2X on “One of the Biggest Security Vulnerabilities in the Windows OS for Many Years”

Dr. Roy Schestowitz

2010-02-25 22:23:59 UTC
Modified: 2010-02-25 22:23:59 UTC

Summary: New security policies sought by politicians as a 10-year old Windows flaw surfaces

A FEW days ago we wrote about the enormous cost of Windows being as insecure as it is. A 10-year old flaw has been reported in Windows and this one firm considers it perhaps the worst in a decade. Not everyone agrees, but here is the claim anyway.

A new Windows-based denial of service attacks reportedly exploits a 10-year old OS flaw to crash vulnerable systems.

[...]

2X, which is not well known in the world of information security research, issued a press release over its discovery on Wednesday billing it "one of the biggest security vulnerabilities in the Windows OS for many years".

The state of Windows botnets is alarming authorities:

The official British view casts ongoing talks between the US and Russia - aimed at fostering cooperation between states on internet security and agreeing ground rules - in a pessimistic light.

[...]

"The increasing sophistication of criminal cyber tools and the availability of cheap, fast broadband will mean that states are able to achieve their aims by hiring criminal botnets to carry out DDOS or other attacks on their enemies' infrastructure."

Governments may use this to pass new draconian laws and Microsoft can pass discriminatory measures to address a problem that its own negligence [1, 2, 3] has created. The US cybersecurity czar is former Microsoft employee Howard Schmidt [1, 2, 3], so this new US push for "government cybersecurity authority" might be trouble for Free desktops. ⬆

Recent Techrights' Posts

2025 Will be Fought and Fraught With LLM Slop or Fake 'Articles' (Former Media/News Sites Turning to Marketing Spam): The elephant in the room?
Brittany Day Can Rest and Let Microsoft/Chatbots Write Fake 'Articles' About "Linux" This Christmas: Who said people don't work on Christmas? Chatbots or plagiarism-as-a-service work 24/7, every day of the year except during Microsoft downtimes
Links 26/12/2024: Japan-China Mitigations and Mozambique Prison Escape (1,500 Prisoners): Links for the day
Links 26/12/2024: Ukraine's Energy Supplies Bombed on Christmas Day, Energy Lines Cut/Disrupted in the Baltic Sea Again: Links for the day
Gemini Links 26/12/2024: Rot Economy, Self-hosted Tinylogs: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, December 25, 2024: IRC logs for Wednesday, December 25, 2024
[Meme] Time to Also Investigate Bill Gaetz: Investigation overdue
Microsoft Openwashing Stunts Initiative (OSI) is A Vulture in "Open" Clothing: it's quite telling that the OSI isn't protecting the Open Source Definition
IBM Has Almost Obliterated or Killed the Entire Fedora Community (Not IBM Staff): Remaining Fedora insiders are well aware of this, but bringing this up (an "accusation" against IBM) might be a CoC violation
Links 25/12/2024: Fentanylware (TikTok) Scams and "Zelle Scams Lead to $870M Loss": Links for the day
Links 25/12/2024: Windows TCO Brought to SSH, Terence Eden 'Retires': Links for the day
Gemini Links 25/12/2024: Reality Bites and Gopher Thanks: Links for the day
Links 25/12/2024: Latest Report Front Microsoft Splinter Group, War Updates: Links for the day
Links 25/12/2024: Hong Kong Attacks Activists During Holidays, Xerox to Buy Lexmark: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, December 24, 2024: IRC logs for Tuesday, December 24, 2024
Gemini Links 25/12/2024: Open Source Social and No Search: Links for the day
Brittany Day Connects Windows Ransomware to "Linux" Using Microsoft LLMs (FUD Galore, Zero Effort, No Accountability): FUD and misinformation made by Microsoft LLMs again?
Links 24/12/2024: Labour Strikes and TikTok Scrambling to Prop Up Radical Politicians That Would Protect TikTok: Links for the day
Where the Population is Controlled by Skinnerboxes Inside People's Pockets (or Purses): A very small fraction of mobile users practise or exercise freedom/control over the skinnerbox
[Meme] Coin-Operated Publishers (Gaming the Message, Buying the Narrative): Advertise (sponsor) to 'play'
Advertisers and Their Covert Impact on Publications' Output (or Writers' Topics of Choice, as Assigned or Approved by Editors): It cannot be trivially denied that sponsorship in the form of "advertising" impacts where publishers go (or don't go, won't go)
Terrible Year for Microsoft Windows in Cyprus: down from 86% to 72% since January
[Meme] How to Kill Unions (Staff on Shoestring Budget Cannot Afford Lawyers): What next for the EPO? "Gig economy"?
The EPO's Staff Union (SUEPO) Takes Legal Action to Rectify the Decrease in Wages (Lessening of Purchasing Power): here is what the union published
Gemini Links 24/12/2024: Deedum Gemini Client Gets Colour Support, Advent of Code 2024: Links for the day
Microsoft Windows Slides to New Lows in Colombia: Now Windows is at an all-time low
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, December 23, 2024: IRC logs for Monday, December 23, 2024