New Windows Vulnerability Uncovered

[A Guy]

The last days have not been pleasant for Microsoft. A new Windows vulnerability affecting all 32-bit editions of the operating system from Windows 3.11 to Windows 7 was uncovered shortly after the revelation that an exploit in Microsoft’s Internet Explorer 6 was used in the attack on several US companies that included Google and Adobe (read Microsoft Confirms Internet Explorer Vulnerability)

Cause of the problem is the virtual dos machine (vdm) that was introduced in 1993 to support 16-bit applications. The exploit was uncovered by Tavis Ormandy, a member of Google’s security team. It makes it possible to run code with elevated rights on the computer system. The full technical explanation of the vulnerability and example exploit code are available at Neohapsis.

No patch has been issued by Microsoft until now even though Ormandy mentioned that he had contacted Microsoft about the issue six months ago. There is however a quick fix for most Windows operating systems: Disallowing VDM.

There are two possibilities on how to do that. System administrators and users with access to the Windows Group Policy Editor and an operating system that is Windows 2003 or newer can enable the policy to “Prevent access to 16-bit applications” in Computer Configuration > Administrative Templates > Windows Components > Application Compatibility”.



This setting has the consequence that 16-bit applications will not execute on the computer system which should not have an effect on most home users.

Users with operating systems prior to Windows 2003, Windows XP comes to mind, can alternatively create a new Windows Registry key to close the security vulnerability in the operating system.

This is done by navigating to the Registry key

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppCompat

and creating the new DWORD VDMDisallowed and setting the value of the Dword to 1.


http://www.ghacks.net/2010/01/20/new-windows-vulnerability-uncovered-security/

A Guy

[Daniel]

17 years? OMG, i'm lost for words lol

[checkerspa]

Thanks for the info A Guy.

[Ranjan]

Thanks for the info A Guy.. Will disable that right now..

[safeguy]

Somehow I'm not bothered about this....seems like a trivial matter to me

[hellnoire]

We had a 20+ year bug in Unix\Linux that was fixed recently.

[Daniel]

20 year bug in Linux?

[noaccount]

well thx for info but i dont have this AppCompat key

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\AppCompat

now what

[hellnoire]

20 year bug in Linux?

Yeah... we couldn't think of a work around until recently.

[Newbie Comp user]

DAMN! just one registry key?!? OMG that shatters the hell out of Windows 2003 and Windows XP. This'll make me more aware of my computer

good to know about this. Thanks for sharing!