Stop Microsoft
All Things Microsoft => Microsoft as a Company => Topic started by: TheGreatPoo on 19 December 2002, 07:36
-
Jam to this!!!! :D
http://www.msnbc.com/news/849418.asp?0cv=CB10 (http://www.msnbc.com/news/849418.asp?0cv=CB10)
-
quote:
Music files can disguise hack attack
Malicious programmers can exploit WinXP flaw to infect MP3s
By Bob Sullivan
MSNBC
Dec. 18
-
this is why we use Ogg Vorbis, children.
-
Damn glad to be running XMMS :D
-
so, how do i add this bufferoverun code to my MP3s?
-
I feel the need to flood kazaa with some of those those files.... :D
-
Think of a well known saying that rhymes with "clucking bell."
I like the quote "flag ship operating system". Good use of a metaphor there cause the ship is taking in water, looks to be listing heavily to on the starboard bow and is in danger of sinking.
When will corporate America tire of this bullshit ?!!!
-
quote:
Originally posted by HibbeeBoy:
When will corporate America tire of this bullshit ?!!!
Never it seems...
-
quote:
Originally posted by HibbeeBoy:
...I like the quote "flag ship operating system". Good use of a metaphor there cause the ship is taking in water, looks to be listing heavily to on the starboard bow and is in danger of sinking.
It's a damn shame that rats have the tendancy to survive when the ship goes down.
-
actually the fix is very simple; remove the id3v2 tags from the mp3's. id3v1 tags are 128 bytes at the end of the file, so a buffer expoit would only be possible if the buffers weren't correctly coded for in the first place. The fields are an exact length. id3v2 is at the begining of the file; it is variable in length, so if you add the v2 tag (or even lengthen it by adding more info) approx 5 Megs have to be read and rewritten to disk. How sane is that?
btw: where is Zombie to tell us that integrating IE and WMP into the OS is a good thing?? Users don't even have to play the song -- all they have to do is open the "My Music" directory, or hover the mouse over a link.... wtf?
-t.
-
quote:
Dec. 18
-
do you know where i can get a pdf of that EULA (or any of MS' EULAs) so i can add it to my list of their EULAS here (http://belg88.com/faqman/index.php?op=view&t=75)?
I like to host these independently since microsoft seem to make it quite hard to actually get to read their EULA that they insist everybody in the world should agree to whether they have a computer or not.
-
quote:
"You agree that in order to protect the integrity of content and software protected by digital rights management ('Secure Content'), Microsoft may provide security related updates to the OS Components that will be automatically downloaded onto your computer. These security related updates may disable your ability to copy and/or play Secure Content and use other software on your computer. If we provide such a security update, we will use reasonable efforts to post notices on a web site explaining the update."
Best I could come up with is this quote from The Register. Seems they aren't publishing the whole thing on the 'Net. Perhaps you'll have to get it from someone who has XP and downloaded SP 1?
_________________________________________
Live Free or Die: Linux
(http://www.otakupc.com/etsig/dolphin.gif)
Their fundamental design flaws are completely concealed by their superficial design flaws.