backtop


Print

Patch will fix a security hole in the OS's messaging hub that can brick Windows Phones

While no known exploits are currently in the wild, Microsoft Corp.'s (MSFT) smartphone OS du jour, Windows Phone, reportedly has a whopper of a security flaw in its messaging hub application.  The flaw allows a malicious attacker to use malformed messages to not only brick the phone, but to semi-permanently kill the messaging hub, even in a salvage scenario.

Microsoft was pretty proactive on this one, it appears.  Within days of the story hitting the press, it had contacted the hacker/security-expert who discovered the flaw --  Khaled Salameh -- and set to work determining the extent of the problem and diagnosing it.  

Now Mr. Salameh reports via Twitter that Microsoft let him know that they feel they have the problem fully understood and are testing a patch.  By the sound of it, that patch could be just days away from going live.


 
It's nice to see Microsoft taking such a proactive approach, particularly for an exploit that's not even being actively attacked in the wild yet.  But that's not exactly surprising -- unlike some companies that try to dupe their customers into a false sense of security, Microsoft has been leading the way in terms of pushing hard to respond quickly to threats and be honest in its threat disclosure policy.

Source: Twitter (Khaled Salameh)





"The whole principle [of censorship] is wrong. It's like demanding that grown men live on skim milk because the baby can't have steak." -- Robert Heinlein



Latest Headlines
How Apple watch Series 2 differ from the S1
February 18, 2017, 5:37 AM
Chuwi LapBook
February 6, 2017, 6:49 AM
LG Watch Style
February 5, 2017, 8:00 AM



Most Popular ArticlesComparison: Tag Heuer Connected Modular VS Samsung Gear S3
February 20, 2017, 7:20 AM
Gigabit Are you looking for an Ultra Compact board?
February 22, 2017, 6:30 AM
Science & Environment
February 20, 2017, 6:37 AM
Dell XPS 13 Touch – Rose Gold Edition
February 23, 2017, 7:29 AM
ASUS ROG Maximus IX - Among the Best of the Best
February 21, 2017, 7:50 AM







botimage
Copyright 2017 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki