Linked by Thom Holwerda on Mon 2nd Apr 2007 21:05 UTC, submitted by Dale Smoker
Windows Microsoft has decided to rush out a fix for a flaw in Windows, saying that the problem has become too serious to ignore. The flaw, which will be patched on Tuesday, was originally disclosed to Microsoft in December, but it was not publicly reported until last week. The bug lies in the way Windows processes .ani Animated Cursor files, which are used to create cartoon-like cursors in Windows.
Permalink for comment 226791
To read all comments associated with this story, please click here.
lemur2
Member since:
2007-02-17

{So as I said before, just because Windows is a bigger target, that doesn't make it less secure, it just makes it an obvious target. }

I agree with that. Windows isn't less secure just because it is the bigger target, but rather the other way around. Windows is the bigger target because it is less secure.

{The reason I ask is because I bet if Ubuntu was used as commonly as Windows is now and Windows was the new comer, Ubuntu systems would be going down left right and centre because of the technically inept downloading "i love you" shell scripts.}

I very much doubt it. Windows security model is akin to ... "it is OK to run if it has an .exe extension".

Windows security model is after all set on a design path a la Windows 95 ... a single-user, non-networked OS, wherefrom the Win32 API was generated.

In Outlook, rather than fix the fundamentally broken security in Windows, whereby attachments on e-mails could just run without being given permissions, Outlook just effectively banned attachments.

After all, it is in a certain large software vendor's best interest if it can just run code on YOUR system without you giving your permission ...

Edited 2007-04-03 02:56

Reply Parent Score: 1