This is priceless.
Nov. 24th, 2004 11:26 pm![[identity profile]](https://www.dreamwidth.org/img/silk/identity/openid.png){kind=small}
coyoteden.livejournal.com posting in ![[community profile]](https://www.dreamwidth.org/img/silk/identity/community.png){kind=small}
techrecoveryVideo of a fresh XP install getting pwn3d by visiting a website
The video is a screen-capture movie from Benedelman.org and shows how an unpatched WinXP system will get rooted and sutffed full of spyware just by visiting one website in IE. No confirmation box, no warning. By the time anything other than a blank page appears the system is already compromised.
He does note that XP SP2 isn't vulnerable. What he doesn't mention is that IE under every other platform is vulnerable even if it's patched to date, especially Windows 98/Me (and a lot of people do still run 9x). Ditto for Windows 2000 and XP SP1, and there are lot of corporate desktops in that category.
Firefox on any platform, of course, is not vulnerable.
I am so glad I no longer clean this shit up every day.
The video is a screen-capture movie from Benedelman.org and shows how an unpatched WinXP system will get rooted and sutffed full of spyware just by visiting one website in IE. No confirmation box, no warning. By the time anything other than a blank page appears the system is already compromised.
He does note that XP SP2 isn't vulnerable. What he doesn't mention is that IE under every other platform is vulnerable even if it's patched to date, especially Windows 98/Me (and a lot of people do still run 9x). Ditto for Windows 2000 and XP SP1, and there are lot of corporate desktops in that category.
Firefox on any platform, of course, is not vulnerable.
I am so glad I no longer clean this shit up every day.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}