Vista hacked at Black Hat

TalkBack 8 of 97:: Next »; « Previous

Thread View
Flat View

All serious OSs I know of allow fetching instructions ONLY: And isn't it true that every OS suffers from
"the various buffer overflows that can lead to privillege escalation to Admin or the execution of arbitrary code from anywhere else but the CODE segment."?

from the CODE ("text") segment. Not from stack (usual with buffer o/v) neither from the data segments.

ANd most importandly the Text Segments are read only so any attempt to bastardize its contents would cause an access violation fault and cancel the execution.

All RISC processors + Itanium-2 + AMD64 + UNIX and recently Linux (SLES) support this.

I can see that MS has JUST STARTED working in the right direction and I hope they will stay the course since this is a lengthy, bumpy and usually thankless road. Pretty much what UNIX went through 15-20 years ago.

They need to be patient and ofcourse change attitudes as making internals more robust does not show on the GUI ...; Posted by: michael_t Posted on: 08/04/06 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Like that was something unexpected wink

michael_t | 08/04/06

What part wasn't unexpected John Zern | 08/04/06

No Absolutly Not. IceTheNet@... | 08/04/06

Can I have what you're smoking? toadlife | 08/04/06

Message has been deleted. IceTheNet@... | 08/07/06

Wow... DCMann | 08/07/06

one problem Techanalyst | 08/08/06

All serious OSs I know of allow fetching instructions ONLY michael_t | 08/04/06

Sick of all the hackers plogan721 | 08/08/06

I really hope you're joking... kha.M | 08/09/06

MCSDs refute this happened... Mike Cox | 08/04/06

You're a treat! Prognosticator | 08/04/06

I have a feeling this was authored a few days ago... Zeppo9191 | 08/04/06

i like galileon | 08/04/06

10 :-D LoCal | 08/04/06

What a frickin' howl!! 999ad@... | 08/04/06

I LOLed.

A_Pickle | 08/04/06

Great stuff, Mike rick752 | 08/04/06

Ahh Dr Sarcasm Strikes again jimk_z | 08/04/06

We don't need a Linux variant of Mike Cox toadlife | 08/05/06

I love these independent studies funded by MS partners ... happy

.. michael_t | 08/04/06

Milky, you?re too big a fanboy. You got caught. Cayble | 08/05/06

Interesting... mdsmedia | 08/06/06

Cayble (or his sister ego NonZealot) get withdrawal symptoms michael_t | 08/07/06

Then you missed it, let me repeat... Cayble | 08/07/06

Your thoughts are getting more disconnected, your condition worsens ... michael_t | 08/07/06

I love these independent studies funded by MS partners ... happy

.. michael_t | 08/04/06

10.0! Classic Mikey Reverend MacFellow | 08/05/06

What's with all the "LOL" stuff? TJGeezer | 08/05/06

Message has been deleted. Jay E Court | 08/07/06

"tag-teamed the CSO" - too funny, Thanks Mike WiredGuy | 08/07/06

Making a mountain of a mole hill zzz1234567890 | 08/04/06

Just because you wish it were not true dosn't make it untrue. IceTheNet@... | 08/04/06

Ubuntu, Xandros TJGeezer | 08/05/06

while testing ubuntu and xandros... mdsmedia | 08/06/06

Mepis IceTheNet@... | 08/08/06

Run Linux as root 24x7 attached to the internet... mlambert890@... | 08/07/06

re: Run Linux as root 24x7 attached to the internet... dpastern | 08/07/06

Almost agree with you except IceTheNet@... | 08/08/06

Many can mean many things IceTheNet@... | 08/08/06

Many People??? jerry@... | 08/07/06

well, IceTheNet@... | 08/08/06

One step in the right direction nucrash | 08/04/06

Did you read the article? TimeBomb | 08/05/06

You need to read it again yourself toadlife | 08/05/06

Making a fudge sandwich out of a mountain TimeBomb | 08/05/06

I don't see any mountains mdsmedia | 08/06/06

Like Blue Pill is the only bjbrock | 08/04/06

Sounds like the Linux crowd is gettin' scared John Zern | 08/04/06

Only reason? rpmyers1 | 08/04/06

Heh you forgot... Suicida| | 08/06/06

The more secure Vista becomes, the only reason to go to Linux diminishes. Reverend MacFellow | 08/05/06

Another reason DarthRidiculous | 08/05/06

I was sure Apple didn't sell it's OS seperately quantumstate | 08/08/06

Other reasons TJGeezer | 08/05/06

moron...you are the only one mentioning Linux... mdsmedia | 08/06/06

No Way!!!! linux for me | 08/07/06

Sounds like the M$ crowd doesn't quite get it aceadrian1@... | 08/07/06

speaking of not getting it... MSndrft | 08/07/06

Really? diggyk@... | 08/07/06

Part of Linux that isn't secure... harrisharris | 08/07/06

I'd rather use Unix. MSndrft | 08/07/06

Script embedded in what Div Tags a CSS Trojan LOL IceTheNet@... | 08/08/06

the only reason? springerj | 08/07/06

"The writing is in the article" you should read it. IceTheNet@... | 08/08/06

Ahhhhh Ha ha Ha Ha You asked them to hack now you are hacked mjbad2 | 08/05/06

You don't even... TimeBomb | 08/05/06

Ha ha, now I want them to hack Apple and Sun Boot_Agnostic | 08/05/06

You filthy luddite quantumstate | 08/08/06

If you've got the room to spare, fine Boot_Agnostic | 08/08/06

It took them how long to figure this out? Immanuel Tranz-Mischen | 08/05/06

What? Security Flaws? NO WAY! homequickfinder | 08/06/06

Huh?? You know of a more secure Windows version? mdsmedia | 08/06/06

The most secure version of Windows... AckItsMe2 | 08/07/06

DOS IceTheNet@... | 08/08/06

DOS=command line quantumstate | 08/08/06

this was the whole point of the conference corticus | 08/07/06

Now you've done it! gsuser | 08/07/06

Drivers.... AckItsMe2 | 08/07/06

Not to start a war armith@... | 08/07/06

difficult to implement a 100% efficient kernel lostinlodos | 08/07/06

You have to be joking... AckItsMe2 | 08/07/06

I agree ... but it is still funny dbrimlow | 08/07/06

That was the point lostinlodos | 08/14/06

In reply to that viruser

| 07/17/07

A Vista Feature... give me a break... Resuna | 08/07/06

Thank you Microsoft Bennopia | 08/07/06

It is sad that the headline is so misleading Patronus | 08/07/06

Thank you for saying it mmadink | 08/07/06

Vista Doesn't Matter Sheeva | 08/08/06

So, this news trumps: Every Mac OSX clieb is vulnerable? DanielB | 08/08/06

Vista hacked at Black Hat cosmicfoole@... | 08/08/06

hacked? dinosaur2 | 08/08/06

Hacked Ronspruell | 08/08/06

$20000 to 'sign' the code, there is much motivation to hack around GreatInca | 08/09/06

Only a few hundred to sign code once georgeou | 08/10/06

Vista Hacked... mikeald | 08/16/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Building the Virtualized Enterprise with VMware Infrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Smart Tech Expert advice on innovations in healthcare and the green technologies that make it happen. Find out more
Smart Business Discussion and advice on management issues that revolve around making your world smarter and more useful. More Smart Advice
Smart People The best and worst moves in the management and strategy trenches. Learn More

Read the original story

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads