Windows Vulnerable To 'Token Kidnapping' Attacks - Slashdot

Slashdot

Windows Vulnerable To 'Token Kidnapping' Attacks 126

Posted by timothy on Saturday July 17 2010, @06:09PM
from the token-of-my-affection dept.

cuppa+tea writes "More than a year after Microsoft issued a patch to cover privilege escalation issues that could lead to complete system takeover, a security researcher plans to use the Black Hat conference spotlight to expose new design mistakes and security issues that can be exploited to elevate privileges on all Windows versions, including the brand new Windows 2008 R2 and Windows 7."

This discussion has been archived. No new comments can be posted.

Windows Vulnerable To 'Token Kidnapping' Attacks

Search 126 Comments Log In/Create an Account

Comments Filter:

Re:Yes (Score:5, Funny)

by Windwraith (932426) writes: on Saturday July 17 2010, @06:31PM (#32939490)

No, but it's polite, it's greeting the world. You are so insensitive!

Parent Share
twitter facebook
Re:Apple replies (Score:4, Funny)

by $RANDOMLUSER (804576) writes: on Saturday July 17 2010, @06:54PM (#32939636)

Actually, that's a pretty good analogy, as it makes Windows the fat, ugly chick with 17 enumerable STDs.

Parent Share
twitter facebook
Re:About Software (Score:2, Funny)

by Lord Juan (1280214) writes: on Saturday July 17 2010, @07:09PM (#32939740) Homepage

Really? Can you find a bug in this...
#include <stdio.h> int main() { printf("hello, world"); return 0; }

But Microsoft did not write that routine, had they done it, it would read something like:
#include <stdio.h> int main() { printf("hello, world"); get_administrative_privileges(); collapse_system(); return 0; }

Parent Share
twitter facebook
Re:About Software (Score:5, Funny)

by DAldredge (2353) writes: <SlashdotEmail@GMail.Com> on Saturday July 17 2010, @07:10PM (#32939752) Journal

You aren't checking the the return status of printf.

Parent Share
twitter facebook
Re:Apple replies (Score:3, Funny)

by $RANDOMLUSER (804576) writes: on Saturday July 17 2010, @07:21PM (#32939804)

Windows has shown it will let ANYBODY fuck it. Low self-esteem and all.

Parent Share
twitter facebook
Re:Yes (Score:1, Funny)

by Anonymous Coward writes: on Saturday July 17 2010, @07:37PM (#32939898)

Neither does Windows.

Parent Share
twitter facebook
Get a Life Already Hackers!! (Score:0, Funny)

by Anonymous Coward writes: on Saturday July 17 2010, @07:46PM (#32939950)

I bet these without-a-life hackers are so lame they go on slashdot on a Saturday night! Poor saps don't have a life. Wouldn't want to be them, that's for sure!

Share
twitter facebook
Re:About Software (Score:3, Funny)

by rudy_wayne (414635) writes: on Saturday July 17 2010, @11:18PM (#32940738)

Really? Can you find a bug in this...
#include
int main()
{
printf("hello, world");
return 0;
}
Yes. You left out goatse.cx

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Related Links Top of the: day, week, month.

1051 commentsRand Paul Has a Quick Fix For TSA: Pull the Plug
911 commentsMandatory Brake-Override Proposed For All Cars
737 commentsGimp 2.8 Finally Released
707 commentsIcons That Don't Make Sense Anymore
700 commentsDiesel-Like Engine Could Boost Fuel Economy By 50%

With all the fancy scientists in the world, why can't they just once build a nuclear balm?