[Full-Disclosure] Allchin bug p-o-c.
Andrew.Berges at everestre.com
Andrew.Berges at everestre.com
Tue Oct 7 18:28:56 BST 2003
So how large of an impact are we looking at here for the average networked
environment? I don't see this service running on any of our servers here,
although the exe is most definitely there ... is this a subprocess that gets
spawned as necessary to allow applications to communicate with the OS?
Pardon my ignorance.
Regards,
Andrew Berges - Associate Manager, Systems
Everest Global Services
908.604.3020
andrew.berges at everestre.com
-----Original Message-----
From: Valdis.Kletnieks at vt.edu [mailto:Valdis.Kletnieks at vt.edu]
Sent: Tuesday, October 07, 2003 1:27 PM
To: Andrew.Berges at everestre.com
Cc: full-disclosure at lists.netsys.com
Subject: Re: [Full-Disclosure] Allchin bug p-o-c.
On Tue, 07 Oct 2003 11:02:13 EDT, Andrew.Berges at everestre.com said:
> Hi,
>
> I'm rather new to this list, and I think I may have missed some of the
> background on this - could someone bring me up to speed as to what is
> happening here?
Allchin said under oath that Microsoft didn't want to release the APIs,
because
some of them were so crufty that to release them would jeopardize national
security.
Ever since then, people have been looking for what API he was talking about.
Full-Disclosure is hosted and sponsored by Secunia.