Windows XP source code released - New possibilities for attackers!
The Windows XP source code was released. Despite this outdated version, there are also dangers for Windows 10 behind it!
Vincent Heinen Abteilungsleiter Offensive Services TL;DR
Approximately 41GB of Windows XP and Windows Server 2003 source code was leaked on 4chan in 2020. Security researchers confirmed the files are genuine. While both operating systems are outdated, the risk extends to Windows 10 because code from XP is likely reused. Attackers who find vulnerabilities in the leaked code may be able to exploit similar flaws in current systems. Regular system updates remain the primary defence.
Table of Contents (2 sections)
Exactly one week ago, an anonymous user shared a link on the 4chan message board. This link led to a file archive of about 3GB, where parts of the source code of Windows XP and Windows Server 2003 are located. Although these Windows versions have been out of date for years, the open source code poses a threat to current systems.
Windows XP source code became a collection
As already mentioned, at the beginning a link was distributed which leads to an archive containing about 3GB of source code of Windows XP and Windows Server 2003. After other users have seen this archive, it was extended with other leaked parts of the source code. So this archive, which was initially only 3GB in size, gradually became a 41GB collection. 
In this picture you can see the archive shortly after it was initially distributed. The file size is about 3.3GB According to the initial assessments of Windows experts and security researchers, these published files are indeed original source code. The file extension cab is an archive. If you unpack the single archives you get access to several cpp and header files. 
The individual small files that make up Windows XP and Windows Server 2003 can be viewed in the individual archives.
Dangers from published code
As soon as attackers have access to actually used Windows XP source code, it is likely that new vulnerabilities will be discovered. Through these vulnerabilities that the attackers can discover, new exploits are written that can exploit exactly these vulnerabilities. Although Windows XP and Windows Server 2003 have been out of date for several years, these versions are still in use in some cases. It is often reported that outdated operating systems are still in use, because a changeover would be too expensive or too time-consuming. Some time ago Microsoft announced the support end for Windows 7, this is exactly where the discussion arose, since many authorities run all systems on Windows 7. Beside the systems that actually still use Windows XP or Server 2003 there is also a danger for current systems with Windows 10, because the probability that parts of the Windows XP source code are also included in Windows 10 is very high. If a vulnerability is found in the public source code of Windows XP, it is quite possible that a similar vulnerability is included in Windows 10. To protect yourself against such vulnerabilities and the associated attacks, you should update your systems regularly. Most updates are intended to close current security holes. Therefore updates should always be made.
Monthly Threat Report
Chris Wojzechowski bewertet einmal im Monat die aktuelle Bedrohungslage aus Sicht eines Informationssicherheitsexperten. Sein 30-köpfiges Team ist näher an realen Cyberbedrohungen dran als kaum jemand sonst - mit konkreten Handlungsempfehlungen, die Sie am nächsten Morgen umsetzen können.
Bestseller-Autor (Wiley-VCH) · M.Sc. Internet-Sicherheit · Bekannt aus Handelsblatt & WamS
Zuletzt behandelt
1x im Monat · Kein Spam · Jederzeit abbestellbar · Datenschutz
Next Step
Our certified security experts will advise you on the topics covered in this article — free and without obligation.
Free · 30 minutes · No obligation
