According to this advisory written by Tavis Ormandy, Windows has been exposed to a vulnerability for over 15 years! Microsoft will only release a patch for supported products, so if you have any Windows 2000 or earlier in your lab, the only way to fix is disabling DOS and WOWEXEC.
Windows back-to-the-future bug
This entry was posted in Sysadmin and tagged microsoft, security, vulnerability, windows. Bookmark the permalink. Post a comment or leave a trackback: Trackback URL.