsessed with Microsoft talking points and PR campaigns



  27. What the Efforts to Remove Dr. Stallman Reveal About the Agenda of Large Corporations (Looking to Absorb the Competition, Remove Freedom, Spread Proprietary Software in 'Open' Clothing)

    Richard Stallman's (RMS) positions and foresight are usually correct; at the moment we're losing access to key people whose leadership positions are essential for the independence of cornerstone projects



  28. Links 22/9/2020: Tails 4.11, Linux Lite 5.2 RC1

    Links for the day



  29. Minimalism for Maximisation of Productivity and Clutter Mitigation

    Unfortunately, GNU/Linux (especially the latter, Linux) embraces bloat and anti-features in pursuit of sales (appeasing large corporations, not users’ needs), reducing the modularity, reliability and productivity of computer systems in the name of helping “dumb” users (they keep telling us people are very dumb and those who disagree are “elitist” and “extremist” or even “neckbeards” — in effect insulting every person out there)



  30. IRC Proceedings: Monday, September 21, 2020

    IRC logs for Monday, September 21, 2020


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts