extremely serious windows vulnerability

Discussion in 'Site Announcements' started by sec_monkey, Jan 14, 2020.


  1. sec_monkey

    sec_monkey SM Security Administrator

    there are reports of an extremely serious windows vulnerability.

    priority patches have allegedly been shipped to the US Military and other priority clients according to those reports. those that received the priority patches are not allowed to disclose any info about the vulnerability.

    the patch is expected to be publicly released today.
     
    Last edited: Jan 14, 2020
    3M-TA3 likes this.
  2. sec_monkey

    sec_monkey SM Security Administrator

    all versions of windows from NT 4.0 to w10 plus server 2003-201x are believed to be affected including XP

    it is not known if XP and server 2003 will receive an emergency patch

    win 7 support is also due to expire any day

    more info will be provided as it becomes available .. ..
     
    3M-TA3 and john316 like this.
  3. Altoidfishfins

    Altoidfishfins Monkey+++ Site Supporter+

    Win 7 support expires today, also Office 2010

    Linux or Mac- they're the only answers
     
    sec_monkey likes this.
  4. sec_monkey

    sec_monkey SM Security Administrator

    Linux is the best free option [winkthumb] [winkthumb] the bsds are probably the 2nd best free option (y) (y)

    Macs are unbelievably expensive and their OS is not free even though it is based on bsd :( :(
     
    offgrittyt and 3M-TA3 like this.
  5. Bandit99

    Bandit99 Monkey+++ Site Supporter+

    I wonder why we never hear of Linux or for that matter, Unix vulnerabilities? I mean, most of Unix was written by university students and Linux was basically ported from it so... Yes, there are different version of Unix but most the code came from Berkeley Unix and there is no doubt in my itty-bitty mind that some student put a backdoor in somewhere. I will have to ask the Google God to get the answer... I mean, it is much cleaner code and that might be the simplistic answer.
     
    sec_monkey likes this.
  6. 3M-TA3

    3M-TA3 Cold Wet Monkey

    Nothing is completely safe but Linux is open source and techno dweebs are constantly pouring over every line of code. As for the bastiges that write viruses they put most of their efforts into Windows because it's the biggest player and their targets are the ignorant.

    @Bandit99 tell us what you find.
     
    sec_monkey likes this.
  7. sec_monkey

    sec_monkey SM Security Administrator

    yep, all software has vulnerabilities

    Linux is a Unix clone, not an exact copy

    the vast majority of Unix users have migrated to Linux or one of the bsds or both

    Linux and the bsds are fully open source so if someone tries anythin funny it is more likely to get detected, several entities have tried and failed, however just because it is open source does not automatically mean all code gets fully audited, anyone can look at the code though

    some individual developers and or their small repos have been compromised or taken over by malicious parties this has affected a few wordpress plugins and such, not the OS repos

    at one time the large commercial Unix license holders had professional developers working on Unix, it was not all written by kids .. ..
     
    Gator 45/70 and 3M-TA3 like this.
  8. sec_monkey

    sec_monkey SM Security Administrator

  9. BTPost

    BTPost Stumpy Old Fart,Deadman Walking, Snow Monkey Moderator

    My WinDoz10 machine is crunching the Updates as I type here on my iPad...
     
    Gator 45/70 and sec_monkey like this.
  10. Gator 45/70

    Gator 45/70 Monkey+++

    3cyl likes this.
  11. sec_monkey

    sec_monkey SM Security Administrator

    microsoft no longer supports 7 as of yesterday [banghead] [banghead]

    upgrade to Linux if ya can
     
    oldawg and 3cyl like this.
  12. Merkun

    Merkun furious dreamer

    3cyl, 3M-TA3 and Brokor like this.
  13. Brokor

    Brokor Live Free or Cry Moderator Site Supporter+++ Founding Member

    ...or upgrade to Win10
    Executables.
     
  14. sec_monkey

    sec_monkey SM Security Administrator

    w 10 is a downgrade not an upgrade
     
    Cruisin Sloth, 3cyl and ghrit like this.
  15. 3M-TA3

    3M-TA3 Cold Wet Monkey

    Thanks - I have a couple of media servers I'll need to upgrade so I'll give that a try. When I upgraded my laptop from 7 to 10 (before the eventual upgrade to Linux) MicroSoft decided that my vendor provided Windows 7 key wasn't valid and said to contact the Manufacturer (after the upgrade was complete and I couldn't go back). Lenovo said my LT was too old for support but would help if I bought a $$$ support service, so it was cheaper to buy another frikkin license. "Free" wound up costing me $130 at the time.

    If you go this route you can get Win 10 (and many other licenses) from Kinguin for a fraction of retail. These are excess product keys that were bought in bulk for various projects. Kind of like a hotel that will sell you a last minute room cheap because a few dollars are better than no dollars. Last time I checked Win 10 home was under $30 and pro was just a few $ higher. Looks like prices have gone up about $5 likely due to 7 getting offed. Kinguin - FREE Premium Games Every Weekend!

    On second thought I'm going to just buy the licenses and do fresh upgrades. I've never done a MS OS upgrade that didn't have issues. Not worth "free" to spend 10 hours fixing upgrade issues.
     
    Brokor likes this.
  16. Brokor

    Brokor Live Free or Cry Moderator Site Supporter+++ Founding Member

    Best Win operating system I've ever used, by far. Any flavor of Linux is still better, but not for gaming. And no, I'm not gonna use "Wine" or some other garbage. Real gaming. And it is what it is.
     
  17. Brokor

    Brokor Live Free or Cry Moderator Site Supporter+++ Founding Member

    Yup. I think I paid $80 for my Win10 disc. Great install, gave me the options to turn off all the Cortana crap on startup.
     
  18. 3M-TA3

    3M-TA3 Cold Wet Monkey

    Some aspects of Win 10 are an upgrade like WSAPI, but the rest IMO is not, unless you count being spied on by MS a desirable feature. For watching movies and listening to music 10 is tolerable, but everything serious is done on Linux. When I make my change to a managed network I'm going to lock them down TIGHT anyway and only give access to the NAS that hosts the media files.

    The only reason I'm going to 10 on my media servers is because it's easier to remote control, and eventually anti virus will drop 7 support.
     
    Brokor and Gator 45/70 like this.
  19. Gator 45/70

    Gator 45/70 Monkey+++

    I just asked that question about spying on customers in a couple of different ways in the ask a question box...
    All I managed to get in return waz...Did you mean this or Did you mean that....Never received a strait answer...lol
     
    sec_monkey likes this.
  20. Bandit99

    Bandit99 Monkey+++ Site Supporter+

    Ah! Yes, of course! Thank you!
     
    Brokor and Gator 45/70 like this.
survivalmonkey SSL seal        survivalmonkey.com warrant canary
17282WuJHksJ9798f34razfKbPATqTq9E7