Big Surprise: Security Holes Found In Vista

from the open-windows dept

Throughout the (longer than expected) development of Vista, Microsoft has worked hard to push the idea that it wouldn’t be burdened by the same sort of security problems as older versions of Windows. The company has beefed up the built-in security features and services of the software, much to the chagrin of some third-party security developers and the European Union, and one of its execs gave people the idea that Vista wouldn’t need anti-virus software. Given all that, it’s still not surprising to hear that researchers and hackers have found plenty of flaws in Vista, even before it’s been released to consumers. It’s the same type of stuff that’s plagued Windows XP, like a browser flaw and a user-privileges hack, and just the sort of thing most people were expecting despite the company’s incessant talk about Vista being more secure. The bad news for Microsoft is that things are probably only going to get worse: a new version of Windows was bound to be a massive target for hackers, and the company’s security hype has likely only made it an even bigger one.


Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “Big Surprise: Security Holes Found In Vista”

Subscribe: RSS Leave a comment
48 Comments
Gene says:

Re: Re: So What

“You not the smartest person in the world i see. Macintosh has the best of everything”

Generalizations like this show just how little someone knows about overall application. Macs have their advantages in the Art and Music world. I have one in my art dept now. The DO NOT have the best of EVERTHING. Try to run a relational database (like SQL) on one and you’ll soon be looking for razor-blades for your wrists and inquiring about the kool-aid recipes used in Jonestown.

Fred says:

Re: So What

paul,

One thing you can count on is change. How you adapt to change determines how successful you are in this world. Adapt poorly, you fall behind. Adapt well, and you succeed. Are your statements based upon a emotional attachment to the product or do you have examples of windows being the best O.S.?

I do not hate/dislike Windows or any other operating system any more than a Chevy vs. Ford vs. Lexus. And, yes people do take sides, but I still do not understand their logic. It exists. I am a tech professional and I must use it. I prefer other operating systems but if I must, I can function just dandy with another. No biggy.

But, most of the time when I hear statements like this it is because of ignorance and complacency rather that a real evaluation of the pros and cons. I hope this is not the case with you.

I am intrigued at statements like this. Please expand on this so I can understand you ๐Ÿ™‚

I am interested to hear more on this.

Fred

PS: “640K is more memory than anyone will ever need.’ ๐Ÿ˜‰

Max Rubin (user link) says:

Inherent Flaws in Any New Operating System

Welcome to life.
Any new opeating system is going to have security holes.
It is a fact of life such as when new drugs are released .
The product may have been tested and retested in “real life situations” > but it is only when out in the field with the vast numbers of users that reality and percentages kick in.
1/1000 of 1 % of zillions of users is still a lot of people.
Every Microsoft Windows system that has been released ( all the way from Windows 3.0) was touted as “the most secure system ever.”.
Windows Vista has a brand new network stack.
It took Windows XP till the release of Service Pack 2 (SP2) to finally get its security act in control.
Welcome to life.
Hopefully the advantages of Vista are more than pretty colors on the screen and utilities that can be found 3rd party which wll work on much less demanding computers and much less demanding computer operating systems.
http://www.adgerlinux.com

Gene says:

Re: Linux Rules

Linux has just as many flaws…just not as big of a target on it. If it had the marketshare that Microsoft had, then it would be known as current “Establishment” fare. Then all of the anarchist, anti-establishment geeks out there would aim to and succeed in shooting holes in it like swiss cheese. I run Apache webserver on a Linux box (going on 8 years now) and can tell you stories of it being hacked also.

Anonymous Coward says:

Why do you people think it was released to corporations and the black market a few months before official release?
A lot of people think that companies don’t intentionally make it possible for hackers and enthusiasts to download illegal copies of their software. They do, it’s the test bed for their software. If it’s not GNU, it has to be tested some way, and an OS like Vista, needs a lot of testers.

Chronno S. Trigger says:

I have an idea

Somebody get me Microsoft’s suggestion line. I have one that would simultaneously increase there security and profit margin.

JUST MAKE AN OPERATING SYSTEM. take out all the addons that add all the security holes. For example. have you ever counted how many patches there are for outlook express? I get one almost every update and I don’t use it.

Take out the firewall, anti virus, messenger, MSN and all the other crap no one uses. Put in a rudimentary browser and let people download what they may want from microsoft’s web site or AOL’s or FireFox.

The less there is in a operating system the smaller the target.

that's the plan says:

Re: I have an idea

Well, based on reports, if Gates keeps to the sidelines, the new Tech-head at MS plans to do exactly that. Smaller, modularized OS with licensed add-ons. He’s very anti-bloatware. It could be that the next OS will function along those lines. It will require a signifcant adjustment of the MS financial model, but he believes in techno-darwinism…adapt or die.

