[LINK] vista security security flaws
Adam Todd
link at todd.inoz.com
Fri Feb 16 01:07:18 AEDT 2007
At 10:16 PM 15/02/2007, Kim Holburn wrote:
>http://www.theinquirer.net/default.aspx?article=37629
>
>>MS malware engine vulnerable to malware
>>
>>Protection Engine Vulnerability, Integer overflow in the Microsoft
>>Malware Protection Engine (mpengine.dll), as used by Windows Live
>>To have one insecure security product could be seen as unlucky; to
>>have eight looks a bit like carelessness. µ
Ok not supporting the obvious, but it's not really 8 products that are
insecure. It's one DLL.
Had the team responsible for the DLL done their job right, then the "8"
packages that use the DLL would not be an issue.
Seems that the team writing the DLL didn't bother to check their specs and
what the hell is anyone doing writing remote executable functions into a
DLL in the first place! Especially one that is tied into "Ingress" security.
Sheesh.
Sack the team and get a new ingress Malware team.
More information about the Link
mailing list