[Full-disclosure] Unofficial Microsoft patches help hackers, not security
yahooinsider at gmail.com
Wed Jan 4 18:49:58 GMT 2006
>From my blog:
""[Unofficial patches are available, as is a leaked official patch]
[Unofficial patches are merely used by hackers as a tool to patch machines
they've compromised, to stop other hackers hacking the same machine,
although the machine is still accessable to the hacker.] [The consumer goes
along to Windows Update on Tuesday and doesn't think they need a patch,
because Microsoft tells them its not needed. Little does the consumer know
their machine was patched by a hacker, who now has control over their
It means the unofficial patch is as harmful as the vulnerability and exploit
code its self.
On 1/4/06, Niek <niek at asbak.coding-slaves.com> wrote:
> On 1/4/2006 7:33 PM +0100, Joe Average wrote:
> > ........ The majority of consumers aren't
> > getting your unofficial patches, but you can be sure the hackers are
> > them, and using them to their advantage.
> Yeah hackers are now using the unofficial patch to protect themselves!!!
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
-------------- next part --------------
An HTML attachment was scrubbed...
Full-Disclosure is hosted and sponsored by Secunia.