[funsec] Microsoft to rush out emergency Windows patch today

Paul Ferguson fergdawgster at gmail.com
Thu Oct 23 20:06:23 CDT 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, Oct 23, 2008 at 4:58 PM, Larry Seltzer <larry at larryseltzer.com>
wrote:

> IIRC, MS05-039 didn't hit XP SP2 users as hard as those of earlier
> versions for the same reasons MS08-067 doesn't. Back then XPSP2 was
> relatively new, about a year old and met with a lot of resistance, so
> the world was full of vulnerable systems. How many pre-XP SP2 systems
> are out there in the wild now? (And not already massively infected with
> something?)
>

Doesn't matter, red herring.

If you have a system that is not patched against this threat, you will be
pwned in the same fashion as the MS05-039 exploit spread like wildfire --
that was my point.

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFJAR+Lq1pz9mNUZTMRAmVWAJ97OyZdEx0WZRngkKCY96qsu/ujrACfSNtT
5/vLeB+ZH6OvdSP7rkVA1rM=
=oBA2
-----END PGP SIGNATURE-----


-- 
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawgster(at)gmail.com
 ferg's tech blog: http://fergdawg.blogspot.com/


More information about the funsec mailing list