EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

10.13.09

Vista 7 Gets Royal (Patch) Treatment, Windows XP in Court for “Spyware” Behaviour

Posted in Courtroom, Microsoft, Security, Vista 7, Windows at 11:15 am by Dr. Roy Schestowitz

Windows XP wallpaper style

Summary: Many security issues in Vista 7, Windows XP has Microsoft sued for behaving like malicious software

SEVERAL days ago we wrote about Vista 7 being left insecure. Given all that has happened in the past year (c.f. links at the bottom), this should not be surprising and SJVN has just written a short article claiming that Vista 7 suffers from “unimproved security”.

When it comes to security and Windows 7, it’s just more of the same old, same old.

This point really came home to me when I was looking over all the patches that Microsoft will delivering tomorrow in what may be the largest Patch Tuesday ever. Microsoft “will ship a total of 13 updates next week, eight of them pegged “critical,” the highest threat ranking in its four-step scoring system, beating the previous record of 12 updates shipped in February 2007 and again in October 2008.”Of these 13, five are for Windows 7.

That’s Tuesday, that’s today.

Microsoft claims 5 patches for Vista 7, but as experience suggests, Microsoft lies about these numbers. It is not obliged to adhere to the same reporting standards as Free software.

Many people will continue using Windows XP when 7 comes out, but XP is permanently insecure since Microsoft refuses to patch it. And to make matters worse, based on this report, Microsoft is still stuck in court having been sued for XP being spyware, which it is (for more than one reason).

The plaintiffs allege that Microsoft improperly distributed the Windows Genuine Advantage tool, without proper consent from users, in a manner normally reserved for “high priority” security updates. WGA, as it’s known, tests to see if a copy of Windows is valid and delivers warnings if it doesn’t pass. Microsoft’s Automatic Update system lets users opt in to receive fixes and patches for the operating system.

That’s a lie or an embellishment at the very least. Microsoft overrides those settings. Even if the user requests that updates shall not be pushed through, Windows settings are totally ignored. Users have shown this for years.

On Vista 7 security problems:

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

5 Comments

  1. Yuhong Bao said,

    October 13, 2009 at 1:56 pm

    Gravatar

    “Microsoft claims 5 patches for Vista 7, but as experience suggests, Microsoft lies about these numbers. It is not obliged to adhere to the same reporting standards as Free software.”
    Yep, it is not as simple as comparing numbers.
    “Many people will continue using Windows XP when 7 comes out, but XP is permanently insecure since Microsoft refuses to patch it.”
    Not completely, you should see my comments on the linked article, which talks about this in more detail.

    Roy Schestowitz Reply:
    October 13th, 2009 at 2:10 pm

    Disablement is not a fix though.

    Yuhong Bao Reply:
    October 13th, 2009 at 4:17 pm

    Of course not, even MS claimed that it was only a workaround. MS released the fix for this SMB2 flaw today, and it is MS09-050. I was mostly commenting on the lack of XP and 2000 patches for MS09-048, saying it is that it is only this particular patch that don’t have a version for Win2000 or WinXP. MS has not in general stopped patching Win2000 or WinXP and will not until the extended support ends.

    Roy Schestowitz Reply:
    October 13th, 2009 at 4:24 pm

    Patching does not equate to quality patching. The half-hearted maintenance is causing trouble to all of us who share the Internet (systemic cost).

    Yuhong Bao Reply:
    October 13th, 2009 at 5:06 pm

    Note in this particular case however that the vulnerablities MS is not patching are only DoS vulnerablities that in theory only affects the machine attacked. There is a Remote Code Execution vulnerablity in the bulletin, but it only affects Vista and Server 2008, not XP or Server 2003. If you want more info, you should read the bulletin:
    http://www.microsoft.com/technet/security/Bulletin/ms09-048.mspx