Chronno S. Trigger says:

Re: Re: I have an idea

You mean all those elderly people running windows ME? Vista isn’t out yet so if they won’t install an anti-virus then they don’t have one. Plus how many elderly people are going to upgrade to vista without help from more tech savvy people?

The thing that makes me mad is that vista disables the ability to install third party antivirus. the kernel is blocked from them.

Halb says:

Who's to blame

Let’s not forget that, unless willfull negligence is to blame, it is not the vendor’s fault if someone wrecks or misuses their product. The culprit in our software world is the hackers, those people who abuse technology to waste billions of our personal and corporate dollars per year.

There is nothing imoral or illegal about selling a software OS, even if it not tested to perfection. There is something illegal about exploiting a product to wreck a business or to extract confidential information to which you have no rights.

Why can’t we shame the hacker community instead of deriding software manufacturers? Its analgous to complaining about Homeland Security being so inept while defending Osama’s right to try to kill us.

Trvth Jvstice says:

Vista

I imagine that when the product is officially realeased in stores, Microsoft will have fixed the seurity issiues the the OP referred to. But, as much attention as Microsoft draws from hackers, I can’t imagine it ever being totally safe.

With XP, I simply keep my computer updated and a good virus and spyware program and I have Never had a problem.

The infamous Joe says:

Mr. Alternatives.

I agree that macs have the best of everything– if by ‘everything’ you mean ‘some things’.

The simple fact is that I want an OS that runs the programs I want to run– not an OS that can run a program to run programs I want to run.

If I wanted to make a computer-animated movie, I’d get a mac. It has plenty of strong points– just not strong points I care about.

The number of people who want to punch holes in macs is significantly smaller that people trying to hack MS– if you mac fanboys had your way and we all blindly bought compters with pretty cases, then hackers would turn their eyes to the OS X, and you’d be in the same boat.

I think you should pretend macs are a secret, keep quiet and hope they don’t get more popular.

Jon says:

Re: Mr. Alternatives.

OSX not just more secure because there are fewer people trying to hack it. Same goes for Linux. That myth has been debunked so many times it’s just stupid.

I really wish people like you would stop spreading FUD like that. Windows and Internet Explorer are insecure by design. The situation has improved a little over the years, but not totally.

But yeah, if you don’t have a clue what you’re talking about, you don’t have business saying things like: “The number of people who want to punch holes in macs is significantly smaller that people trying to hack MS” and “Linux has just as many flaws…just not as big of a target on it.”

“I run Apache webserver on a Linux box (going on 8 years now) and can tell you stories of it being hacked also.”

That could be Apache, not Linux, that has flaws. There could also be something stupid about how you have Apache set up and configured. There could also be something stupid about permissions you have on files that are accessible to the Internet. You also might have flaws in your web page code. You might also have something stupid in your MySQL set up.

At any rate, I’m sure your “8 years” of running an Apache server have been a helluva lot better than anyone’s 8 years on an IIS server.

Anonymous Coward says:

Wow, im Surpised!

Im not really Surprised by this. Microsoft should learn, they are the “biggest” OS makers, and the biggest pig heads. of course everybody (hacker) is gonna target you. and gonna find something that even you don’t know about.

kinda reminds me of a joke. “whats the difference between a car salesman, and a software salesman?” – “only the car salesman knows when he’s lieing”

Captain says:

Microsoft Sucks

Everything they release has known problems.. Yes, Microsoft releases these products knowing they have flaws.. This is so they can make money on their product while engineers develope the patches. It is a very shitty way of doing business and I have begun switching to competitor products.. Look at Novell. They are great. Microsoft has major bugs in IE7 but they don’t tell you anywhere on their site. I spent two days working out bugs in IE7 and Outlook2003. Even their support would not admit there were problems until I escalated to the highest level.. They are criminals in my mind. They sell shoddy products and expect you to pay to fix them in both time and money. Netware has not had a single bug in our network for the past 2 years… Get rid of Microsoft and maybe they will start doing something about quality as their install base diminishes. People would rather complain than act it seems. So…shutup or get rid of Windows. Its your choice.

Trvth Jvstice says:

People should be aiming their contempt towards the thousands of hackers that screw with Microsoft products rather instead of Microsoft.

I’ve been using Microsoft products since Windows 95 and I’ve had few few problems -zero problems with XP. If you keep your computer updated, use an antivirus and spyware protection, you should never have any problems.

The vast majority of problems that people have with XP is when they go to porn or warez or other “bad” sites and click “yes” to use this active x control or download bad software.

Microsoft made a great product which is easy to use and runs great. They have to constantly run updates ONLY because of the stupid hackers.

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop ยป

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...
Loading...