dslreports logo
 
    All Forums Hot Topics Gallery
spc
uniqs
76

ikarus1
Premium Member
join:2002-10-23
Urbanna, VA

1 edit

ikarus1 to sheepexplode

Premium Member

to sheepexplode

Re: Some things to ponder

said by sheepexplode:
said by ikarus1:


The alternative operating systems are in actual fact better operating systems and more secure by default than Microsofts systems.

Ikarus,

Ah the holy grail of security Linux! Maybe not....Let's be accurate when make the statement that Microsoft based OSes are less secure than your oh so holly RedHat...

RedHat has had in the recent years.Here is a sampling of the problems
»securityfocus.com/bid/vendor/


Goodness gracious... are you laying Ethereal's problems at Linux's doorstep. Would you have Linux be responsible for sendmail's software? Then I suppose it would be fair to lay Netscape's issues on Microsofts doorstep as well?

Don't compare apples to oranges, it makes you look like an idiot.

Now let us have a look at those which truly belong on Microsoft's doorstep. I will leave the exercise of going thru that list you posted and digging out the two or three which actually belong to Linux to you as an educational exercise... Mind you this list will only take you back to 2001... LoL I love it when someone who has forgotten that in the real world the browser is not part of the OS tries this kind of defense of Microsoft.

Onward:

2004-02-02: Multiple Browser URI Display Obfuscation Weakness
2004-02-02: Microsoft Internet Explorer BackToFramedJPU Cross-Domain Policy Vulnerability
2004-02-02: Microsoft Internet Explorer Window.MoveBy/Method Caching Mouse Click Event Hijacking Vulnerability
2004-01-29: Microsoft Windows Workstation Service Remote Buffer Overflow Vulnerability
2004-01-14: Multiple Vendor calloc() Implementation Integer Overflow Vulnerability
2004-01-12: Multiple Vendor Sun RPC xdr_array Buffer Overflow Vulnerability
2003-12-23: Microsoft Internet Explorer File Download Warning Bypass Vulnerability
2003-12-23: Microsoft Internet Explorer Browser MHTML Redirection Local File Parsing Vulnerability
2003-12-23: Microsoft Internet Explorer MHTML Forced File Execution Vulnerability
2003-12-16: Microsoft Windows Messenger Service Buffer Overrun Vulnerability
2003-12-16: Microsoft Outlook Web Access HTML Attachment Script Execution Vulnerability
2003-12-12: Multiple Vendor IKE Implementation Certificate Authenticity Verification Vulnerability
2003-12-11: Multiple Vendor XML DTD Parameter Entity SOAP Server Denial Of Service Vulnerability
2003-12-09: Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability
2003-12-09: Microsoft Roaming Profile Resource Quota Bypass Weakness
2003-12-09: Multiple Vendor XML Parser SOAP Server Denial Of Service Vulnerability
2003-11-27: Microsoft Exchange Server 2003 Outlook Web Access Lowered Security Settings Weakness
2003-11-26: Microsoft Internet Explorer Invalid ContentType Cache Directory Location Disclosure Weakness
2003-11-26: Microsoft Internet Explorer Double Slash Cache Zone Bypass Vulnerability
2003-11-25: Microsoft Visual Basic For Applications Document Handling Buffer Overrun Vulnerability
2003-11-25: Microsoft WordPerfect Converter Buffer Overrun Vulnerability
2003-11-25: Microsoft Word Macro Execution Security Model Bypass Vulnerability
2003-11-21: Microsoft Windows HTML Help API Privilege Escalation Vulnerability
2003-11-21: Microsoft Windows DNS Resource Record Cache Corruption Vulnerability
2003-11-21: Microsoft MSN Messenger Information Leakage Weakness
2003-11-19: Microsoft UPnP NOTIFY Buffer Overflow Vulnerability
2003-11-17: Multiple Microsoft Internet Explorer Script Execution Vulnerabilities
2003-11-17: Microsoft Internet Explorer ExecCommand Cross-Domain Access Violation Vulnerability
2003-11-17: Microsoft Internet Explorer Function Pointer Override Cross-Domain Access Violation Vulnerability
2003-11-17: Microsoft Internet Explorer Script URL Cross-Domain Access Violation Vulnerability
2003-11-14: Microsoft ASP.NET Request Validation Null Byte Filter Bypass Vulnerability
2003-11-13: Microsoft FrontPage Server Extensions Remote Debug Buffer Overrun Vulnerability
2003-11-13: Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability
2003-11-11: Multiple Vendor Invalid X.509 Certificate Chain Vulnerability
2003-11-11: Microsoft Internet Explorer XML Object Zone Restriction Bypass Vulnerability
2003-11-11: Microsoft Word Macro Name Handler Buffer Overflow Vulnerability
2003-11-11: Microsoft FrontPage Server Extensions SmartHTML Interpreter DoS Vulnerability
2003-11-11: Microsoft Internet Explorer DHTML Drag and Drop Local File Saving Vulnerability
2003-11-11: Microsoft Excel XLM Macro Security Level Bypass Vulnerability
2003-11-08: Microsoft Internet Explorer Self Executing HTML Arbitrary Code Execution Vulnerability
2003-11-05: Microsoft Internet Explorer JavaScript Local File Enumeration Vulnerability
2003-11-05: Microsoft Internet Explorer Local Resource Reference Vulnerability
2003-10-30: Microsoft Windows 2000 TroubleShooter ActiveX Control Buffer Overflow Vulnerability
2003-10-23: Microsoft Windows Window Message Subsystem Design Error Vulnerability
2003-10-23: Microsoft Exchange Server 5.5 Outlook Web Access Cross-Site Scripting Vulnerability
2003-10-23: Microsoft Windows Help And Support Center URI Handler Buffer Overflow Vulnerability
2003-10-23: Microsoft ActiveX Authenticode Verification Bypass Vulnerability
2003-10-22: Microsoft Internet Explorer Scrollbar-Base-Color Partial Denial Of Service Vulnerability
2003-10-22: Microsoft Exchange Server Buffer Overflow Vulnerability
2003-10-14: Microsoft Windows RPCSS Multi-thread Race Condition Vulnerability
2003-10-10: Microsoft RPCSS DCOM Interface Long Filename Heap Corruption Vulnerability
2003-10-09: Microsoft Windows Media Player IE Zone Access Control Bypass Vulnerability
2003-10-09: Microsoft Windows Media Player Automatic File Download and Execution Vulnerability
2003-10-09: Microsoft RPCSS DCERPC DCOM Object Activation Packet Length Heap Corruption Vulnerability
2003-10-08: Microsoft Internet Explorer XML Page Object Type Validation Vulnerability
2003-10-08: Microsoft Internet Explorer %USERPROFILE% File Execution Weakness
2003-10-07: Microsoft Windows Message Queuing Service Heap Overflow Vulnerability
2003-10-04: Microsoft Internet Explorer Absolute Position Block Denial Of Service Vulnerability
2003-10-04: Microsoft Internet Explorer Browser Popup Window Object Type Validation Vulnerability
2003-10-03: Microsoft Word Malformed Document Denial of Service Vulnerability
2003-10-02: Microsoft Windows PostThreadMessage() Arbitrary Process Killing Vulnerability
2003-09-19: Microsoft BizTalk Server Documentation/WebDAV Weak Permissions Vulnerability
2003-09-17: Microsoft Windows XP TCP Packet Information Leakage Vulnerability
2003-09-15: Microsoft Exchange Server SMTP HELO Argument Buffer Overflow Vulnerability
2003-09-11: Multiple Microsoft Windows 2003 Stack Protection Implementation Weaknesses
2003-09-11: Microsoft Windows RPCSS DCOM Interface Denial of Service Vulnerability
2003-09-05: Microsoft Windows 98 Fragmented UDP Flood Denial Of Service Vulnerability
2003-09-03: Microsoft Access Snapshot Viewer ActiveX Control Parameter Buffer Overflow Vulnerability
2003-09-03: Microsoft Windows NetBIOS Name Service Reply Information Leakage Weakness
2003-09-02: Microsoft mshtml.dll Library GIF Image Handling Denial of Service Vulnerability
2003-09-02: Microsoft Internet Explorer Object Type Validation Vulnerability
2003-08-26: Microsoft Internet Explorer BR549.DLL ActiveX Control Buffer Overflow Vulnerability
2003-08-26: Microsoft Internet Explorer Zone Restriction Bypass Script Execution Vulnerability
2003-08-26: Microsoft Internet Explorer OBJECT Tag Buffer Overflow Vulnerability
2003-08-21: Microsoft Data Access Components ODBC Buffer Overflow Vulnerability
2003-08-20: Microsoft DirectShow MIDI Filetype Buffer Overflow Vulnerability
2003-08-20: Microsoft Data Access Components Buffer Overflow Vulnerability
2003-08-19: Microsoft Windows ntdll.dll Buffer Overflow Vulnerability
2003-08-14: Microsoft URLScan / RSA Security SecurID Configuration Enumeration Weakness
2003-08-13: Microsoft Windows NT File Management Function Denial Of Service Vulnerability
2003-08-13: Microsoft MCIWNDX.OCX ActiveX Control Buffer Overflow Vulnerability
2003-08-11: Microsoft Windows 2000 Subnet Bandwidth Manager RSVP Server Authority Hijacking Vulnerability
2003-08-04: Microsoft Internet Explorer Self Executing HTML File Vulnerability
2003-07-29: Microsoft Internet Explorer CLASSID Denial of Service Vulnerability
2003-07-29: Microsoft Internet Explorer CLASSID Variant Denial Of Service Vulnerability
2003-07-25: Microsoft Outlook Express Script Execution Weakness
2003-07-25: Multiple Vendor SNMP Request Handling Vulnerabilities
2003-07-25: Microsoft SQL Server / MSDE Named Pipes Privilege Escalation Vulnerability
2003-07-25: Microsoft SQL Server LPC Port Request Buffer Overflow Vulnerability
2003-07-25: Microsoft SQL Server / MSDE Named Pipe Denial Of Service Vulnerability
2003-07-25: Microsoft SQL Server / MSDE Multiple Vulnerabilities
2003-07-22: Microsoft Multiple IIS 6.0 Web Admin Vulnerabilities
2003-07-19: Microsoft ISA Server Cross-Site Scripting Vulnerabilities
2003-07-18: Microsoft Windows Media Services NSIISlog.DLL Remote Buffer Overflow Vulnerability
2003-07-17: Microsoft MSN Messenger Image File Transfer Denial of Service Vulnerability
2003-07-16: Microsoft Windows XP Shell Desktop.ini Buffer Overflow Vulnerability
2003-07-15: Microsoft Windows CreateFile API Named Pipe Privilege Escalation Vulnerability
2003-07-15: Microsoft SMTP Service Invalid FILETIME Denial of Service Vulnerability
2003-07-15: Microsoft SQL Server JET Database Engine 4.0 Buffer Overrun Vulnerability
2003-07-14: Microsoft Windows HTML Converter HR Align Buffer Overflow Vulnerability
2003-07-14: Microsoft Internet Explorer window.createPopup Interface Spoofing Vulnerability
2003-07-13: Microsoft Internet Explorer AutoScan Method Browser Security Policy Violation Weakness
2003-07-09: Microsoft SMB Request Handler Buffer Overflow Vulnerability
2003-07-09: Microsoft Windows Accessibility Utility Manager Privilege Escalation Vulnerability
2003-07-07: Microsoft Windows MS DOS Device Name DoS Vulnerability
2003-07-07: Microsoft Internet Explorer Custom HTTP Error HTML Injection Vulnerability
2003-07-06: Microsoft RunDLL32.EXE Buffer Overflow Vulnerability
2003-07-04: Microsoft Windows 2000 Unspecified Cryptnet.DLL Memory Leakage Vulnerability
2003-07-04: Microsoft Windows 2000 Unauthorized RPC Connection Weakness
2003-07-04: Microsoft Windows Terminal Service Kerberos Double Authorization Data Entry Vulnerability
2003-07-04: Microsoft Windows 2000 Terminal Services Named Pipe System Account Access Vulnerability
2003-07-04: Microsoft Windows 2000 ModifyDN Request Denial of Service Vulnerability
2003-07-04: Microsoft Windows 2000 Domain Controller Spoofing Vulnerability
2003-07-04: Microsoft Windows 2000 Port Name Buffers Potential Buffer Overflow Vulnerability
2003-07-04: Microsoft Windows 2000 USBH_IoctlGetNodeConnectionDriverKeyName Information Disclosure Vulnerability
2003-07-04: Microsoft Windows Security Accounts Manager API Denial Of Service Vulnerability
2003-07-04: Microsoft Windows IMAADPCM cbDestLength Buffer Overrun Vulnerability
2003-07-04: Microsoft Windows 2000 Active Directory Forest Origin Validation Vulnerability
2003-07-04: Microsoft IIS _VTI_BOT Malicious WebBot Elevated Permissions Vulnerability
2003-07-03: Microsoft URLScan Tool Information Disclosure Vulnerability
2003-07-03: Microsoft Windows 2000 ShellExecute() Buffer Overflow Vulnerability
2003-07-02: Microsoft Media Player 9 Unauthorized Media Library Access Vulnerability
2003-07-02: Microsoft Windows 2000 Active Directory Remote Stack Overflow Vulnerability
2003-07-02: Microsoft NetMeeting Directory Traversal Vulnerability
2003-07-02: Microsoft Internet Explorer Remote URLMON.DLL Buffer Overflow Vulnerability
2003-06-30: Microsoft Commerce Server 2002 Weak Registry Key Permissions Weakness
2003-06-26: Microsoft Windows 2000 SP4 Released - Multiple Vulnerabilities Fixed
2003-06-17: Microsoft Internet Explorer MSXML XML File Parsing Cross-Site Scripting Vulnerability
2003-06-16: Microsoft SQL Server 2000 Resolution Service Stack Overflow Vulnerability
2003-06-16: Microsoft SQL Server 2000 Resolution Service Heap Overflow Vulnerability
2003-06-09: Microsoft Windows FIN-ACK Network Device Driver Frame Padding Information Disclosure Vulnerability
2003-06-04: Microsoft Internet Explorer Classic Mode FTP Client Cross Domain Scripting Vulnerability
2003-06-04: Internet Explorer file:// Request Zone Bypass Vulnerability
2003-06-04: Microsoft SQL MS Jet Engine Unicode Buffer Overflow Vulnerability
2003-06-03: Microsoft IIS WebDAV PROPFIND and SEARCH Method Denial of Service Vulnerability
2003-06-02: Microsoft Windows 2000/XP/2003 IPV6 ICMP Flood Denial Of Service Vulnerability
2003-06-02: Microsoft Windows XP Nested Directory Denial of Service Vulnerability
2003-06-02: Microsoft Windows RPC Service Denial of Service Vulnerability
2003-06-01: Multiple IMAP Client Integer Overflow Vulnerabilities
2003-05-31: Microsoft URLScan Information Disclosure Weakness
2003-05-31: Microsoft Windows Media Services Logging ISAPI Buffer Overflow Vulnerability
2003-05-30: Microsoft Internet Explorer False URL Information Vulnerability
2003-05-30: Microsoft IIS SSINC.DLL Server Side Includes Buffer Overflow Vulnerability
2003-05-29: Microsoft Windows Kernel Message Handling Buffer Overflow Vulnerability
2003-05-28: Microsoft IIS ASP Header Denial Of Service Vulnerability
2003-05-28: Microsoft IIS Redirection Error Page Cross-Site Scripting Vulnerability
2003-05-28: Microsoft Internet Information Service Multiple Vulnerabilities
2003-05-27: Microsoft Internet Explorer Malformed JavaScript Denial of Service Vulnerability
2003-05-22: Microsoft Internet Connection Firewall IPv6 Traffic Blocking Vulnerability
2003-05-21: Microsoft Netmeeting CALLTO URL Buffer Overflow Vulnerability
2003-05-17: Microsoft ISA Server Error Page Cross-Site Scripting Vulnerability
2003-05-14: Microsoft Windows NT RPC Endpoint Mapper Denial of Service Vulnerability
2003-05-08: Microsoft Windows Media Player Skin File Code Execution Vulnerability
2003-05-07: Microsoft IIS WebDAV Denial Of Service Vulnerability
2003-05-05: Microsoft Internet Explorer DHTML AnchorClick Partial Denial Of Service Vulnerability
2003-05-05: Microsoft BizTalk Server DTA Interface SQL Injection Vulnerability
2003-05-05: Microsoft BizTalk Server 2002 HTTP Receiver Buffer Overflow Vulnerability
2003-05-03: Microsoft MN-500 Plaintext Password Disclosure Weakness
2003-05-03: Microsoft IIS User Existence Disclosure Vulnerability
2003-05-02: Microsoft Internet Explorer Plugin.OCX EnableFullPage Input Validation Vulnerability
2003-05-02: Microsoft Internet Explorer Plugin.OCX Load() Method Buffer Overflow Vulnerability
2003-05-01: Microsoft Windows Media Player File Attachment Script Execution Vulnerability
2003-04-30: Microsoft Windows NetDDE Privilege Escalation Vulnerability
2003-04-30: Multiple Name Server NXDomain Denial Of Service Vulnerability
2003-04-28: Microsoft Windows RegEdit.EXE Registry Key Value Buffer Overflow Vulnerability
2003-04-25: Microsoft Windows SMB NTLM Authentication Interception Weakness
2003-04-23: Microsoft Internet Explorer dragDrop Method Local File Reading Vulnerability
2003-04-23: Microsoft Internet Explorer Dialog Style Same Origin Policy Bypass Vulnerability
2003-04-23: Microsoft Outlook Express MHTML URL Handler File Rendering Vulnerability
2003-04-23: Microsoft Shlwapi.dll Malformed HTML Form Tag Denial of Service Vulnerability
2003-04-21: Microsoft Internet Explorer Self-Referential Object Denial of Service Vulnerability
2003-04-20: Microsoft Windows Service Control Manager Race Condition Vulnerability
2003-04-15: Microsoft Windows 2000/XP Registry Editor Custom Permissions Weakness
2003-04-15: Microsoft Windows EngTextOut Non-ASCII Character Denial Of Service Vulnerability
2003-04-11: Multiple Vendor SNMP Trap Handling Vulnerabilities
2003-04-11: Microsoft Windows Active Directory Policy Bypass Vulnerability
2003-04-10: Microsoft Windows Remote Desktop Protocol Server Key Verification Vulnerability
2003-04-10: Microsoft Indexing Services .htw Cross-Site Scripting Vulnerability
2003-04-09: Microsoft Winsock Proxy Service Remote Denial Of Service Vulnerability
2003-04-09: Microsoft Java Virtual Machine Bytecode Verifier Vulnerability
2003-04-03: Microsoft Windows Locator Service Buffer Overflow Vulnerability
2003-03-27: Microsoft Windows XP Redirector Privilege Escalation Vulnerability
2003-03-24: Multiple Vendor FTP pipe Vulnerability
2003-03-20: Microsoft ActiveSync Null Pointer Dereference Denial Of Service Vulnerability
2003-03-20: Microsoft Windows Script Engine JScript.DLL Heap Overflow Vulnerability
2003-03-19: Microsoft ISA Server DNS Intrusion Filter Denial of Service Vulnerability
2003-03-14: Microsoft Windows 2000 Help Facility .CNT File :Link Buffer Overflow Vulnerability
2003-03-14: Microsoft Windows PostMessage API Unmasked Password Weakness
2003-03-12: Microsoft Internet Explorer .MHT File Buffer Overflow Vulnerability
2003-03-12: Multiple Vendor 802.11b Authentication-Failed Denial Of Service Vulnerability
2003-03-10: Microsoft Windows Help and Support Center Buffer Overflow Vulnerability
2003-03-07: Microsoft Windows XP Safe Mode Policy Bypass Weakness
2003-02-28: Microsoft Outlook and Outlook Express Arbitrary Program Execution Vulnerability
2003-02-24: Windows NT DNS Resolution Remote Buffer Overflow Vulnerability
2003-02-21: Microsoft Riched20.dll Attribute Buffer Overflow Vulnerability
2003-02-14: Multiple Vendor gethostbyname() Buffer Overflow Vulnerability
2003-02-13: Microsoft Internet Explorer ShowHelp Arbitrary Command Execution Vulnerability
2003-02-13: Microsoft Internet Explorer Dialog Box Cross-Domain Violation Vulnerability
2003-02-12: Microsoft Exchange Server 5.5 IMAP NOOP Denial of Service Vulnerability
2003-02-12: Microsoft Windows Remote Registry Modification Weakness
2003-02-12: Multiple Vendor Spoofed IGMP Report Denial Of Service Vulnerability
2003-02-12: Multiple Vendor TCP Initial Sequence Number Statistical Vulnerability
2003-02-12: Multiple Vendor Small TCP MSS Denial of Service Vulnerability
2003-02-11: Windows NT Xenroll Library Storage Consumption Vulnerability
2003-02-11: Microsoft Windows NT/2000 cmd.exe CD Buffer Overflow Vulnerability
2003-02-10: Multiple Vendor Email Client JavaScript Information Leakage Vulnerability
2003-02-10: Multiple Vendor HTTP CONNECT TCP Tunnel Vulnerability
2003-02-10: Microsoft Windows NT/2000/XP LAN Manager Password Hashing Weakness
2003-02-07: Microsoft Windows XP HCP URI Buffer Overflow Vulnerability
2003-02-07: Microsoft IIS False Logging Weakness
2003-02-06: Microsoft IIS Malformed HTTP Get Request Denial Of Service Vulnerability
2003-02-06: Microsoft Windows Network Monitor Weak Password Encryption Vulnerability
2003-02-04: Microsoft Windows 2000 RPC Service Privilege Escalation Vulnerability
2003-02-04: Microsoft Windows 2000 NetBIOS Continuation Packets Kernel Memory Leak Vulnerability
2003-02-04: Microsoft Windows NT Win32k.sys Denial of Service Vulnerability
2003-02-01: Microsoft SQL Server 7.0/2000 DBCC Buffer Overflow Vulnerability
2003-02-01: Microsoft SQL Agent Jobs Privilege Elevation Vulnerability
2003-02-01: Microsoft SQL Server User Authentication Remote Buffer Overflow Vulnerability
2003-02-01: Microsoft SQL Server Extended Stored Procedure Privilege Elevation Vulnerability
2003-01-29: Microsoft Outlook Express S/MIME Buffer Overflow Vulnerability
2003-01-27: Microsoft SQL Server Web Task Stored Procedure Privilege Escalation Vulnerability
2003-01-25: Microsoft SQL Server 2000 Bulk Insert Procedure Buffer Overflow Vulnerability
2003-01-24: Microsoft Windows MSGINA.DLL Read-Lock Denial Of Service Vulnerability
2003-01-23: Microsoft Windows SMB Signing Vulnerability
2003-01-22: Microsoft Outlook 2002 V1 Exchange Server Security Certificate Information Leakage Vulnerability
2003-01-22: Microsoft Content Management Server Cross-Site Scripting Vulnerability
2003-01-16: Microsoft Windows Fontview Denial of Service Vulnerability
2003-01-13: Microsoft Windows 2000 Lanman Denial of Service Vulnerability
2003-01-10: Multiple Vendor Java Virtual Machine Bytecode Verifier Vulnerability
2003-01-03: Microsoft Pocket Internet Explorer Denial Of Service Vulnerability
2002-12-30: Microsoft Visual SourceSafe Client-Side Access Control Weakness
2002-12-27: Microsoft Windows File Protection Signed File Replacement Vulnerability
2002-12-27: Microsoft Windows File Protection Code-Signing Verification Weakness
2002-12-26: Microsoft Internet Explorer Multimedia Page Cross-Site Scripting Vulnerability
2002-12-18: Microsoft Windows XP WMA/MP3 Attributes Buffer Overrun Vulnerability
2002-12-12: Microsoft Java Virtual Machine Java Object Instantiation Denial Of Service Vulnerability
2002-12-12: Microsoft Java Virtual Machine Standard Security Manager Access Validation Vulnerability
2002-12-12: Microsoft Java Virtual Machine user.dir Access Information Disclosure Vulnerability
2002-12-12: Microsoft Java Virtual Machine JDBC API Access Vulnerability
2002-12-12: Microsoft Java Virtual Machine URL Parsing Vulnerability
2002-12-12: Microsoft Java Virtual Machine CODEBASE Parameter File Disclosure Vulnerability
2002-12-12: Microsoft Java Virtual Machine COM Object Access Validation Vulnerability
2002-12-12: Microsoft Internet Explorer PNG Deflate Heap Corruption Vulnerability
2002-12-12: Microsoft Java Virtual Machine Multiple Vulnerabilities
2002-12-04: Microsoft Outlook 2002 Email Header Processing Denial of Service Vulnerability
2002-12-04: Multiple Microsoft Internet Explorer Cached Objects Zone Bypass Vulnerability
2002-11-29: Microsoft Internet Explorer UserData Insecure Default Configuration Vulnerability
