Date: Sun, 9 Nov 1997 08:23:22 +0000 (GMT) From: Terry Lambert <tlambert@primenet.com> To: digital@www2.shoppersnet.com (Howard Lew) Cc: alk@subtle.east.sun.com, hackers@FreeBSD.ORG Subject: Re: Newest Pentium bug (fatal) Message-ID: <199711090823.BAA18550@usr06.primenet.com> In-Reply-To: <Pine.BSF.3.91.971108192731.14766A-100000@www2.shoppersnet.com> from "Howard Lew" at Nov 8, 97 07:42:51 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> For Windows users this bug should not be much of a problem unless viruses > start popping up taking advantage of the bug. For FreeBSD it is not very > comforting to know that any misbehaving user can lock up your shell > machine, but in a controlled environment this should not be a problem. A virus isn't the only way it could be done. A Windows user's ISP could be denial of service attacked using the bug, so it could affect them. Active X, anyone? Microsoft made their JAVA capable of calling x86 code (makes it possible to write java wrappers for ActiveX code that isn't security checked for a VeriSign key, right?). Apparent;y Sun was right about it being a mistake for Microsoft to do this. 8-) 8-). Word Macros? Excel Macros? Help files? Email attachments? Screen savers? Desktop Themes? The default for the system directory on Windows NT is world writeable; it seems to me many NT file servers are at risk (not that they weren't at risk without tuning anyway). I'd say "all", but of course NT runs on non-Intel machines... ;-). Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199711090823.BAA18550>