Virtualization - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Virtualization


Microsoft Patches Critical Virtual Machine Flaw



 By: Dennis Fisher
2003-04-09
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Virtualization story.


  Table of Contents:
  1. Microsoft Patches Critical Virtual Machine Flaw
  2. ' Page Two '

Rate This Article:
Poor Best
Microsoft Patches Critical Virtual Machine Flaw
( Page 1 of 2 )

Flaw allows attackers to run code on vulnerable computers. Microsoft Corp. on Wednesday released a patch for a critical new flaw in its Virtual Machine Java implementation that gives an attacker the ability to run code on a vulnerable computer.

The Virtual Machine is included in nearly every version of Windows as well as in most version of Internet Explorer.

Resource Library:
The vulnerability is in the ByteCode Verifier component of the VM, which is part of the class-verification process. The component does not correctly check for the presence of some malicious code as Java applets are loaded.

The most likely way for an attacker to exploit this flaw is by creating a malicious Java applet, embedding it in a Web page and then either enticing a user to visit the page or e-mailing the page to the user.

The patch for this vulnerability is available here.





  Reader Comments: Microsoft Patches Critical Virtual Machine Flaw
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Virtualization Articles          >>> More By Dennis Fisher
 


x}ks6*Q3{LQGJɖ<ƲI*EBc䒔me7n|AK~L&$%l~h|Gއ$\8auE1>=zoHRco>L#sJ9Az#:,t}w5k99r z=>>;|9|@D%SjNA]m|0g{z}_6gڄ2z9o0 fE63F6I=E9JG>֥qȏB#4IXߢر7{Xe3g71m( )R/F8wkd| #k||=Vy?a/ w-mqDFN-G ȓ ۭBx1BP!"Bτ]ͻHݠLo$Gd jI:`iT11<Hч@oXSTPԢf̴;gj5[gc}ױ}ǣ!&$ftjv?ƭ(RI&q#/nyy,\t ̿{ײ#Mx6ܳM]b#6fjۆؼ?0} $ꎧc"S9ˑ,kFpt6 dݺ;VrP jrX(?Wm8eGUug^okPQTP8/;W9(;hnkZTa*^w6 yԸ}  ?Vb}"@DeR)gI"0iէ6ttXOB $9"ydZj9,Ղz H.c=I-bv=ӧH0#ƌ^8(J>SKrоd>=?ϐ|bPUUz 12ؕ3Fz7ugۗKew'gkjtN}$#t6+?f'_Z-/7#?!"󁭡_4>\tNIN,-A247QZh,/s$db&Z~DX ,>JAͼ94oo 3E@- uj (k:YKS703h_?}=w  a6z@L5\ a#Xش 6,%̛ީҁyd$e ,}PYtBFͨ4 . If0{A0<^f/_\@ 3 p1S{l2.S4ipv| ^nVW͉:YX]uUjZnY?iKsI|nHwno~lUbyƆƇj%",$uuTStTt ~~2,ՎKbP)b(7Z`Lm,1,Ltͭ `6 ivڌz?i3Ϩagfۉ!9~4DAC66^lK 4}j>3 ä p;p|g0sF}SD%h-DCw 0Ie&3@yOL΃݁27fC?F{t$4,/= 0/ Z- Be^~m̢8ѵO>{4g`sDokii#1).aHd˵FK] cRR,H hI#r B ,`@n!