2002-11-29: Microsoft Windows XP Fast User Switching Process Viewing Weakness
2002-11-22: Microsoft Data Access Components RDS Buffer Overflow Vulnerability
2002-11-21: Microsoft Internet Explorer Object Tag Temporary Internet File Folder Vulnerability
2002-11-21: Microsoft Internet Explorer IFrame/Frame Cross-Site/Zone Script Execution Vulnerability
2002-11-21: Microsoft Internet Explorer HTML Same Origin Policy Violation Vulnerability
2002-11-21: Microsoft Internet Explorer PNG Buffer Overflow Vulnerability
2002-11-19: Microsoft Internet Explorer IFRAME dialogArguments Cross-Zone Access Vulnerability
2002-11-08: Microsoft JVM INativeServices Unauthorized Memory Access Vulnerability
2002-11-08: Microsoft JVM URI Parsing Vulnerability
2002-11-08: Microsoft JVM HTML Applet Tag Class Restriction Bypass Vulnerability
2002-11-08: Microsoft JVM Information Disclosure Vulnerability
2002-11-08: Microsoft JVM CAB File Loading Vulnerability
2002-11-08: Microsoft JVM Package Access Restriction Bypassing Vulnerability
2002-11-08: Microsoft JVM Unauthorized Clipboard Access Vulnerability
2002-11-08: Microsoft JVM Codebase Information Disclosure Vulnerability
2002-11-08: Microsoft JVM Class Loader Buffer Overrun Vulnerability
2002-11-08: Microsoft JVM Passed HTML Object Reference Denial Of Service Vulnerability
2002-11-06: Microsoft Internet Explorer Document Reference Zone Bypass Vulnerability
2002-11-05: Microsoft IIS Administrative Pages Cross Site Scripting Vulnerabilities
2002-11-04: Microsoft IIS Out Of Process Privilege Escalation Vulnerability
2002-11-02: Microsoft SQL Server Login Weak Authentication Mechanism
2002-10-31: Microsoft IIS Script Source Access File Upload Vulnerability
2002-10-31: Multiple Microsoft IIS Vulnerabilities
2002-10-31: Microsoft Windows 2000 / NT Path Precedence Vulnerability
2002-10-25: Microsoft Word / Excel INCLUDETEXT Document Sharing File Disclosure Vulnerability
2002-10-22: Microsoft Windows 2000 SNMP Printer Query Denial of Service Vulnerability
2002-10-21: Microsoft Internet Explorer Document.Write() Zone Bypass Vulnerability
2002-10-18: Windows Media Player For Solaris Default World Writeable Permissions Vulnerability
2002-10-17: Microsoft Windows XP HCP URI Handler Abuse Vulnerability
2002-10-16: Multiple Vendor ZIP Files Long Filename Buffer Overflow Vulnerability
2002-10-15: Microsoft Windows 2000/XP Full Event Log Administrative Alert Weakness
2002-10-15: Microsoft Internet Explorer Unauthorized Document Object Model Access Vulnerability
2002-10-11: Microsoft TSAC ActiveX Control Cross Site Scripting Vulnerability
2002-10-11: Microsoft Windows Help Facility ActiveX Control Buffer Overflow Vulnerability
2002-10-09: Microsoft Content Management Server 2001 Cross-Site Scripting Vulnerability
2002-10-07: Microsoft IIS Malformed HTTP HOST Header Field Denial Of Service Vulnerability
2002-10-05: Microsoft IIS IDC Extension Cross Site Scripting Vulnerability
2002-10-04: Microsoft Windows XP System Restore Folder Permissions Weakness
2002-10-03: Microsoft Invalid RPC Request Denial Of Service Vulnerability
2002-10-03: Microsoft Malformed RPC Packet Buffer Overflow Vulnerability
2002-10-03: Microsoft Compressed Folders Hostile Decompression Path Vulnerability
2002-10-03: Microsoft Temporary Internet File Execution Vulnerability
2002-10-03: Microsoft Windows 98/ME/XP File Decompression Vulnerabilities
2002-10-03: Microsoft Windows Help Facilities Vulnerabilities
2002-10-03: Multiple Microsoft Services for Unix 3.0 Interix SDK Vulnerabilities
2002-09-26: Microsoft PPTP Server Buffer Overflow Vulnerability
2002-09-25: Microsoft FrontPage Server Extensions SmartHTML Buffer Overflow Vulnerability
2002-09-23: Microsoft Internet Explorer SSL Certificate Expiration Vulnerability
2002-09-23: Microsoft Virtual Machine Unauthorized ODBC Data Access Vulnerability
2002-09-23: Microsoft Virtual Machine Handle Validation Vulnerability
2002-09-23: Microsoft Virtual Machine Exposure Of XML Supported Methods Vulnerability
2002-09-23: Microsoft Virtual Machine JDBC Class Code Execution Vulnerability
2002-09-20: Microsoft Word INCLUDEPICTURE Document Sharing File Disclosure Vulnerability
2002-09-19: Microsoft Virtual Machine Multiple JDBC Vulnerabilities
2002-09-19: Microsoft Windows XP Professional Remote Desktop Denial Of Service Vulnerability
2002-09-19: Microsoft Windows RDP Keystroke Injection Vulnerability
2002-09-19: Microsoft Windows Encrypted RDP Packet Information Leakage Vulnerability
2002-09-18: Windows 2000/NT/XP 16-bit Application Permission Bypass Vulnerability
2002-09-18: Microsoft Network Share Provider SMB Request Buffer Overflow Vulnerability
2002-09-17: Microsoft Internet Explorer URI Handler Restriction Circumvention Vulnerability
2002-09-16: Microsoft Netmeeting Local Session Hijacking Vulnerability
2002-09-10: Microsoft Internet Explorer Cascading Style Sheet File Disclosure Vulnerability
2002-09-10: Microsoft Internet Explorer DYNSRC File Information Disclosure Vulnerability
2002-09-09: Alleged Outlook Express Link Denial of Service Vulnerability
2002-09-09: Multiple Microsoft JVM Vulnerabilities
2002-09-04: Microsoft IIS Chunked Encoding Transfer Heap Overflow Vulnerability
2002-09-04: Microsoft SQL Server Stored Procedure Low Privilege Weakness
2002-09-04: Microsoft Visual FoxPro 6.0 Automatic Application Execution Vulnerability
2002-08-30: Microsoft MSDE/SQL Server 2000 Desktop Engine Default Configuration Vulnerability
2002-08-29: Multiple Vendor Java Virtual Machine Session Hijacking Vulnerability
2002-08-29: Microsoft ActiveX Certificate Enrollment Control Certificate Destruction Vulnerability
2002-08-28: Microsoft TSAC ActiveX Control Buffer Overflow Vulnerability
2002-08-27: Microsoft Internet Explorer XMLHTTP File Disclosure Vulnerability
2002-08-26: Microsoft Internet Explorer Dialog Same Origin Policy Bypass Variant Vulnerability
2002-08-26: Microsoft Internet Explorer Legacy Text Formatting ActiveX Component Buffer Overflow Vulnerability
2002-08-23: Microsoft Internet Explorer XML Redirect File Disclosure Vulnerability
2002-08-23: Microsoft Internet Explorer Download Dialogue File Source Obfuscation Vulnerability
2002-08-23: Microsoft Internet Explorer OBJECT Tag Same Origin Policy Violation Vulnerability
2002-08-23: Multiple Microsoft Product Gopher Client Buffer Overflow Vulnerability
2002-08-23: Microsoft SQL Server 2000 sp_MScopyscript SQL Injection Vulnerability
2002-08-23: Multiple Microsoft Internet Explorer Vulnerabilities
2002-08-21: Microsoft Office Web Components Local File Read Vulnerability
2002-08-21: Microsoft Office Web Components Chart Local File Existence Disclosure Vulnerability
2002-08-21: Microsoft Office Web Components Active Script Execution Vulnerability
2002-08-21: Microsoft Office Web Components Clipboard Information Disclosure Vulnerability
2002-08-21: Microsoft Terminal Services Inactive Console Screensaver Lock Failure Weakness
2002-08-21: Microsoft SQL Server 2000 Database Consistency Checkers Buffer Overflow Vulnerability
2002-08-20: Microsoft Internet Explorer Cookie Content Disclosure Vulnerability
2002-08-19: Microsoft File Transfer Manager Arbitrary File Upload/Download Vulnerability
2002-08-19: Microsoft File Transfer Manager ActiveX Control Buffer Overflow Vulnerability
2002-08-19: Microsoft Windows WinHlp Item Buffer Overflow Vulnerability
2002-08-18: Microsoft Internet Explorer Java Logging Executable Code Vulnerability
2002-08-17: Microsoft Internet Explorer XML Datasource Applet File Disclosure Vulnerability
2002-08-16: Microsoft DirectX Files Viewer ActiveX Control Remote Buffer Overflow Vulnerability
2002-08-16: Microsoft Windows NTFS Incorrect Hard Link Auditing Vulnerability
2002-08-15: Microsoft Windows 2000 Network Connection Manager Privilege Elevation Vulnerability
2002-08-13: Microsoft Internet Explorer File Attachment Script Execution Vulnerability
2002-08-07: Microsoft Content Management Server 2001 Arbitrary Upload Location Vulnerability
2002-08-07: Microsoft Content Management Server 2001 SQL Injection Vulnerability
2002-08-07: Microsoft Content Management Server 2001 User Authentication Buffer Overflow Vulnerability
2002-08-06: Microsoft Windows 2000 Insecure Default File Permissions Vulnerability
2002-08-06: Microsoft Exchange 2000 Multiple MSRPC Denial Of Service Vulnerabilities
2002-08-06: Microsoft Exchange 2000 Post Authorization License Exhaustion Denial Of Service Vulnerability
2002-08-01: Microsoft Windows Terminal Services Denial Of Service Vulnerability
2002-07-31: Microsoft Office XP/Internet Explorer OWC File Creation Vulnerability
2002-07-30: Microsoft Windows Media Player Filename Buffer Overflow Vulnerability
2002-07-30: Microsoft SQL Server Multiple Extended Stored Procedure Buffer Overflow Vulnerabilities
2002-07-30: Microsoft SQL Server 2000 Incorrect Registry Key Permissions Vulnerability
2002-07-29: Multiple Browser Vendor Same Origin Policy Design Error Vulnerability
2002-07-29: Microsoft Outlook Express XML File Attachment Script Execution Vulnerability
2002-07-25: Windows Media Player IE Cache Path Disclosure Vulnerability
2002-07-25: Microsoft Metadirectory Services Remote LDAP Client Administration Vulnerability
2002-07-25: Microsoft SQL Server 2000 Resolution Service Denial of Service Vulnerability
2002-07-25: Microsoft Exchange Server IMC EHLO Response Buffer Overflow Vulnerability
2002-07-24: Multiple Vendor Web Browser JavaScript Modifier Keypress Event Subversion Vulnerability
2002-07-21: Microsoft Outlook Express Spoofable File Extensions Vulnerability
2002-07-19: Microsoft Outlook Express SMTP Over TLS Information Disclosure Vulnerability
2002-07-17: Microsoft Windows 2000 Narrator Password Disclosure Vulnerability
2002-07-13: Microsoft Foundation Class Library ISAPI Buffer Overflow Vulnerability
2002-07-12: Microsoft IIS SMTP Service Encapsulated SMTP Address Vulnerability
2002-07-11: Microsoft MS-SQL Server Installation Password Caching Vulnerability
2002-07-03: Microsoft Windows 2000 Remote Access Service Buffer Overflow Vulnerability
2002-06-27: Microsoft Commerce Server 2000 Profile Service Buffer Overflow Vulnerability
2002-06-27: Microsoft Commerce Server OWC Package Installer Buffer Overflow Vulnerability
2002-06-27: Microsoft Commerce Server ISAPI Buffer Overflow Variation Vulnerability
2002-06-27: Microsoft Commerce Server 2000 OWC Package Installer Local Command Execution Vulnerability
2002-06-27: Windows Media Player Playlist HTML Script Execution Vulnerability
2002-06-27: Windows Media Player WMDM Privilege Escalation Vulnerability
2002-06-21: Microsoft IIS HTR Chunked Encoding Transfer Heap Overflow Vulnerability
2002-06-19: Microsoft Excel XML Stylesheet Arbitrary Code Execution Vulnerability
2002-06-19: Microsoft Excel Embedded Object Inline Macro Execution Vulnerability
2002-06-19: Microsoft Excel Drawing Shape Hyperlink Macro Execution Vulnerability
2002-06-19: Microsoft Word Mail Merge Code Execution HTML File Variant Vulnerability
2002-06-15: Multiple Vendor loopback (land.c) Denial of Service Vulnerability
2002-06-15: Microsoft Internet Explorer CSSText Bold Font Denial Of Service Vulnerability
2002-06-14: Microsoft SQL Server 2000 Password Encrypt Procedure Buffer Overflow Vulnerability
2002-06-14: Microsoft Visual Studio .NET Korean Version Nimda Infected File Vulnerability
2002-06-13: Microsoft SQL Server SQLXML Buffer Overflow Vulnerability
2002-06-13: Microsoft SQL Server SQLXML Script Injection Vulnerability
2002-06-11: Microsoft MSN Chat Control Remote Buffer Overflow Vulnerability
2002-06-08: Microsoft ASP.NET StateServer Cookie Handling Buffer Overflow Vulnerability
2002-06-06: Microsoft Exchange 2000 Malformed Mail Attribute DoS Vulnerability
2002-06-06: Microsoft Internet Explorer FTP Web View Cross Site Scripting Vulnerability
2002-05-29: Multiple Vendor JavaScript Interpreter Denial Of Service Vulnerability
2002-05-27: Microsoft Active Data Objects Buffer Overflow Vulnerability
2002-05-27: Microsoft IIS 5.0 Denial Of Service Vulnerability
2002-05-24: Microsoft MSN Messenger Malformed Invite Request Denial of Service
2002-05-23: Microsoft Active Directory Zero Page Length Query Vulnerability
2002-05-22: Microsoft Windows 2000 / NT 4.0 Process Handle Local Privilege Elevation Vulnerability
2002-05-17: Apple MacOS Internet Explorer File Execution Vulnerability
2002-05-16: Microsoft Internet Explorer Content-Disposition Handling File Execution Vulnerability
2002-05-16: Microsoft Internet Explorer Dialog Same Origin Policy Bypass Vulnerability
2002-05-15: Microsoft Internet Explorer Zone Spoofing Vulnerability
2002-05-14: Microsoft Word 97 / 2000 Mail Merge Code Execution Vulnerability
2002-05-08: Microsoft MSN Messenger Font Tag Denial Of Service Vulnerability
2002-05-07: Microsoft IIS Chunked Encoding Heap Overflow Variant Vulnerability
2002-05-07: Microsoft IIS HTTP Redirect Cross Site Scripting Vulnerability
2002-05-07: Microsoft IIS HTTP Error Page Cross Site Scripting Vulnerability
2002-05-07: Microsoft IIS FTP Connection Status Request Denial of Service Vulnerability
2002-05-07: Microsoft IIS ISAPI Filter Access Violation Denial of Service Vulnerability
2002-05-07: Microsoft IIS ASP Server-Side Include Buffer Overflow Vulnerability
2002-05-07: Microsoft IIS HTTP Header Field Delimiter Buffer Overflow Vulnerability
2002-05-07: Microsoft IIS HTR ISAPI Extension Buffer Overflow Vulnerability
2002-05-01: Microsoft Internet Explorer/Outlook Express XBM Handling DoS Vulnerability
2002-04-26: Microsoft Outlook HTML Mail Script Execution Vulnerability
2002-04-25: Microsoft Baseline Security Analyzer Plaintext Result File Vulnerability
2002-04-25: Microsoft Remote Procedure Call Service DoS Vulnerability
2002-04-24: Microsoft Windows Trusted Domain Privilege Escalation Vulnerability
