[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] WinXP SP2 comments (was: Internet explorer 6 execution of arbitrary code)

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] WinXP SP2 comments (was: Internet explorer 6 execution of arbitrary code)
From: Nils Ketelsen <nils@xxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Mon, 7 Jun 2004 07:40:00 -0400

On Mon, Jun 07, 2004 at 01:11:37AM -0400, Poof wrote:

> Well, the "Security Center" will only detect your firewall/antivirus if the
> program tells Windows that it's protecting your computer. (New API Microsoft
> did... Many companies are using it now.)

Ohh, then I can just write a program doing nothing but telling windows it
protects it to make this warning go away? Cool. There will be many of these
out there when SP2 goes around. Maybe at $5 or so. Snakeoil at its best.
And even proves protection by making the windows warning go away.

Nils
-- 
Well... It all started with a typo in a safe sex pamphlet. By the time
I discovered I didn't really have to use a condor every time, I'd kind
of gotten used to them.
             [bsvitavsky@xxxxxxxxxxxxx in rec.arts.comics.dc.universe]

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] WinXP SP2 comments (was: Internet explorer 6 execution of arbitrary code)
  - From: Chris Carlson
- RE: [Full-Disclosure] WinXP SP2 comments (was: Internet explorer 6 execution of arbitrary code)
  - From: Poof

Prev by Date: RE: [Full-Disclosure] WinXP SP2 comments (was: Internet explorer 6 execution of arbitrary code)
Next by Date: Re: [Full-Disclosure] another new worm submission
Previous by thread: RE: [Full-Disclosure] WinXP SP2 comments (was: Internet explorer 6 execution of arbitrary code)
Next by thread: [Full-Disclosure] [SECURITY] [DSA 516-1] New odbc-postgresql packages fix denial of service
Index(es):
- Date
- Thread