Hidden-code flaw in Windows renews worries over stealthly malware

Hidden-code flaw in Windows renews worries over stealthly malware
Robert Lemos, SecurityFocus 2005-08-31

A flaw in the way that several security programs and systems utilities detect system changes could allow spyware to spread surreptitiously and have renewed worries about stealthier attack code.

Expand all | Post comment

Please explain... 2005-08-31
Brian M. Thomas (5 replies)

Re: Please explain... 2005-08-31
Anonymous (1 replies)

My interpretation was that these programs are using standard windows APIs to detect what is going in/out of the Windows registry, and that the problem lies with how a certain API might deal with long strings in the registry. If that's true, then Microsoft can fix the underlying issue, and it will be automatically resolved for all the tools that are dependent on it. Can someone else confirm?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11300/32372#32372

All-Seeing Eye handles this trick without any problem 2005-09-07
Richard T. (1 replies)

Re: All-Seeing Eye handles this trick without any problem 2005-10-25
Anonymous (1 replies)

Re: Re: All-Seeing Eye handles this trick without any problem 2006-06-24
Anonymous

Re: Please explain... 2005-08-31
Anonymous (1 replies)

Re: Re: Please explain... 2005-09-02
Anonymous

Re: Please explain... 2005-08-31
Anonymous (1 replies)

Re: Re: Please explain... 2005-09-12
Anonymous

Re: Please explain... 2005-08-31
Anonymous

Re: Please explain... 2005-09-05
Anonymous

Hidden-code flaw in Windows renews worries over stealthly malware 2005-09-01
Anonymous (1 replies)

Re: Hidden-code flaw in Windows renews worries over stealthly malware 2005-09-07
Anonymous

Uhm you guys need to take a look at unix... 2005-09-04
x86

Flypaper? 2005-09-05
Anonymous (1 replies)

Re: Flypaper? 2005-09-08
Anonymous

About long named registry key... 2005-09-13
DgtlScrm