W7's Unfixable Glitch

Skeithex · Post by **Skeithex** » Sat Apr 25, 2009 12:31 am

This week the world's leading cybersecurity professionals gathered in Dubai at the Hack In The Box Security Conference to discuss the state of the industry, identify new threats, share pro-tips, and play Dungeons and Dragons. Ok, probably not that last part, but you get the point; high-nerdery was clearly afoot at the Sheraton Dubai Creek. One of the more prominent topics of discussion was Microsoft's latest operating system, Windows 7. While a number of exploits and potential vulnerabilities of the system were discussed at the conference, one identified loophole in the system has security professionals troubled…and morbidly fascinated.

A team of researchers located an exploit within the new operating system that can allow hackers to take control of a user's machine during the startup process. The problem was identified by Vipin Kumar and Nitin Kumar, who created a program called VBootKit 2.0 that exploits the weakness and allows a hacker to bypass the machine's hard drive entirely, making it nearly impossible to detect. Once hackers can implement the software, they can then change access permissions, passwords, and gain access to a user's sensitive information. What's worse, a program like the one created by Vipin and Nitin Kumar can be as small as 3KBs, and thus can be spread rapidly. Naturally, problems like these are common during the pre-release beta stages, but Vipin and Nitin Kumar claim that this vulnerability is unique and completely unfixable.

"There's no fix for this. It cannot be fixed,"said Vipin during his presentation in Dubai. "It's a design problem."

Microsoft has yet to comment on the exploit or formally acknowledge its existence, however, if Vitin and Nitin's claims are true, it could mean serious trouble for the forthcoming operating system's sales.

source

wow, that fails.

Post by **froggyboy604** » Sat Apr 25, 2009 1:07 am

I guest people who care about their PC's security will be sticking with Windows XP and other OSeS.

Skeithex · Post by **Skeithex** » Sun Apr 26, 2009 12:31 am

froggyboy604 wrote:I guest people who care about their PC's security will be sticking with Windows XP and other OSeS.

this could make the vista look good

Post by **SetoTK** » Sun Apr 26, 2009 12:39 pm

Skeithex wrote:this could make the vista look good

ROFL nothing can make vista look good.

and the "can't be fixed" has been said before,

Post by **froggyboy604** » Sun Apr 26, 2009 6:48 pm

I think this security hole make Linux Distroes like Ubuntu, Debian, Fedora, Freebsb, etc look better since Linux have fewer malware, viruses, and adware then Windows.

Skeithex · Post by **Skeithex** » Sun Apr 26, 2009 11:11 pm

SetoTK wrote:
Skeithex wrote:this could make the vista look good
ROFL nothing can make vista look good.

and the "can't be fixed" has been said before,

we won't know until W7 is out will we?

Post by **froggyboy604** » Mon Apr 27, 2009 12:07 am

There will probably be third party anti-virus and other security programs that will come out which can block this program. Running Windows without a decent Anti-Virus is very risky.