By Robert Lemos, 31 January 2005 10:10
NEWS
A Russian security company claims it found a way to beat a security measure in Microsoft's Windows XP Service Pack 2.
The SP2 measure, known as Data Execution Protection, is intended to prevent would-be attackers from inserting rogue code into a PC's memory and tricking Windows into running the program. However, in a paper published on Friday, Moscow-based Positive Technologies said two minor mistakes in the implementation of the technology allow a knowledgeable programmer to sidestep the protection.
The company notified Microsoft of the problem on 22 December, but it apparently decided not to wait for the software giant to patch the flaws.
Neither Microsoft nor Positive Technologies immediately responded to requests for comment on Friday.
After several delays, Microsoft began rolling out SP2 in August of last year, at which time company chairman Bill Gates called the update "a significant step in delivering on our goal to help customers make their PCs better isolated and more resilient in the face of increasingly sophisticated attacks".
Robert Lemos writes for CNET News.com.
Comments
There is 1 comment. Join the discussion
1. Robert Howe
Not an security enhancement at all: thanks to another upgrade in XP-SP2, if XP recognises a file extension type being downloaded from the web, it automatically launches the matched application. Before this, it was possible to download a file [that may contain embedded code] by modification of the content-type header and allow the user to scan before launching. In a web based service which delivers files we have written the instruction to users to right mouse click while this part of the service is re-written [in a different interface which allows the creation of a content-disposition header] thus resuming normal, and IMHO safer, service.