Stories
Slash Boxes
Comments

SoylentNews is people

posted by chromas on Monday April 09 2018, @06:12PM   Printer-friendly
from the (unsigned⠀int) dept.

https://www.theregister.co.uk/2018/04/04/microsoft_windows_defender_rar_bug/

A remote-code execution vulnerability in Windows Defender – a flaw that can be exploited by malicious .rar files to run malware on PCs – has been traced back to an open-source archiving tool Microsoft adopted for its own use.

[...] Apparently, Microsoft forked that version of unrar and incorporated the component into its operating system's antivirus engine. That forked code was then modified so that all signed integer variables were converted to unsigned variables, causing knock-on problems with mathematical comparisons. This in turn left the software vulnerable to memory corruption errors, which can crash the antivirus package or allow malicious code to potentially execute.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 2) by DECbot on Tuesday April 10 2018, @12:10AM (3 children)

    by DECbot (832) on Tuesday April 10 2018, @12:10AM (#664746) Journal

    I concur. It is absolutely possible that the person with the about-to-be-hurting foot kicked a person onto a table, which then catapulted a anvil into the air which then converted the about-to-be-hurting foot into a hurting foot. This again makes me wonder what the kicked-onto-the-table person said about the mother of person with the about-to-be-hurting foot prior to getting kicked onto a table. Was it truly the anvil that caused the hurting foot or the your-mother's-so-fat joke?

    --
    cats~$ sudo chown -R us /home/base
    Starting Score:    1  point
    Karma-Bonus Modifier   +1  

    Total Score:   2  
  • (Score: 0) by Anonymous Coward on Tuesday April 10 2018, @12:39AM (2 children)

    by Anonymous Coward on Tuesday April 10 2018, @12:39AM (#664755)

    Mr. Goldberg, [google.com] it's a shame that, early in your career, you didn't cross paths with William of Ockham. [google.com]

    -- OriginalOwner_ [soylentnews.org]

    • (Score: 0) by Anonymous Coward on Tuesday April 10 2018, @03:11PM (1 child)

      by Anonymous Coward on Tuesday April 10 2018, @03:11PM (#664978)

      Do not link to Google searches. Ever.

      • (Score: 0) by Anonymous Coward on Tuesday April 10 2018, @07:42PM

        by Anonymous Coward on Tuesday April 10 2018, @07:42PM (#665075)

        Feel free to feed the search string into the search engine of your choice.
        (Most folks will get the point by just hovering over the link.)

        ...and the S/N comments engine strips out things like %22 from links.
        Google's Verbatim Search end-runs that for phrases.
        Nobody else has that.

        When some other johnny-come-lately search engine has anything approximating what 20 year old Google has for syntax, I'll consider them a serious contender.

        ...and people who worry about privacy are already using a proxy|TOR.
        archive.is is a quickie equivalent.

        ...and, instead of whining like a little bitch, you could have offered alternative links.
        ...again, for those who didn't get the point by simply hovering over the link.

        -- OriginalOwner_ [soylentnews.org]