Re: Word Exploit and Word 97
From: B. Goodman (bmgoodman99@99bigfoot.com)
Date: 09/16/02
- Next message: B. Goodman: "Re: Does MS02-050 affect Win95?"
- Previous message: Gary Flynn: "Re: Does MS02-050 affect Win95?"
- In reply to: Mike Ward: "Word Exploit and Word 97"
- Next in thread: Ray: "Re: Word Exploit and Word 97"
- Reply: Ray: "Re: Word Exploit and Word 97"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "B. Goodman" <bmgoodman99@99bigfoot.com> Date: Mon, 16 Sep 2002 10:07:44 -0400
Frankly, I can't see what everybody is so worked up about. Microsoft should
offer no free hotfixes. Simply refer everybody to the "Ten Immutable Laws
of Security". One of these laws says that if bad guys can get you to run
their code on your computer, it is no longer your computer. Well, this Word
hole is a vulnerability only if the bad guy can get you to run it and RETURN
IT TO HIM. Ergo, MS has zero responsibility to correct this in any version
of word.
Solution: Never send or receive a Word document. Print all documents and
MAIL THEM using the U.S. Postal service. Thirty-seven cents buys you
complete protection from this flaw. Heck of a deal.
And those of you complaining about Word in the first place should consider
going to an IBM Selectric typewriter instead. Check EBay. And while you're
there, get some good used carbon paper as well. One caveat, though: Please
NEVER re-sell any carbon paper you have used. It has a MAJOR security
vulnerability. I will not detail it here until I get a response back from
Eaton as to their plans for fixing it.
Thanks!
B. Goodman
P.S. The entire post above was intended to be SARCASM, ok?
"Mike Ward" <mward80@hotmail.com> wrote in message
news:11fa001c25b20$29f490d0$35ef2ecf@TKMSFTNGXA11...
> From an Associated Press story:
>
> "Microsoft's flagship word processor has a security flaw
> that could allow the theft of computer files by 'bugging'
> a document with a hidden code, the company disclosed
> Thursday. It was exploring how to fix the problem and
> whether to extend the repair to an older version of the
> software still used by millions."
>
> ...the article goes on...
>
> "Word 97, an earlier version of the program, is most
> susceptible to the attack. But Word 97 will not be
> repaired because Microsoft no longer provides support for
> it, the company said."
>
> Hey, look...I know companies "sunset" programs at some
> point. But according to this article, about 30-plus
> percent of offices are *still using* Word 97. I don't
> expect UPGRADES or even ongoing tech support for my copy
> of Word 97...I haven't upgraded to 2000 or the XP version
> and haven't felt the need to do so. But...a flaw THIS
> SERIOUS should be patched and patched ASAP. We're not
> talking about Electric Pencil for the TRS-80 here, folks.
>
> I can't find any way to directly give feedback to
> Microsoft (they've disabled that part of the Web site for
> some reason), so here it goes. If there's anyone from
> Microsoft reading - and there should be, considering these
> are internal newsgroups - please pass this along to
> whomever needs to see it.
>
> Mike
- Next message: B. Goodman: "Re: Does MS02-050 affect Win95?"
- Previous message: Gary Flynn: "Re: Does MS02-050 affect Win95?"
- In reply to: Mike Ward: "Word Exploit and Word 97"
- Next in thread: Ray: "Re: Word Exploit and Word 97"
- Reply: Ray: "Re: Word Exploit and Word 97"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
