Dear fanboys, I would like to emphasize the presence of the word "may" in the title.
Microsoft Corporation recently announced plans to release a patch to reduce the risk of a new kind of Web-based security vulnerability, but security researchers say that other operating systems are probably at risk too. Nathan McFeters, a security researcher with Ernst & Young Global Limited, is one of the researchers who has been studying the problem most closely. He hopes to present more details on how Linux and Mac OS X may also be susceptible to what are known as Uniform Resource Identifier (URI) protocol handler flaws at the Toorcon hacking conference, being held next week in San Diego. Although McFeters admitted he had not yet found a way to run unauthorized code on Unix-based operating systems, he and his fellow researchers have discovered a number of issues that looked like they could be grounds for further research.
Microsoft Corporation recently announced plans to release a patch to reduce the risk of a new kind of Web-based security vulnerability, but security researchers say that other operating systems are probably at risk too. Nathan McFeters, a security researcher with Ernst & Young Global Limited, is one of the researchers who has been studying the problem most closely. He hopes to present more details on how Linux and Mac OS X may also be susceptible to what are known as Uniform Resource Identifier (URI) protocol handler flaws at the Toorcon hacking conference, being held next week in San Diego. Although McFeters admitted he had not yet found a way to run unauthorized code on Unix-based operating systems, he and his fellow researchers have discovered a number of issues that looked like they could be grounds for further research.
The problem McFeters and others have been researching over the past few months has to do with the URI protocol handling technology, used to launch programs from within Web browsers. Because any software developer can register their own application with the operating system, programs can be effectively launched within the browser without proper checks on the way they are being executed. Microsoft had originally said that it was up to software developers to make sure their programs check the links so that they don't include malicious code, but this week the software giant agreed to put some checks within the Windows operating system as well.
News source: PC World
In an interview, McFeters said that he had not yet found a way to run unauthorized code on Unix-based operating systems . . .
Last edited by LTD on 13 Oct 2007 - 22:12
yup
same here
Hahaha, nice.
Otherwise a totally bogus and meaningless article until proven.
Must be a slow week at Ernst & Young.
Last edited by LTD on 13 Oct 2007 - 22:12
In an interview, McFeters said that he had not yet found a way to run unauthorized code on Unix-based operating systems, but that he and his fellow researchers had discovered a number of issues that looked like they could be grounds for further research.
Some of us fanboys have our reasons, believe me.
Thenyou can also say the same for pasting it on the front page of Neowin
How very professional
How very professional
+1 It was enough for me to not read the article (and im mainly a windows user) I always thought this kind of name tagging was frowned upon in Neowin.
what a t**t
So damn predicable.
Here's a couple of my own headlines:
"May" works both ways fanbois.
Last edited by Kojacked on 14 Oct 2007 - 05:17
So does yours, but I don't complain.
So does yours, but I don't complain.
Pwnt
.<---- No
^^
Pointless
But yeah this article seems to have wsasted all our time.
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.