Microsoft’s Advisories Giving Clues to Hackers

forkb0mb.org

Calendar

Back May '13
Mon Tue Wed Thu Fri Sat Sun
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    

Quicksearch

Categories


All categories

Archives

Blog Administration

Open login screen

Microsoft’s Advisories Giving Clues to Hackers

Monday, April 16. 2007

Microsoft’s Advisories Giving Clues to Hackers

The latest zero-day flaw in the Windows DNS Server RPC interface implementation is a perfect example of the tug-o-war within the MSRC (Microsoft Security Response Center) about how much information should be included in the pre-patch advisory.

Using clues in the workarounds section of the advisory, Errata Security researcher David Maynor said he was able to pinpoint the source of the vulnerability without much trouble.

...

In the wake of Maynor's comments above, I asked the MSRC if there's a legitimate gripe that about the level of details included in its advisories and was told that it's a "delicate balancing act" to avoid giving too much clues while ensuring customers have adequate pre-patch protections.

/*
It really must be a delicate balance. Usually within 24 hours of a patch being posted, the fix has been reverse-engineered and at least an underground exploit floating around for it. How many admins do you know that patch all of their servers within 24 hours of a show-stopper like this? Not many.

This does bring up an interesting point, though. How much can you give customers to protect themselves without giving the blackhats enough to start circulating exploits?
*/
Posted by TJE in Advisories, News, Operating Systems, Vulnerabilities, Windows at 22:33 | Comments (0) | Trackbacks (0)

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

No comments

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA