17-year-old Windows/DOS Bug

February 14th, 2010 by Stephen Jones Leave a reply »

Tavis Ormandy, a security researcher at Google, discovered a security flaw in the Virtual DOS Machine that can allow a nefarious user to inject code into the kernel and possibly install malware. The flaw spanned iterations of Windows operating system over the last 17 years, including:

Windows 2000
Windows XP
Windows Server 2003
Windows Vista
Windows Server 2008
Windows 7
According to the BBC, Microsoft was to roll out a fix to this bug in a February Security Update. The update will fix five vulnerabilities that allow attackers to hijack a Windows PC and run their own programs on it – - a good idea to have automatic updates turned on so that your OS will check for you


Leave a Reply

You must be logged in to post a comment.