Vulnerabilities and Patches

The vulnerability lies in the Windows Virtual DOS Machine (VDM) subsystem.

 By Kara Reeder | Posted Jan 21, 2010
Page of   |  Back to Page 1
Print Article
Microsoft is warning users of a 17-year-old bug in the kernel of all 32-bit versions of Windows that hackers could use to hijack PCs, reports Computerworld.

The vulnerability, which was discovered by Google engineer Tavis Ormandy, lies in the Windows Virtual DOS Machine (VDM) subsystem. The advisory instructs users to disable VDM as a workaround.

Microsoft says it is not aware of any attacks using the vulnerability, but explains:

An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Comment and Contribute
(Maximum characters: 1200). You have
characters left.
Get the Latest Scoop with Enterprise Networking Planet Newsletter

By submitting your information, you agree that enterprisenetworkingplanet.com may send you ENTERPRISENetworkingPLANET offers via email, phone and text message, as well as email offers about other products and services that ENTERPRISENetworkingPLANET believes may be of interest to you. ENTERPRISENetworkingPLANET will process your information in accordance with the Quinstreet Privacy Policy.