Microsoft slams F-Secure for Windows Vista virus report
A proof of concept virus security company F-Secure described as a "first Vista virus" doesn't affect the operating system at all, Microsoft had said.
The exploit that the security expert describes targets a new command shell technology called MSH that is currently under development under the codename Monad.
Contrary to what F-Secure suggested, MSH won't be part of Windows Vista, a spokeswoman for Microsoft told vnunet.com.
"The current plan is that Monad will not be included in the final version of Windows Vista. Monad is being considered for the Windows Operating System platform for the next three to five years," she said.
Instead, users will find "some of the technology" in the next version of Exchange that is due out in the second half of 2006, as we reported earlier. Microsoft hadn't previously given full disclosure about its plans not to include MSN in Vista.
The first operating system that possibly could be affected by MSH will be Longhorn server, not Windows Vista.
"It is a possibility that Monad’s timing could align with the update release to Longhorn Server, but it is too early to confirm that this will be the case," she said.
Longhorn Server is the next version for Windows Server 2003 and is scheduled for release in 2007.
MSH is a command-line shell tool that lets IT administrators manage as system. It is similar to the command shell in Unix, Linux and OS X.
A first beta of the technology was released in June. MSH isn't part of the Vista beta that was launched two weeks ago.
F-Secure in a blog posting on its website pointed to a proof of concept virus that an Austrian virus writer had developed. It has named the viruses Danom, using the reverse spelling of Monad.
Microsoft further undermined F-Secure's report by pointing out that the virus used a proven method to use command shells in all operating systems to launch a virus.
"The viruses do not attempt to exploit a software vulnerability and do not encompass a new method of attack," the spokeswoman said.
Backing up his company's official statement, a Microsoft developer by the name of Lee Holmes blased the report by F-Secure on his blog.
"It's a misleading title," Holmes said about F-Secure post, "as it's an issue that affects any vehicle for any executable code on any operating system."
In an email to vnunet.com, F-Secure's director of anti-virus research Mikko Hyppönen defended his original posting.
"I stand by my blog entry. Everything I wrote was accurate at the time of writing."
He confirmed that the method of attack isn't new, but the viruses still qualify as new because they target the new MSH platform.
"But I also understand Microsoft is concerned as these Danom viruses are now widely reported in the media as [the] first viruses for Windows Vista when, as we now know, MSH won't even ship with Vista," Hyppönen concluded.
The exploit that the security expert describes targets a new command shell technology called MSH that is currently under development under the codename Monad.
Contrary to what F-Secure suggested, MSH won't be part of Windows Vista, a spokeswoman for Microsoft told vnunet.com.
"The current plan is that Monad will not be included in the final version of Windows Vista. Monad is being considered for the Windows Operating System platform for the next three to five years," she said.
Instead, users will find "some of the technology" in the next version of Exchange that is due out in the second half of 2006, as we reported earlier. Microsoft hadn't previously given full disclosure about its plans not to include MSN in Vista.
The first operating system that possibly could be affected by MSH will be Longhorn server, not Windows Vista.
"It is a possibility that Monad’s timing could align with the update release to Longhorn Server, but it is too early to confirm that this will be the case," she said.
Longhorn Server is the next version for Windows Server 2003 and is scheduled for release in 2007.
MSH is a command-line shell tool that lets IT administrators manage as system. It is similar to the command shell in Unix, Linux and OS X.
A first beta of the technology was released in June. MSH isn't part of the Vista beta that was launched two weeks ago.
F-Secure in a blog posting on its website pointed to a proof of concept virus that an Austrian virus writer had developed. It has named the viruses Danom, using the reverse spelling of Monad.
Microsoft further undermined F-Secure's report by pointing out that the virus used a proven method to use command shells in all operating systems to launch a virus.
"The viruses do not attempt to exploit a software vulnerability and do not encompass a new method of attack," the spokeswoman said.
Backing up his company's official statement, a Microsoft developer by the name of Lee Holmes blased the report by F-Secure on his blog.
"It's a misleading title," Holmes said about F-Secure post, "as it's an issue that affects any vehicle for any executable code on any operating system."
In an email to vnunet.com, F-Secure's director of anti-virus research Mikko Hyppönen defended his original posting.
"I stand by my blog entry. Everything I wrote was accurate at the time of writing."
He confirmed that the method of attack isn't new, but the viruses still qualify as new because they target the new MSH platform.
"But I also understand Microsoft is concerned as these Danom viruses are now widely reported in the media as [the] first viruses for Windows Vista when, as we now know, MSH won't even ship with Vista," Hyppönen concluded.
Google for Related Stuff:
posted by sikandar at 11:31 AM
2 Comments:
If you are alone, call this number 800-211-9293. Connect with Real Singles from your local area instantly for only $0.99/min with a $4.99 connection fee. A true Match is only one phone call away 800-211-9293. Meet people with common interests and desires now. Check it out. 800-211-9293
Pretty good info. I have a free domain names
articles site. It pretty much covers everything I know about ##KEYWORD##.
Come and check it out if you get time :-)
Post a Comment
<< Home