If you have DEP capable CPUs such as the later offerings by Intel and AMD
and if you have DEP fully enabled in WIndows, according to the reports the
WMF exploit cannot affect you.

To quote SANS:

"With Windows XP SP2, Microsoft introduced DEP. It protects against a wide
range of exploits, by preventing the execution of 'data segements'. However,
to work well, it requires hardware support. Some CPUs, like AMD's 64 Bit
CPUs, will provide full DEP protection and will prevent the exploit."

Can we possibly stop cross-posting XP fixes in Win98 forums? Either that or
kindly tell me how to activate DEP in Windows 98. ;-)

--
Richard G. Harper [MVP Shell/User] rgharper@gmail.com
* PLEASE post all messages and replies in the newsgroups
* for the benefit of all. Private mail is usually not replied to.
* My website, such as it is ... http://rgharper.mvps.org/
* HELP us help YOU ... http://www.dts-l.org/goodpost.htm


"Saucy Lemon" <saucy@s.can.be> wrote in message
news:%23hQe%23AgEGHA.2012@TK2MSFTNGP14.phx.gbl...
> If you have DEP capable CPUs such as the later offerings by Intel and AMD
> and if you have DEP fully enabled in WIndows, according to the reports the
> WMF exploit cannot affect you.

Richard G. Harper wrote:
> Can we possibly stop cross-posting XP fixes in Win98 forums? Either
> that or kindly tell me how to activate DEP in Windows 98. ;-)
>
>
> "Saucy Lemon" <saucy@s.can.be> wrote in message
> news:%23hQe%23AgEGHA.2012@TK2MSFTNGP14.phx.gbl...
>> If you have DEP capable CPUs such as the later offerings by Intel
>> and AMD and if you have DEP fully enabled in WIndows, according to
>> the reports the WMF exploit cannot affect you.

You activate DEP in Windows 98 by upgrading to a modern computer and modern
operating system. While 'tis true good code is forever, it's also true that
Windows 98 [as much loved by some as it is] is not up to modern security
threats .. the WMF exploit is a good example.

A modern CPU with a modern OS properly configured isn't affected by the WMF
exploit.

A lot of people don't like the idea of upgrading, but it's a lot closer to
2008 than 1998. Maybe it is time to start saving the pennies for a new CPU.

Saucy Lemon wrote:
>
> A modern CPU with a modern OS properly configured isn't affected by the WMF
> exploit.
>
> A lot of people don't like the idea of upgrading, but it's a lot closer to
> 2008 than 1998. Maybe it is time to start saving the pennies for a new CPU.
>
>

When you say a "modern" CPU, would an Althon XP 3000+ meet the "modern"
standards? How about an Athlon XP 2200? Can you be more specific?

--
Alias

Use the Reply to Sender feature of your news reader program to email me.
Utiliza Responder al Remitente para mandarme un mail.

Saucy Lemon wrote:
> Richard G. Harper wrote:
> > Can we possibly stop cross-posting XP fixes in Win98 forums? Either
> > that or kindly tell me how to activate DEP in Windows 98. ;-)
> >
> >
> > "Saucy Lemon" <saucy@s.can.be> wrote in message
> > news:%23hQe%23AgEGHA.2012@TK2MSFTNGP14.phx.gbl...
> >> If you have DEP capable CPUs such as the later offerings by Intel
> >> and AMD and if you have DEP fully enabled in WIndows, according to
> >> the reports the WMF exploit cannot affect you.
>
> You activate DEP in Windows 98 by upgrading to a modern computer and modern
> operating system. While 'tis true good code is forever, it's also true that
> Windows 98 [as much loved by some as it is] is not up to modern security
> threats .. the WMF exploit is a good example.

Duh. Windows 98 has *NOT* been shown to be vulnerable to
the WMF exploit despite mucho noise to the contrary. Even
Microsoft has very grudgingly admitted as much.

From:
http://www.microsoft.com/technet/sec.../ms06-001.mspx
(Buried in the FAQ section.)

"Are Windows 98, Windows 98 Second Edition, or Windows
Millennium Edition critically affected by one or more of the
vulnerabilities that are addressed in this security bulletin?
No."

>
> A modern CPU with a modern OS properly configured isn't affected by the WMF
> exploit.

Well, actually, most older PC's with an old OS sloppily
configured turned out to far, FAR more resistant to the
WMF exploit than a typical "modern CPU with a modern
OS properly configured." If you have Win98, are using a
modern browser like Firefox or Opera, got decent firewall
and antivirus programs, and don't use Outlook or Outlook
Express for email, you are far more secure than XP ever
was or ever will be.

>
> A lot of people don't like the idea of upgrading, but it's a lot closer to
> 2008 than 1998. Maybe it is time to start saving the pennies for a new CPU.

And when is Vista coming out? If you haven't found a good
reason to switch to XP yet, there's reason to bother now.

-BC

I believe that all PCs that have hardware DEP, have a Toggle setting in
BIOS to enable/disable it. Not sure if there are other ways to determine
if it's present from within Windows.

"Alias" <aka@[notme]maskedandanonymous.org> wrote in message
news:%23rfEDvlEGHA.532@TK2MSFTNGP15.phx.gbl...
> Saucy Lemon wrote:
>>
>> A modern CPU with a modern OS properly configured isn't affected by the
>> WMF exploit.
>>
>> A lot of people don't like the idea of upgrading, but it's a lot closer
>> to 2008 than 1998. Maybe it is time to start saving the pennies for a new
>> CPU.
>
> When you say a "modern" CPU, would an Althon XP 3000+ meet the "modern"
> standards? How about an Athlon XP 2200? Can you be more specific?
>
> --
> Alias
>
> Use the Reply to Sender feature of your news reader program to email me.
> Utiliza Responder al Remitente para mandarme un mail.

Alias wrote:
> Saucy Lemon wrote:
>>
>> A modern CPU with a modern OS properly configured isn't affected by
>> the WMF exploit.
>>
>> A lot of people don't like the idea of upgrading, but it's a lot
>> closer to 2008 than 1998. Maybe it is time to start saving the
>> pennies for a new CPU.
>
> When you say a "modern" CPU, would an Althon XP 3000+ meet the
> "modern" standards? How about an Athlon XP 2200? Can you be more
> specific?

No. Check with the manufacturer. Almost the whole slate of AMD Athlon64,
Operteron and Sempron now have that feature as with Intel P4 and Celeron.
Somewhat older ones might not e.g. Sempron 2200+ doesn't, but then it is not
listed as a current offering by AMD.

R. McCarty wrote:
> I believe that all PCs that have hardware DEP, have a Toggle setting
> in BIOS to enable/disable it. Not sure if there are other ways to
> determine if it's present from within Windows.
>
>

The System Applet's Data Execution Prevention tab will indicate. If the CPU
doesn't, the software DEP can still be enabled but a note will appear at the
bottom mentioning that your computer's does not support hardware based DEP.
It works best if the hardware supports DEP.

Appreciate the follow-up.

"Saucy Lemon" <saucy@s.can.be> wrote in message
news:Oi7wY6lEGHA.140@TK2MSFTNGP12.phx.gbl...
> R. McCarty wrote:
>> I believe that all PCs that have hardware DEP, have a Toggle setting
>> in BIOS to enable/disable it. Not sure if there are other ways to
>> determine if it's present from within Windows.
>>
>>
>
> The System Applet's Data Execution Prevention tab will indicate. If the
> CPU doesn't, the software DEP can still be enabled but a note will appear
> at the bottom mentioning that your computer's does not support hardware
> based DEP. It works best if the hardware supports DEP.
>

"Saucy Lemon" <saucy@s.can.be> wrote in message
news:Oi7wY6lEGHA.140@TK2MSFTNGP12.phx.gbl...
> R. McCarty wrote:
> > I believe that all PCs that have hardware DEP, have a Toggle setting
> > in BIOS to enable/disable it. Not sure if there are other ways to
> > determine if it's present from within Windows.
> >
> >
>
> The System Applet's Data Execution Prevention tab will indicate. If the CPU
> doesn't, the software DEP can still be enabled but a note will appear at the
> bottom mentioning that your computer's does not support hardware based DEP.
> It works best if the hardware supports DEP.

....and software DEP will not protect against the WMF vulnerability, and probably
others; only hardware DEP will, in XP.
Please stop cross-posting these XP discussions to the 98 groups.
--
Glen Ventura, MS MVP Shell/User, A+
http://dts-l.org/goodpost.htm