What Else is New

  1. Links - Anti-Trust Roundups - Yahoo, Nokia, Barns and Nobel



  2. Links - MSNokia Passes Blame, Bill Gates pushes GMOs, Open Access news



  3. Links 7/2/2012: Firefox 11 Enters Beta, Canonical Disappoints KDE

    Links for the day

  4. IRC Proceedings: February 6th, 2012

    IRC logs for February 6th, 2012

  5. IRC Proceedings: February 5th, 2012

    IRC logs for February 5th, 2012

  6. Links 6/2/2012: PCLinuxOS 2012.02 and Mint KDE Reviews

    Links for the day

  7. Bill Gates Indoctrinates Youth in the United States and India, Critics Speak Out

    Backlash against the Gates Crusade to brainwash the young minds all around the world

  8. Bill Gates Uses Symbolic 'Donation' to Force Taxpayers to Pay Microsoft (of Which He Holds Shares)

    The Gates Foundation goes lobbying for Microsoft again, this time in Vietnam

  9. Monopoly as Innovation?

    Challenging the old misconception that patents are beneficial to anything but few multinationals and their patent lawyers

  10. Links 5/2/2012: Lenovo in India, Netrunner 4.1 is Out

    Links for the day

  11. IRC Proceedings: February 4th, 2012

    IRC logs for February 4th, 2012

  12. OpenStack, Microsoft, Junk Patents, Microsoft Copyrights, and Oracle Copyrights

    Another look at the OpenStack situation, why Microsoft should not be allowed to enter, and more about patent and copyright complications

  13. Apple, Which Started Patent Wars, Gets What It Deserves

    Apple products get banned (for the time being) after Apple decided to attack Linux-supporting competitors and then received some blowback

  14. Unitary Patent and the Emergence of More Junk Patents

    The rise of the junk patents and what we are taught about them by the news, including some news about the unitary patent in Europe

  15. Backlash Against Bill Gates' Lobbying for Patented Life

    GMO, a robbery of the right of reproduction (and a potential health hazard), is promoted by Bill Gates for profit, whereupon critics strike back

  16. IRC Proceedings: February 3rd, 2012

    IRC logs for February 3rd, 2012

  17. Links 4/2/2012: Ubuntu 12.04 Alpha 2 Preview, ACTA Backlash in Europe

    Links for the day

  18. A Glimpse at Executives Who Left the Sinking Novell Ship

    A roundup of news about former Novell staff and where that staff is moving these days

  19. Novell Makes New Software for Microsoft Windows and Office

    PR spin from Novell and money-grabbing moves that promote proprietary software rather than Free/Open Source software

  20. Links 3/2/2012: BT Vision Goes for Linux, Linux 3.3 With Android

    Links for the day

  21. Debt in Attachmate

    The company that bought Novell has a poor outlook, financial issues, and little signs of expansion/renaissance

  22. Longtime SUSE Executive Holger Dyroff Moves on, SUSE in a Bad State

    Key people continue to leave SUSE and the distribution is left without a compelling sales pitch

  23. Groklaw Update on Android Patent Cases and Response to FUD From Microsoft Lobbyists

    A few updates of greater importance where the Linux situation is discussed in the context of Android and Novell

  24. IRC Proceedings: February 2nd, 2012

    IRC logs for February 2nd, 2012

  25. Links 2/2/2012: DEFT Linux 7, Mozilla Firefox 10

    Links for the day

  26. IRC Proceedings: February 1st, 2012

    IRC logs for February 1st, 2012

  27. IRC Proceedings: January 31st, 2012

    IRC logs for January 31st, 2012

  28. IRC Proceedings: January 30th, 2012

    IRC logs for January 30th, 2012

  29. Bill Gates is Hijacking Open Source While Attacking It Using Lobbyists, Patents, and Patent Trolls

    Response to reputation laundering from Wired Magazine, the latest nonsense from Microsoft's lobbyist Florian Müller, an update on Microsoft's trolling against Android, and a little more of Apple's

  30. The Gates Foundation is Still Hijacking the Voice of the Poor and Effectively Runs Paid Advertisements Inside 'News'

    Money still the vehicle by which opinions get heard, so Bill Gates exploits this for fame, power, and profit

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts