Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Microsoft

Microsoft

Microsoft Patches Critical Vulnerability In Windows Vista

More than a matter of perspective

By Marius Oiaga, Technology News Editor

14th of February 2007, 08:53 GMT

Adjust text size:


Windows Vista is still fresh on the shelves and Microsoft has patched the operating system with the February 2007 Security Bulletins release. However, there is an issue of nuance here. And
it depends on your perspective. The affected Windows Vista component is Windows Defender. The operating system has managed to make its way unscratched through the first monthly patch cycle, with the small exception of Windows Defender.

The fact of the matter is that Microsoft will argue that the vulnerability affects the Malware Protection Engine at a general level. But if you read between the lines, the critical vulnerability impacts Windows Defender. And the most relevant facet of this aspect is that Windows Defender is integrated by default in Windows Vista.

In fact, Microsoft has made it in such a way that users will not be able to uninstall Windows Defender. It can be turned off, but it cannot be uninstalled. And if Windows Defender is an integer part of the operating system, what about the vulnerabilities affecting it?

Considering that Windows Defender is a component of Vista, and that the users have little say in the matter, the vulnerability is also in Vista. Microsoft anti-spyware solution can be used as an attack vector to compromise the operating system.

Jim Allchin, ex Co-President, Platform and Services Division, responded in mid December to a Sophos test which concluded that Windows Vista could be compromised by existing malware. "If you are using only the software in Windows Vista (e.g., Windows Mail and no add-on security software), then you are immune to all ten of the malware threats that Sophos cited (W32/Stratio-Zip, W32/Netsky-D and W32/MyDoom-O)," Allchin said at the time. Obviously, that is not the case, when you take into consideration Windows Defender.


Rating:
Good (3.0/5) 8 vote(s) so far    

Read by 2,037 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Windows Live OneCare Is Incompatible with Windows Defender

Internet Explorer 8.0 Features

Microsoft in the House of Lords

Microsoft Phonetically Corrects Excel Patch

Highly Critical Microsoft Word Zero-Day

Microsoft Confirms Word 2000 Zero-Day

It's Raining Word Vulnerabilities

Targeted Attack Scenario via a Microsoft Vulnerability

Windows Vista - Onward to the Slaughter

Microsoft Updates the IE7 Phishing Filter

Microsoft Confirms Fifth Office Zero-Day Vulnerability

Look for Vista Vulnerabilities and Thou Shall Find Them

Microsoft Vulnerabilities in the Front Row at Super Bowl

IE7 - the First Browser to Support EV SSL Certificates

Internet Explorer 7 Blocks 1 Million Phishing Attacks Per Week

Microsoft Security Guru Explains His Take on Security

Microsoft Revamped IE Add-ons

Insight on the Latest Microsoft Office Zero-Day Vulnerability

Microsoft Takes Security Research out of Redmond

Microsoft's 12 Valentine Security Patches

Gran Paradiso Alpha 2 Is Way Ahead of Internet Explorer 8.0

Unpatched Microsoft Vulnerabilities Have Gathered Over 1,000 Days of Exposure

IE7 Security Features Should, In Theory, Protect the Computer?

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive