{"id":4557,"date":"2010-08-29T19:41:21","date_gmt":"2010-08-30T00:41:21","guid":{"rendered":"http:\/\/ssgreenberg.name\/PoliticsBlog\/?p=4557"},"modified":"2010-08-29T19:49:30","modified_gmt":"2010-08-30T00:49:30","slug":"windows-dll-load-hijacking-exploits-go-wild","status":"publish","type":"post","link":"https:\/\/ssgreenberg.name\/PoliticsBlog\/2010\/08\/29\/windows-dll-load-hijacking-exploits-go-wild\/","title":{"rendered":"Windows DLL Load Hijacking Exploits Go Wild"},"content":{"rendered":"<p>The article <a title=\"Article About DLL Load Hijacking\" href=\"http:\/\/www.reuters.com\/article\/idUS2168761020100825?loomia_ow=t0:s0:a49:g43:r4:c0.071962:b36889590:z0\" target=\"_blank\"><strong>Windows DLL Load Hijacking Exploits Go Wild<\/strong><\/a> starts off with:<\/p>\n<blockquote><p>Less than 24 hours after Microsoft said it couldn&#8217;t patch Windows to fix a systemic problem, attack code appeared Tuesday to exploit the company&#8217;s software.<\/p><\/blockquote>\n<p>Ever since I have used Linux\/Unix starting in the early 1980s, I have been aware that it is possible to create a similar hazard by setting your search path variable to search the current director.\u00a0 There were always warnings that though convenient to do this, it was a security hazard.<\/p>\n<p>Of course, back in the 80s there was not the widespread use of the internet.\u00a0 In the more closed environments back then, one wasn&#8217;t hearing about attacks using this vulnerability. (That doesn&#8217;t mean it wasn&#8217;t happening.) Back then I didn&#8217;t pay much attention to the warning.<\/p>\n<p>Since I have had the Unix emulator Cygwin installed on my PC, I have avoided setting my search path in Cygwin to have this vulnerability.\u00a0 I have been avoiding this on the Cygwin part of my PC for at least 10 years or more.<\/p>\n<p>Little did I think that Microsoft had built this security hole into Windows in a way that was not even optional.\u00a0 I don&#8217;t know why I shouldn&#8217;t have considered it, since Microsoft seems to have had just about every security hole that is imaginable, even the ones that were well advertised before Microsoft adopted them. Don&#8217;t get me wrong, this is not a vulnerability that Microsoft just introduced.\u00a0 It has been in Windows ever since there have been DLLs (dynamic link libraries).\u00a0 The need for backward compatibility is one of the reasons Microsoft won&#8217;t fix the problem.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The article Windows DLL Load Hijacking Exploits Go Wild starts off with: Less than 24 hours after Microsoft said it couldn&#8217;t patch Windows to fix a systemic problem, attack code appeared Tuesday to exploit the company&#8217;s software. Ever since I have used Linux\/Unix starting in the early 1980s, I have been aware that it is [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[166],"tags":[],"class_list":{"0":"post-4557","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-stevegsposts","7":"czr-hentry"},"_links":{"self":[{"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/posts\/4557","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/comments?post=4557"}],"version-history":[{"count":10,"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/posts\/4557\/revisions"}],"predecessor-version":[{"id":4567,"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/posts\/4557\/revisions\/4567"}],"wp:attachment":[{"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/media?parent=4557"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/categories?post=4557"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ssgreenberg.name\/PoliticsBlog\/wp-json\/wp\/v2\/tags?post=4557"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}