2002-04-24: Multiple Stack Protection Scheme Function Argument Overwrite Weakness
2002-04-24: Microsoft Outlook Express DOS Device Denial of Service Vulnerability
2002-04-24: Internet Explorer Recursive JavaScript Event Denial of Service Vulnerability
2002-04-19: Microsoft MSDTC Service Denial of Service Vulnerability
2002-04-18: Microsoft IIS CodeBrws.ASP File Extension Check Out By One Vulnerability
2002-04-18: Microsoft IIS CodeBrws.ASP Source Code Disclosure Vulnerability
2002-04-18: Microsoft Internet Explorer History List Script Injection Vulnerability
2002-04-17: Microsoft BackOffice Server Web Administration Authentication Bypass Vulnerability
2002-04-16: Multiple Microsoft Products for MacOS File URL Buffer Overflow Vulnerability
2002-04-16: Microsoft Windows 2000 / NT / XP MUP UNC Request Buffer Overflow Vulnerability
2002-04-16: Microsoft Internet Explorer Unicode Character Handling DoS Vulnerability
2002-04-16: Microsoft IIS Help File Search Cross Site Scripting Vulnerability
2002-04-09: Microsoft VBScript ActiveX Word Object Denial Of Service Vulnerability
2002-04-09: Microsoft Windows Terminal Server Group Policy Bypass Vulnerability
2002-04-09: Microsoft Windows 2000 Group Policy Evasion Vulnerability
2002-04-09: Microsoft Windows 2000 LDAP SSL Password Modification Vulnerability
2002-04-09: Microsoft Internet Explorer Arbitrary Program Execution Vulnerability
2002-04-09: Microsoft Internet Explorer Known Local File Script Execution Vulnerability
2002-04-08: Microsoft OWC DataSourceControl ConnectionFile Local File Existence Disclosure Vulnerability
2002-04-08: Microsoft OWC Spreadsheet XMLURL Local File Existence Disclosure Vulnerability
2002-04-03: Microsoft Windows NT Dr. Watson 'user.dmp' Permissions Vulnerability
2002-04-02: Windows 2000 DCOM Client Memory Disclosure Vulnerability
2002-04-01: Microsoft Office XP Spreadsheet Host().SaveAs() File Creation Vulnerability
2002-03-28: Microsoft Outlook Web Access with RSA SecurID Authentication Bypass Vulnerability
2002-03-22: Microsoft Outlook Disabled Cookies Setting Bypass Vulnerability
2002-03-22: Microsoft Outlook IFrame Embedded Media Player File Vulnerability
2002-03-21: Microsoft Outlook Javascript Execution Vulnerability
2002-03-21: Microsoft Outlook IFrame Embedded URL Vulnerability
2002-03-20: Microsoft SMTP Service Malformed Command Denial of Service Vulnerability
2002-03-20: Microsoft Windows SMTP Service Authorization Bypass Vulnerability
2002-03-19: Microsoft MSN Messenger Message Spoofing Vulnerability
2002-03-15: Microsoft VBScript Same Origin Policy Violation Vulnerability
2002-03-09: Microsoft Windows 2000 Password Policy Bypass Vulnerability
2002-03-08: Microsoft Windows User Shell Buffer Overflow Vulnerability
2002-03-06: Microsoft Windows NT Security Policy Bypass Vulnerability
2002-03-05: Microsoft IIS Authentication Method Disclosure Vulnerability
2002-02-28: Multiple Vendor MacOS Browser Arbitrary Program Download Vulnerability
2002-02-28: Microsoft Internet Explorer HTML Document Directive Buffer Overflow Vulnerability
2002-02-22: Microsoft Commerce Server 2000 ISAPI Buffer Overflow Vulnerability
2002-02-21: Microsoft SQL Server OLE DB Provider Name Buffer Overflow Vulnerability
2002-02-14: Microsoft Visual C++ 7/Visual C++.Net Buffer Overflow Protection Weakness
2002-02-14: Microsoft IIS 5.1 Frontpage Extensions Path Disclosure Information Vulnerability
2002-02-14: Microsoft IE Same Origin Policy Violation Vulnerability
2002-02-13: Microsoft Windows 2000 Server Terminal Services Failure To Lock Terminal Vulnerability
2002-02-13: Outlook Express Attachment Carriage Return/Linefeed Encapsulation Filtering Bypass Vulnerability
2002-02-12: Microsoft Internet Explorer MIME Type File Extension Spoofing Vulnerability
2002-02-12: Microsoft Internet Explorer Content-Type Field Arbitrary File Execution Vulnerability
2002-02-12: Microsoft Internet Explorer Forced Script Execution Vulnerability
2002-02-12: Microsoft Internet Explorer GetObject File Disclosure Vulnerability
2002-02-12: Microsoft IIS 5.1 Frontpage Server Extensions File Source Disclosure Vulnerability
2002-02-11: Microsoft MSN ActiveX Object Information Disclosure Vulnerability
2002-02-08: Microsoft IE Temporary Internet Files Folder Disclosure Vulnerability
2002-02-08: Microsoft Telnet Server Buffer Overflow Vulnerability
2002-02-07: Microsoft Exchange Inappropriate Registry Permissions Vulnerability
2002-02-07: Multiple Vendor HTML Form Protocol Vulnerability
2002-02-07: Microsoft Office v. X for Macintosh Network PID Checker Denial of Service Vulnerability
2002-01-31: MS Site Server Unauthorized SQL Command Injection Vulnerability
2002-01-31: Microsoft Site Server 3.0 Weak LDAP_Anonymous Password Generation Vulnerability
2002-01-31: Microsoft Site Server 3.0 Information Disclosure/Data Modification Vulnerability
2002-01-31: Microsoft Site Server 3.0 Cross-Site Scripting Vulnerability
2002-01-31: Microsoft Site Server 3.0 Default Account Vulnerability
2002-01-31: Microsoft Site Server 3.0 Arbitrary ASP Code Execution Vulnerability
2002-01-31: Microsoft Site Server 3.0 Content Upload Denial of Service Vulnerability
2002-01-31: Microsoft Site Server LDAP Plain Text Password Storage Vulnerability
2002-01-30: Microsoft Windows NTFS File Hiding Vulnerability
2002-01-29: Microsoft Windows Inaccurate Login Logging Vulnerability
2002-01-28: Microsoft Windows TCP Stack DoS Vulnerability
2002-01-23: Microsoft Windows XP .manifest DoS Vulnerability
2002-01-22: Microsoft Internet Explorer Clipboard Reading Vulnerability
2002-01-16: Microsoft Internet Explorer Form Denial of Service Vulnerability
2002-01-16: Multiple Vendor Unprivileged User Permissions Log File Modification Vulnerability
2002-01-16: Microsoft Windows XP Pro Upgrade IE Patch Downgrade Vulnerability
2002-01-14: Microsoft Backup for Windows 95 Buffer Overflow Vulnerability
2002-01-07: Microsoft Internet Explorer Modeless Dialog DoS Vulnerability
2002-01-04: Microsoft SQL-Server Buffer Overflow Vulnerability
2002-01-03: Microsoft Internet Explorer Patch Q312461 Existence Vulnerability
2001-12-21: Microsoft Internet Explorer Refresh Denial of Service Vulnerability
2001-12-21: Microsoft Windows C Runtime Library Format String Vulnerability
2001-12-21: Microsoft IE for Solaris X Server Denial of Service Vulnerability
2001-12-20: Microsoft Universal Plug and Play Simple Service Discovery Protocol Denial of Service Vulnerability
2001-12-20: Microsoft Excel Spreadsheet Data Password Protection Bypass Vulnerability
2001-12-20: Microsoft Internet Explorer Arbitrary File Execution Vulnerability
2001-12-20: Microsoft Windows XP Remote Desktop Plaintext Username Vulnerability
2001-12-20: Microsoft Windows XP Fast User Switching Account Lockout Vulnerability
2001-12-17: Microsoft Windows XP Unauthorized Hotkey Program Execution Vulnerability
And leave us not forget this one...

