Language Selection

English French German Italian Portuguese Spanish

M$ admits to Media Center hole

Filed under
Microsoft

Microsoft is developing a patch for a newly discovered security flaw in versions of Windows XP which poses a particular threat to computers running XP Media Center edition.

The flaw is in Windows Remote Desktop Services (RDS) and could allow a hacker to cause a computer to crash repeatedly by sending specially crafted data packets.

"Our investigation has determined that this is limited to a denial of service attack, so an attacker could not use this vulnerability to take complete control of a system," said Microsoft in a security advisory.

The user who discovered the vulnerability, security researcher Tom Ferris (aka 'badpack3t'), claims that he alerted Microsoft to the problem in May. The company told him that a patch would be released on 9 August as part of the usual monthly cycle.

"I have been working with Microsoft to get a patch out for this," said Ferris. "Microsoft told me the patch was going to be released in August. We know it's only a DoS [denial of service attack], which is kind of boring, so this is why we decided to report it to Microsoft."

Full Story.

More in Tux Machines

today's howtos

Development News

  • KDevelop 5.0.3 Open-Source IDE Improves GitHub Handling Authentication, More
    The development behind the open-source and cross-platform KDevelop IDE (Integrated Development Environment) was proud to announce on the first day of December the availability of the third point release for KDevelop 5.0 stable series. KDevelop 5.0.3 arrives one and a half months after the second maintenance update, but it's a small bugfix release that attempts to patch a total of nine issues reported by users since then. However, it's a recommended update for all users. "We are happy to announce the release of KDevelop 5.0.3, the third bugfix and stabilization release for KDevelop 5.0. An upgrade to 5.0.3 is strongly recommended to all users of 5.0.0, 5.0.1 or 5.0.2," reads the release announcement.
  • PHP 7.1.0
    The PHP development team announces the immediate availability of PHP 7.1.0.
  • PHP 7.1 Makes Its Debut
    This first major update to last year's huge PHP 7.0 release builds several new features on top. Introduced by PHP 7.1 is nullable types, a void return type, a iterable pseudo-type, class constant visibility modifiers, support for catching multiple exception types, and many other language enhancements plus more performance optimizations and other work.

Games for GNU/Linux

OSS Leftovers