HT-News

Microsoft Says WMP Vulnerability Not Harmful.

A security researcher discovered an "alleged vulnerability" involving Windows Media Player, however Microsoft claims that there is no possibility for harmful code execution. In fact, Bill Gates" dominating opus labels the claim as "false" after an extensive investigation over the Christmas holidays. According to the company, the security researcher never contacted Microsoft about the vulnerability, but rather posted the report along with proof of concept code to a public mailing list. Microsoft says that once the report began to circulate, other "organizations" began to claim that the issue was a code execution vulnerability in Windows Media Player version 9, 10, and 11. Apparently, the researcher"s concept code actually does crash the media software, however the incident remains within the application, and doesn"t effect with Windows operating system itself. In fact, Windows Media Player can be restarted immediately after the crash. Microsoft claims that the issue was already addressed in Windows Server 2003 SP2, and will be addressed in other future versions. Microsoft actually seemed rather baffled as to why the researcher chose not to contact the company directly. "Unfortunately, the researcher (Laurent GaffiÓ©) chose not to come to us with this initial report," says a Microsoft Security Response Center blog entry. "If he had, we wouldò€™ve done the exact same investigation we just completed. When we were done, we would have let them know what we found, asked him if he thinks we might have missed something, continued the investigation if there was more information, and ultimately closed the case if we didnò€™t find a vulnerability. This is how we handle all of the cases we investigate with responsible researchers every year." Recently Microsoft has been in a constant, negative spotlight, first with accusations that the company knew about faulty hardware before shipping the first batch of Xbox 360 consoles. Just last week Microsoft scrambled to generate a fix for a security hole in all versions of Internet Explorer, and earlier this week thousands of 30GB Zune portable media devices locked up at 12:00:01 a.m. Although Microsoft poses to release Windows 7 Beta 1 next month which already appears on Torrent search lists. Thankfully, the supposed Media Player vulnerability was an erroneous claim.. or at least that"s what Microsoft says. "Weò€™ve found no possibility for code execution in this issue," the company said.


Add your comment:
Name:
Site address: http://
Your message:
Enter today\\\\'s date, 2 digits
(spam protection):

Categories
Hardware
About evocos
HT-News
IT-Services
Networks
Reviews
Security
Software
News of the day
Smart choices emerge from the USB Flash arena.
Taipei (Taiwan) - From the looks of things at Hall 1 of Computex, it would seem that everyone and his granny has at least one Flash USB storage device on display. The word being used to pitch these devices is "smart," which might lead one to ask, "What, exactly, is so smart about USB flash drives?"
Popular Articles
Global furniture stores in NY

Price war for 40" LCD TVs intensifies in N. America.
Brand LCD-TV makers are offering more aggressive prices for their products in North America amid a traditionally strong season and support from panel makers, with prices for 40" and 42" models competing more fiercely than before. Prices for Philips-branded 42" LCD TVs have dropped to $1700 at Costco"s website, while LG Electronics (LGE) is promoting its 42" LCD TVs at $2000 at BestBuy.
Free Software
Microsoft Looks to Overhaul Windows Update.
Your Windows Update is getting updated.

© Copyright 2009