Microsoft: Ancient Windows flaw could steer IE to hackers

DNS-related glitch first reported and patched in 1999
-- Microsoft Corp. said Monday that a flaw in the way its Windows operating system looks up other computers on the Internet has resurfaced, and could expose some customers to online attacks.

The flaw primarily affects corporate users outside of the U.S. It could theoretically be exploited by attackers to silently redirect victims to a malicious Web site.

Microsoft originally patched this flaw in 1999, but it was rediscovered recently in later versions of Windows and subsequently publicized at a recent hacker conference in New Zealand. "This is a variation of that previously reported vulnerability that manifests when certain client-side settings are made," said Mike Reavey, a group manager at Microsoft's Security Response Center.

The bug has to do with the way Windows systems look for DNS (Directory Name Service) information under certain configurations.

Any version of Windows could theoretically be affected by the flaw, but Microsoft issued an advisory Monday explaining which Windows configurations are at risk and offering some possible workarounds for customers. The company said it is working to release a security patch for the problem.

Here's how the attack would work: When a Windows system is specially configured with its own DNS Suffix, it will automatically search the network for DNS information on a Web Proxy Auto-Discovery (WPAD) server. Typically this server would be a trusted machine, running on the victim's own network.

WPAD servers are used to cut down on the manual configuration required to get Windows systems working on the network. DNS suffixes are used to associate computers with certain domains of the network and to simplify administration.

To make it easier for the PC to find a WPAD server, Windows uses a technique called DNS devolution to search the network for the server. For example, if an IDG PC was given a DNS suffix of corp.idg.co.uk, it would automatically look for a WPAD server at wpad.corp.idg.co.uk. If that failed, it would try wpad.idg.co.uk and then wpad.co.uk.

And that's where the problem lies. By looking for DNS information on wpad.co.uk, the Windows machine has now left the IDG network and is doing a DNS look-up on an untrusted PC.

Reavey says that this problem only affects customers whose domain names begin with a "third-level or deeper" domain, meaning that even with the DNS suffix, users on networks like idg.com or dhs.gov are not affected.

Attackers who registered "wpad" domains within second-level domains such as co.uk or co.nz could redirect victims to malicious Web sites without their knowledge -- a "man in the middle" attack." An victim might think he was visiting his bank's Web site, but in reality, he could be sent to a phishing site.

"It's particularly insidious because a lot of people don't realize that this is happening," said Cricket Liu, vice president of architecture with DNS appliance vendor Infoblox. To date, Microsoft has heard of no such attacks actually being carried out, Reavey said.

Customers who have set their own proxy server or who have a WPAD server on their network are not at risk, Microsoft said.

Still, according to the New Zealand security researcher who discovered this flaw, many customers could be affected. Beau Butler, who also happens to own the wpad.co.nz, domain estimates that about 160,000 PCs are affected by the problem in New Zealand alone, according to a published report. Butler could not be reached immediately for comment on this story, but in a note on a local Linux group Web site, he said he is collecting Web server data from this domain.

Adobe upgrades Flash Media Server, slashes entry-level price

Video-friendly upgrade comes as competitors move on juicy market

- Adobe Systems Inc. on Tuesday announced a new, more video-friendly version of Flash Media Server that also introduces a less expensive single-server edition.

Flash Media Server 3, which can help Web publishers deliver Flash applications and Flash-encoded video, can handle about five times the number of streams and amount of bandwidth as version 2, according to the San Jose, Calif. software company.

FMS 3 will come in an interactive server edition that costs $4,500, which Towes says is comparable to FMS 2's original and edge-server package, which are aimed at large publishers and content delivery networks (CDNs) and list for a combined $60,000.

But customers can also buy a license to deploy FMS 3 just on a single server -- an option not previously available in FMS 2 -- for $995. That, he said, compares to FMS 2's professional edition, which cost $4,500 and allows between 150 and 2,500 simultaneous connections.

"The cost of deployment was too high, so we addressed that and also improved performance so you can stream more video using less CPU," said Kevin Towes, Adobe's product manager for Flash Media Server.

Everybody wants to get in on the act

Adobe claims that Flash is used to encode three-quarters of the video on the Web today. For instance, YouTube videos are encoded and streamed to viewers using Flash.

But staying on top requires effort in this space. To drive adoption of its competing Expression publishing platform, Microsoft Corp. is offering much of the software cheaper than its Adobe equivalents -- or, in the case of Expression Media Encoder, for free. Expression Media Encoder offers many of the same features as FMS.

Other cheaper alternatives such as Wowza Media Systems Inc., which offers server software that also streams Flash content and video, also threaten.

During its MAX conference earlier this fall, then-Adobe CEO Bruce Chizen said that Flash's market share today "is a clear indication that our pricing is competitive now."

But the company also said that if enough customers look like they might defect, it would be wiling to cut prices.

"If the cost of Flash Media Server comes in the way of Flash adoption, we will adjust that," said Shantanu Narayen, Adobe's president, at the time. Narayen took over as CEO on December 1 after Chizen's resignation in November.

FMS 3, which will be available in January, improves upon FMS 2's video quality and compression by using the H.264/MPEG-4 standard.

"It takes us closer to HD," Towes said.

FMS 3 also adds the ability for music and other audio to be compressed with the AAC format used by Apple Inc.'s iTunes software.

When deployed in tandem with its in-beta Adobe Media Player, FMS 3 also adds advertiser-friendly features, such as the ability to track and measure up to 30 different user behaviors, and digital rights management (DRM) that can allow publishers to charge for access or ensure that ads be played before, during and after a video, Towes said.

Unsung innovators: 10 people who shaped the computer industry

- Their names are so familiar that they roll off your tongue like a song that keeps rattling around in your head: Steve Jobs, Andy Grove, Bill Gates, Vint Cerf. We could go on, but we wouldn't want to mislead you.

Instead, this time out, we've put together a list of names you probably haven't heard of. (No fair peeking at the Table of Contents quite yet!) From the pair who started the VLSI chip revolution to the man who received the first software patent to the guy who put the 'at' sign in your e-mail address, we searched high and low for people we're betting you didn't already know.

Without these innovators, even those whose work you may question -- like the first to send out a spam message -- we would all be experiencing a very different industry today.

Speaking of, we discovered the true father of the Internet. It isn't Al Gore, and it isn't Vint Cerf, though the latter got close.
And yes, now's a good time to jump over to the Table of Contents and get to know these folks.

When you're done reading, please let us know -- in the comments field below -- who else we should have included on this list. And keep in mind our criteria: giant industry contribution, low name recognition.

And if you're itching to know more about some of those household names and what they're up to now, there's something for you, too. We tracked down seven tech giants, including Mitch Kapor, Dan Bricklin and Steve Wozniak, and can bring you up to date with their newest ventures in Second acts: Seven tech titans today.