Full Disclosure mailing list archives
Microsoft got it wrong
From: "Richard M. Smith" <rms () computerbytesman com>
Date: Wed, 15 Oct 2003 16:47:56 -0400
Only last month in USA Today, Microsoft was claiming that Windows Messenger didn't represent a security hazard: Pop-ups assail through Windows http://www.usatoday.com/tech/news/2003-09-24-popups_x.htm Microsoft views pop-up boxes as a benign nuisance that does "not pose a security risk," says Greg Sullivan, product manager for Windows. Looks like Microsoft crystal ball is pretty fuzzy. Windows Messsenger is just the sort of seldom-used feature that should be turned off by default in Windows XP. Richard M. Smith http://www.ComputerBytesMan.com -----Original Message----- From: full-disclosure-admin () lists netsys com [mailto:full-disclosure-admin () lists netsys com] On Behalf Of Darren Bounds Sent: Wednesday, October 15, 2003 2:19 PM To: full-disclosure () lists netsys com Subject: [Full-disclosure] MS Security Bulletin MS03-043 Microsoft Security Bulletin MS03-043 Buffer Overrun in Messenger Service Could Allow Code Execution (828035) Issued: October 15, 2003 Version Number: 1.0 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- MS Security Bulletin MS03-043 Darren Bounds (Oct 15)
- Microsoft got it wrong Richard M. Smith (Oct 15)
- RE: Richard M. Smith got it wrong NDG (Oct 16)
- Microsoft got it wrong Richard M. Smith (Oct 15)