Marilla9
I Am My Own Arbiter
Premium Member
join:2002-12-06
Belpre, OH

Marilla9

Premium Member

Do you also know that a large percentage of those things you posted aren't WINDOWS vulnerabilities, but various other Microsoft products? IIS, SQL Server, Site Server, ISA, Excel, Word, IE, Commerce Server, Media Player, Visual Studio, Outlook, Outlook Express, NetMeeting, MSN Messenger...

A large percentage of the software listed above is stuff that most users never will have installed.

This is directly analogous to laying sendmail problems at Linux's doorstep; since most Linux systems will come with Sendmail installed.

Again.. the point of this is that no single product is "absolutely secure". Gather together any large group of products that span all of the types that show up in the list you have above, and you'll see a comparable number of vulnerabilities.

Am I claiming Microsoft makes better software than anyone else? Of course not (but of course, you're so 'anti-microsoft' that you'll go ahead and assume it, aynway)...

ikarus1
Premium Member
join:2002-10-23
Urbanna, VA

ikarus1

Premium Member

Which part of Microsoft trademark did you fail to understand? If Microsoft wrote it, it counts. I figure since Microsoft contends that a browser is an integral part of the operating system, we can count any piece of software they wrote, as we never know when they will decide that some other application is really part of the OS... You can't have it both ways.

-m-

Marilla9
I Am My Own Arbiter
Premium Member
join:2002-12-06
Belpre, OH

Marilla9

Premium Member

So what you are saying is, in order to make your statements valid, you are resorting to engaging in a semantic discussion that is mostly unrelated to what people actually run on their systems?

More than half of those vulnerabilities don't apply to most of the Windows desktop systems out there.

You are welcome to define the discussion however you want, so that the words match you want to say, but then you start to enter into territory that's not terribly related to the real topic at hand. Of course, whatever *I* say the topic is, you'll just tell me I'm wrong, so I won't bother.. I'll just nod, concede your (meaningless) point, and move on.