Slashdot stories can be listened to in audio form via an RSS feed, as read by our own robotic overlord.

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×
Windows

+ - Critical MS Vista/XP IGMP vulnerability 1

Submitted by
btellier
btellier writes "According to MS08-01: A remote code execution vulnerability exists in the Windows kernel due to the way that the Windows kernel handles TCP/IP structures storing the state of IGMPv3 and MLDv2 queries. Supported editions of Microsoft Windows XP, Windows Server 2003, and Windows Vista all support IGMPv3. An anonymous attacker could exploit the vulnerability by sending specially crafted IGMPv3 and MLDv2 packets to a computer over the network. An attacker who successfully exploited this vulnerability could take complete control of an affected system."
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Critical MS Vista/XP IGMP vulnerability

Comments Filter:
  • by teeks99 (849132)

    This is massive, in that this (TCP/IP - IGMP) is the core of how all computers communicate on the internet, everybody uses it. And it's remotely exploitable, in the "they're going to take over your PC" kind of way. This is the kind of stuff that makes worm authors salivate.

    Also, it impacts ALL versions of windows, the most popular (XP, Vista) the worst.

    Ouch.

It is not best to swap horses while crossing the river. -- Abraham Lincoln

Working...