Linked by Thom Holwerda on Mon 2nd Apr 2007 21:05 UTC, submitted by Dale Smoker
Windows Microsoft has decided to rush out a fix for a flaw in Windows, saying that the problem has become too serious to ignore. The flaw, which will be patched on Tuesday, was originally disclosed to Microsoft in December, but it was not publicly reported until last week. The bug lies in the way Windows processes .ani Animated Cursor files, which are used to create cartoon-like cursors in Windows.
Permalink for comment 226843
To read all comments associated with this story, please click here.
Laurence
Member since:
2007-03-26

>> If you can trick a Joe User into downloading an VBS
>> in Windows then you can trick them into downloading
>> a shell script in Linux.

and probably get them to type in their root password as well!

Though I don't know of any *nix programs that will download and attempt to execute files without your asking... something that is ALWAYS a problem with IE and Outlook.

Which is not so much the underlying operating system's fault, as it is that most users aren't smart enough to realize they shouldn't be using those in the first place.

As I tell my users all the time, if a page doesn't work in Opera or Firefox, or you are having trouble with a e-mail in M3/Thunderbird that's probably because it's trying to **** your computer.

Not always true, but true often enough to not be worth the risk - and no matter how many times you explain it that STILL doens't prevent them from doing stupid shit like visiting the same online game site in IE even after it's borked their windows install TWICE. (which is when you block the IP address at the router!)


Oh I couldn't agree more.

Ditching Outlook and IE is the 1st thing I advice people to do. It maybe an integral part of windows but it's just common sense that you use the best software available to you.

It's just like setting up an Apache server on *nix - you're not going to use an outdated version when there's a newer build around with a few security fixes.

Most Windows users lack common sense though - but then that's the desktop market Microsoft went for - the technically inept.

Reply Parent Score: 1