Linked by Amjith Ramanujam on Mon 11th Aug 2008 16:13 UTC, submitted by gonzo
Ars Technica has analyzed recently publicized Vista's security flaws. "Unfortunate, yes, but not as was reported in the immediate aftermath of the presentation evidence that Vista's security is useless, nor does this work constitute a major security issue. And it's not game over, either. Sensationalism sells, and there's no news like bad news, but sometimes particularly when covering security issues, it would be nice to see accuracy and level-headedness instead. ... Furthermore, these attacks are specifically on the buffer overflow protections; they do not circumvent the IE Protected Mode sandbox, nor Vista's (in)famous UAC restrictions."
Permalink for comment 326520
To read all comments associated with this story, please click here.
To read all comments associated with this story, please click here.
Recent Original Stories
Recent Comments
Headlines
Random Comments
Random Stories
Random OS Link
Member since:
2005-08-18
Uh, wait, so the problem is that security researchers find them? Not that they exist to begin with?
You can opt out? That's brilliant security design, right there.
Really? What the hell does? While it's not really game over it sure is a big problem.
And neither does understating the seriousness.
Oh the irony.
So what? Exactly how dos the fact that "this would work on XP too" make this less serious?
Oh ok then. Since it only circumvents them I guess that's ok.
No shit Sherlock. Unfortunately, again, that doesn't make this any less of a problem.
Except when it runs code with buffer overruns, I guess?
It would appear Mr Bright is none too.