` P  a+R .u@G҅3qJX.kr)eb -x[b~ILg2+IɴX9yDMf#T`B[ᛥBKak`Dݚ, ǪzXc&cS7a z {[W5ܴ ҄%(𝀴40OjHL\U}Ge٢3j5K\:ıAs>n5 ~"Wnzfr#ʇ&fy9epGҶL/j@>|z[.z8 9r!M5kb$`CfO ?Wur@H#od m_eƠemLGy+-mB IP֦(XkezdxE6*&CŸä 7u(= > XU.*rȄe:h-07i2 EEqH~6=2.eX"{; UT#!űLb0qqؼeoXySc'vB5DwMJm [̜֥gbQIBmAOuB%A)` L` T<5{;# 07 3H$/`k@0 !/Pb &@sVbpEs V-EN-]w`uX]Oұ@eЧCjzq~ᇆ9ë#'ppo?IjZXFZQrTUqV h9wwQ)4Ku)j}m1DwϷLFi ^<\8[J?Ct:tȕ`>t0yLLF<5}!h|BZ_,ŨOMqё,`¸ZAU[MΝΟ#Ϣ=t@qDGL MiE;DHo@yLqU$Fd#ӀY/ q2|\_.S?v=3ů0-O])TkE}VWC{%jf#R @ j` 9}G(T[b(ō'j嚱AqC|ٜm!zUqʀWIe& 24Zڽ/[dWWTJ_湛>67^ |5]N-gnAk !j_sE)m(xUr-|s\&q3Fa_+ZN %`DfQJ• eg z [9Y]}k rAp%2A ,[;A%ha29Afpu)ܙękF@D; lC{P&!<,`x.bW@J[6@/\PV.l)K=D"sLnq\8zZ+~ `5{~G 0.{* J,H-ǯ i3Ɂ㚺/ksOgny**JaHˈG2gFT)ڴCiB/F=Lٺ؞MGe,7;PVaj7;aS-UyX 3/0:BMA^,bQ j>'wiŏjȏ5rnv=D~ =ײ,@&DUPU,UU\Hz"peUT nb˨mMJpf ,^yan.E`19[r 2wʨ\A*,r?"0Ȍg <|qq~NyĦ,H+]sK[!uѼ܀8PZeDiªKZk5P U!w tZb()I; /=aQ[y`:JU4qy4(۾b0D_L7 xEDJ?;qP3@|}Q'9w>*%U-tWmj%wW\(k5 *G|@t0\' *BxX8YPX9H(P Yt>'ɷ06fK/lCXr|MN?KHHD>DWF\{e";QX\;^}?؇^?)&ln* }!DNn]ӧ{`l4e:~uGڳ@:kv;z[5_Awy[|L۝(0^+{^i\SšJVG|L`ާ˖6?pC-tP2}a'A)h]1u̮WVsQц.g0V@{Ɂ^W6?v.ŗtO{k~\t.R1AJdG1A?Լ|:aݼ=o6e&ޞ,Hy=Ym@ybZӽK3%ǝƗH|͖&ė4 E) -|8ORB[('H Tդ Zz]UH*? tH1|<ŃF ? "L-rDaC>?uV%ݛf0z3ƍ`/awʜW#}aZ ?Y ./Cv6}`>&k>dNi @ف9^ft)cᦿ C ~Uު箅M$&Laq*ufXe@g4!&V\y1h_9arJs ނk3Q>j 2}]f+wP{_z͞YiYu9/s\-"nZ^⽸|W90.=y$/Av} ,D>?G{oD:*p&޹Q)Gd(΀[,F&Sf@`rYP>f@N:O P>N ЫvMq0m]Bd dAW6AgEF L ;Ym!6Ph^h׆.Ⱥ#(*}(r3* /sU>Z,U=RL J^I?y|E~ ^\)=7 2%!8ځNSr_h*6cHHc›.3D |y*d&} (`㱁㳻lP Q_,C8ړ8_6T&Z-DSxQ~4,T6o{4d|C&K.>[ ?J=ivPUk=FL;.lI aB4ͳ&{3lC'|fn %Ht93*]Ys$ӱIT=jYY~>Ik)l@3S leQ:́\(hj!Ѿtz1v/]4~(ZxC$MBaK<_|6V8igPeq[,@T=Lc+$$ nZ&]i>t 6L<uFgHg,NE $A y@0 !Mdk%g v$Wޖʯ.{j|Cf)|aW*B9C2 qʴ1xL3D_(|LHzb/z-%ba%v}ej4`qKr~vӾtQ!.ht;~XV 4ƛ@v$6g8"7BժgccN)ndnYxZ P?$k Fgj!"ѶJcw$UE7*KOX)8bsonononon/&/*EnX^\ J/uRǠT9W*KGQNAL+?oV{O2mFTY?[ΏZ hݙ1a8`sn@u<ˀ KlNY@%!T滌΀0_t6B</g%߈0`|CxFk:sO,nԵD%RGos_<p, ͤwbޢƄ1L x5P[i՝qNV#uY$KUtogHIYԴY735h@pK*֪+m(ፒ0zr(= ت$%ʾ/kCܒ_b)QUnL6ŵ't'0gfBn{ccіTPy-֎I$Η8@Ł7A0k5Y^mv_I חZLe$ 8g8nQ ^7+boo/W $krmN5[Hy `2xnc5c Mq<H ODL c"̽g`W7^K^y7777W|-J9H,N˯JYj;_} idn|% 'YvCjMtXUe"g/Y!?