Windows flaws allow PC takeover

[Guest LilBambi]

Windows flaws allow PC takeoverMicrosoft identified three vulnerabilities in Windows on Wednesday that could have a similar effect to that of the dreaded MSBlast worm of August.

The flaws, which affect Windows NT 4.0, Windows 2000, Windows Server 2003, Windows XP and the 64-bit versions of Windows XP, are the latest in a string of critical weaknesses identified in Windows recently. The company has issued a patch that can be downloaded from its Web site. The first two flaws are buffer overruns, which allow a hacker to take over a computer by swamping it with data. The third is a denial-of-service flaw that affects a component known as the remote procedure call (RPC) process. The RPC process facilitates activities such as sharing files and allowing others to use a computer's printer. By sending too much data to the RPC process, an attacker can cause the system to grant full access to its resources. By using the flaws in tandem, a hacker could load unwanted programs onto computers through the buffer overrun flaws and then use the infected computers to launch a denial-of-service attack.

This is the same flaw that Thunder posted two days ago in the Microsoft and Windows Forum here:http://www.scotsnewsletter.com/forums/inde...=4&t=2183&st=60