G
Guest
Hello All,
The Microsoft antispyware can be bypassed very easily.
you can see it for your self by opening the startup folder adding a .bat
that contain something like "format c:\ /y " the program will prompt to ask
you what do you want to do , allow or block it .
But if you add an empty .bat file, wait for a few seconds , the program will
allow it automatically - without asking your approval!!!
After that ,you can inject any string and the msantispyware will not detect
the changes. (Can be tested using echo format c: /y > file.bat).
You can write a simple app that will utilize this problem.
I hope the guys in ms will solve this security hole at the next update cycle.
Yaniv
Security Expert
The Microsoft antispyware can be bypassed very easily.
you can see it for your self by opening the startup folder adding a .bat
that contain something like "format c:\ /y " the program will prompt to ask
you what do you want to do , allow or block it .
But if you add an empty .bat file, wait for a few seconds , the program will
allow it automatically - without asking your approval!!!
After that ,you can inject any string and the msantispyware will not detect
the changes. (Can be tested using echo format c: /y > file.bat).
You can write a simple app that will utilize this problem.
I hope the guys in ms will solve this security hole at the next update cycle.
Yaniv
Security Expert