"After last week's ShoutHack flaw, Microsoft's recently-released operating system Windows Vista is once again in the eye of a security storm. It is possible to elevate the system privileges by exploiting a flaw in Vista, according to vulnerability researchers.
This is a vulnerability specific to Vista that doesn't exist in XP. Interestingly, Microsoft has made a lot of security improvements in Vista, but it is becoming obvious that a few loopholes will always escape attention. Maiffret plans to demonstrate his findings later this week at the IT-Defense 2007 conference in Germany.
Microsoft has said Vista is its most secure OS to date, and features like Address Space Layout Randomization (ASLR) are meant to insulate Vista from malware attacks. However, unless application vendors such as CA integrate with those features, the tools can be easily defeated, as pointed out by the BrightStor exploit."
Click on the link below for the full article:
http://economictimes.indiatimes.com/articleshow/1578487.cms
No comments:
Post a Comment