Comments on: Attack code comes on heels of Microsoft patches
Just a day after patches for vulnerabilities are released, code designed to exploit those weaknesses appears on Net.
Most Popular
Latest tech news headlines
- Man loses job after searching too hard for aliens
November 30, 2009 7:42 PM PST
- Google hosts energy experts amid climate talks
November 30, 2009 6:01 PM PST
- Nintendo primed for holiday console dominance
November 30, 2009 5:00 PM PST
- See all headlines
RSS Feeds
Add headlines from CNET News to your homepage or feedreader.
More feeds available in our RSS feed index.
- Markets
Related quotes
<CONSPIRACY>
Did Microsoft find out about the expoit code from the wild and create patches for them so that when the attacks began they would be stopped before they began or did they manufacture the whole thing, the exploits, the patches, the media stories?
</CONSPIRACY>
OOPPS! Sorry about that, went into conspiracy mode again.
But conspiracies aside for the moment, one of the problems with security patches is that they provide a nicely packaged roadmap to a vulnerability. A cracker may not be able to determine how to effectively exploit a given vulnerability given nothing but its description. But with the patch in hand the cracker can see exactly what modules are affected, and by comparing to unpatched versions can even determine exactly what code has been changed (and is thus vulnerable pre-patch).
That's one reason why quickly applying a critical security patch is so important - even if there aren't exploits in the wild when the patch is released, the exploits can evolve VERY quickly to take advantage once the patch is out.
- interesting
- by thedreaming June 15, 2006 6:35 AM PDT
- Microsoft puts out security patches and almost overnight, we get the first attacks using those same patched security gaps.
- Like this Reply to this comment
-
-
- Roadmaps
- by cbarn June 15, 2006 7:59 AM PDT
- It could all be a conspiracy. ;-)
- Like this
-
(4 Comments)<CONSPIRACY>
Did Microsoft find out about the expoit code from the wild and create patches for them so that when the attacks began they would be stopped before they began or did they manufacture the whole thing, the exploits, the patches, the media stories?
</CONSPIRACY>
OOPPS! Sorry about that, went into conspiracy mode again.
But conspiracies aside for the moment, one of the problems with security patches is that they provide a nicely packaged roadmap to a vulnerability. A cracker may not be able to determine how to effectively exploit a given vulnerability given nothing but its description. But with the patch in hand the cracker can see exactly what modules are affected, and by comparing to unpatched versions can even determine exactly what code has been changed (and is thus vulnerable pre-patch).
That's one reason why quickly applying a critical security patch is so important - even if there aren't exploits in the wild when the patch is released, the exploits can evolve VERY quickly to take advantage once the patch is out.