ĭLDxy2{K{;)}3q$-H/\H׃fi6 qޖnPsG[یU/]G!|99fɛ @Y2 gxU. vD/~뾽t]PIziJA8:_ +f<+LJ4j)|i?:^!!.vB@co~JY:>l9fv,:& 41w(j7|_Kݪ_x@ģʼnNe^le- IO,h{8S[xv1 E1/<:˜4w1#0W{cb1tq*o(2 j`n\ k+H9T'F_@e;|4Ґ4q'u8xJ^yĝ~X PAft~D)nMߣ^^Y?`#?T}fɷw1@co2UȏS Qȿߋ"?3 o(J?tĕ'η 2~?ˇ)7.xo7N PvIx7٥BHtX)aw9Ƕz>ƫc`GB7oqHj*X R] ʨяTeQO:1'(UsnaKN(aZv@sWF؇Bj !-Dn<~aIzd&$:qmMMu&^8 0ka*"lRK'q/ qc) kpx] ΃L,Tw<ƽG7‹/͛I~oY+CSm.951E^(R>&sjxZ-*9>%KRku+N tc [cċ#UA2AK5.*R!ѤFkl1]Hist^3#lzYC'J/k&`Oj!vYS` K }+n'-{sx"(fUJ"tn84n+>T3h 7pK$:Ʋ(s'*x w [+`65ـOR.g@%[7\Z 0gR'E"#m kjBYTjn3m{='TZR,EO&Urv W,X,,Qu$vy)eTUR#ok0pX*l@EL>3e؈>PP.(w;;stAl9sXxw[Mw-=( zit!{4XC@7ݹHm+nn@',l6C8Egvl"6B<\s˩^D~jvx0 96z`9Rm{Ω05r1S%'3. &Yqۏ(ok[s!=ڥ]baiL"&N肜kfM--F bbXP<#V̯nq}%|##lEi6p\PB ˻`,KzUh%mfi8hLOeL~d 1b xb1bVeզɝ$7ygh^}­bQ'r &C*(6;m˫hZ'tMx=7aT0|L9N}dX8TD~:ǧ/tX0/b=#-#ް>xAfaX4B&s'?w\v!_K_!ݰVI m{7R[ $y?ZƮEH( I rپ_u=<yH gD"8 xf;qS :}ӦϾS}j~& CO좺t9xE|?_YJ0% aArL1\S;.0E39]v?O;WN/zx Zӷp+tsk}>]}>\;\FhTo慶xQ(;OFYm3;eNq*gڣE B*r4,xjE^MC^< L*a^e=DU@*9cc j]}5-3Y7G>;tɩcdH>0/ Ma`1D*GM& F8S~}: vn"(%W(5ʯ76R=(e#6vF)n.?e#cF?~O;ygsyktZпNF?ӹ(w2K?Q?o.xojta݌w~7 >ෛ.৛.1.g7>@ D dCyFߠo](f^f%e\]f_O/C@2U}\W_\gOoA@?6A_7P~U &P~U{AmF@ug+\8r ds z)W@^d_~*%YF!gȳJ3Vڍ^V`{J1{+~W} kJ+ťW 7YKxUy%k{F1nvd bCa 5KPe^ۛT#GP npKxEó#"htoĶ.b!Iy=0?$Mu{2پWߕ\~Une+tj/q&R<#s"qDZJ91baOd_0jPނb>Tl<-u&j\aIf(+@J~t pyigzY~8=u^Lebxf^d,mq< 9s u8i$ HLyóHNR?ưs3@ Yz<}K=nq&`iPL;I*V*r;~O+O ӦDݣ(BUN-U+r 0X\^9Q(Fuoo*%F0fy=q'a1V1;BDO"׏ pHm.r+2&dofⅲ_%Raw8aokh;Rq X}HTROcoy=s XI 5H?rl{IW1hӐCKF؊%Dİ-=)N>@O#x>O,E~f&gMcAݣ=Gcx-&oiW&s_" >oي^^NG K X6-0qdx`\{XԞ/snw0aňkCUHn_!x'GDErlyѻKd>`)X5RǬdDdaw.f]C?woHEVϘw;`=ݸ1ꬸcXKL$̸Oe~^OfAL qFj|5h_Wd$YAe6XNƄ_ðPo=,N7"4Γ80̦I ůD|݅SQg{=J"fc]R }]P=ۚ9l܆,dwnԙ%O_AWd]& A_&|NbhRxYugĹmn:,Nd=:qMhu_ 7'쭰F |m'\1PSF\cͅw{pT\ Sچqr3f;W ^{ 3D3$ưz<NH :BVfתhqzF߭Uh#IM&Ah&._5b8gKbDZZ6كl4=hM@(F[0F-߇Fq:l/AKl+6[ !ۂˌJ-Ӭ>sV¹"UX Hٍ ,~:3_[mrΦK2/Wt:OyBtz-Ecuݍ2ZWlkO]+l C>b]R>E+ ]'[ۧ3й?-{w/e;$,{QAbf]s::h݆GO0^YwKl@swSb OٝG:q3r7M ШpSTؕElds^kgycE]Y>;Ѝ iϰ)ngNb *φŀ𞭟{ʾ16 Yf+1ݱOUl g)dv̅2 !Nyyu~ҕ^)I&_cQd+8*)ؐskO` bO1,F Lv7@ 'Ɣ ϰO" s+2),S]S'>+Kw;.!^5El݃*aԈ_W˛_,w9Κ#RInghvV;yv<;w~m a% ѨT߶;GkO{,Y~KO|}lIaE yiAђuz׭v]5[dEg0]\}l6Gn_1?iVA$7yE1em*Pvᷮ QBlS2Fu̹D/5^JB\sjHfr0>_֊֎Mӝ/2a-dc{͵N_ l~[T+,