UPnP vulnerabilities



Fred
07-09-2005, 11:49 PM
Has MS completely resolved the vulnerability of UPnP to exploitation,
referred to at http://www.grc.com/unpnp/unpnp.htm?

Robert Moir
07-09-2005, 11:49 PM
Fred wrote:
> Has MS completely resolved the vulnerability of UPnP to exploitation,
> referred to at http://www.grc.com/unpnp/unpnp.htm?

They fixed the problem in 2001. It actually says on that page that the FBI,
who issued the warning that gibson is mouthing off about, no longer consider
it a big deal.

--
--
Rob Moir
Website - http://www.robertmoir.co.uk
Virtual PC 2004 FAQ - http://www.robertmoir.co.uk/win/VirtualPC2004FAQ.html
Kazaa - Software update services for your Viruses and Spyware.

David H. Lipman
07-09-2005, 11:49 PM
From: "Fred" <anomynous@discussions.microsoft.com>

| Has MS completely resolved the vulnerability of UPnP to exploitation,
| referred to at http://www.grc.com/unpnp/unpnp.htm?
|

Steve Gibson is a scare monger and is not a reputable source for security information. Go
to the US CERT or Secunia for security vulnerability assessments.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

Bruce Chambers
07-09-2005, 11:49 PM
Fred wrote:
> Has MS completely resolved the vulnerability of UPnP to exploitation,
> referred to at http://www.grc.com/unpnp/unpnp.htm?
>
>


Long ago.

Gibson has been fooling a lot of people for several years, now, so
don't feel too bad about having believed him. He mixes just enough
facts in with his hysteria and hyperbole to be plausible. People should
know better, Buyer Beware, and all of that. :-} Gibson, on the other
hand, is assuming a presumably morally superior pose as a White Knight
out to rescue the poor, defenseless computer user, all the while
offering solutions that does no good whatsoever.

Perhaps you should hear what computer security specialists have to
say about Steve Gibson's "security" expertise. You can start here:
http://www.grcsucks.com/


--

Bruce Chambers

Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html

You can have peace. Or you can have freedom. Don't ever count on having
both at once. - RAH


UPnP vulnerabilities