Woody Leonhard's no-bull news, tips and help for Windows, Office and more… Please disable your ad blocker – our (polite!) ads help keep AskWoody going!
Home icon Home icon Home icon Email icon RSS icon
  • Cimpanu: Microsoft fixes security breach in Win10, but doesn’t fix the same hole in Win7 or 8.1

    Posted on October 6th, 2017 at 14:57 woody Comment on the AskWoody Lounge

    Once again, Catalin Cimpanu at BleepingComputer dropped a bomb. Referring to Mateusz Jurczyk’s investigation at Project Zero, he points out that a security hole patched in Win10 but not patched in Win7 or 8.1 gives rise to a situation where a simple tool – binary diffing – can disclose the nature of the security problem.

    As soon as Microsoft releases an update, attackers could patch and binary diff the Windows 7, 8.1, and 10 updates and look for inconsistent patches that may yield new bugs.

    Not to worry. These specific Win7 and 8.1 security holes were patched last month.

    UPDATE: Martin Brinkmann has posted a very accessible summary on ghacks.

  • Comments are down. Again.

    Posted on October 6th, 2017 at 13:22 woody Comment on the AskWoody Lounge

    UPDATE: Now they’re back.

    For those of you who have been waiting for moderation of your replies… our moderation tools were disabled a week ago, to prevent more destruction of the web site. We hope to have them back soon – and with them, a way to block bad posts.

    Ain’t computers fun?