Suing Over Slammer

Suing Over Slammer
Mark Rasch, 2003-02-10

The Slammer worm was successful because thousands of users didn't patch Microsoft's security holes. Should we sue them all?

Expand all | Post comment

Suing Over Slammer 2003-02-10
Anonymous

Liability and Buffer Overflows... 2003-02-10
Nicholas Weaver

One related question: Although a patch was available, buffer overflows have been a known problem for over 2 decades. It's like "We provided a fix for the bridge which you didn't deploy, but built it wrong in the first place", the engineering firm would still probably be sued into the ground for gross negligence.

Stack overflows are not only a known old problem, but easy to solve: Both Stackguard and Microsoft's "We invented it first 3 years later" reinvention should have stopped this attack cold.

At this point, do we get into "Known or should have known" negligence/malpractice on the part of Microsoft and their developers?

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/141/18068#18068

Suing Over Slammer - whom would you sue? 2003-02-10
Anonymous

Suing Over Slammer 2003-02-11
Anonymous (1 replies)

Suing Over Slammer 2003-02-11
Villy

Suing Over Slammer 2003-02-11
keydet89@yahoo.com

Is Microsoft legally responsible 2003-02-11
Sick and tired of the excuses (5 replies)

Is Microsoft legally responsible 2003-02-11
Villy.Madsen@atcoitek.com (1 replies)

Is Microsoft legally responsible 2003-02-12
Villy

Is Microsoft legally responsible 2003-02-12
RobJ (1 replies)

Is Microsoft legally responsible 2003-02-12
Sick and tired of the excuses (1 replies)

Is Microsoft legally responsible 2003-02-19
Anonymous

Is Microsoft legally responsible 2003-02-14
Anonymous

Is Microsoft legally responsible 2003-02-18
Anonymous

Fraudulent claims of loss 2003-02-11
Fra. 219