Mobile/PDA About Us Advertise here


		User name	Password

		Not registered yet? Register here. Lost your password? Click here.

Browse by topic

News

Windows flaw spells BSOD risk to newer operating systems

8 September 2009 23:20 by James "Dela" Delahunty | 4 comments

Concept code has been published that takes advantage of an unpatched vulnerability in Microsoft's implementation of Server Message Block (SMB), which is a protocol used in File and Printer sharing over a network. Microsoft's Windows Vista, Windows Server 2008 and Windows 7 are all currently affected by the unpatched vulnerability, while Windows 2000 and Windows XP are not affected by it at all.

The concept exploit uses the flaw to force Windows machine into the infamous Blue Screen of Death (BSOD). According to security researchers at the Internet Storm Center (ISC), the problem is defeated by using basic firewall protection. "The exploit needs no authentication, only file sharing enabled with one packet to create a BSOD," ISC researchers warn. "We recommend filtering access to port TCP 445 with a firewall."

Microsoft issued a number of security updates during the day to address some serious vulnerabilities in the Windows operating systems. The SRV2.SYS (SMB) file vulnerability that can cause a BSOD was not included, likely due to the timing of the exploit code's release, but Microsoft did reveal that it is investigating the issue.

Permalink to this article

Microsoft issues five critical patches (8 September 2009)

Free60 Project warns against 'dangerous', 'homebrew killing' Xbox 360 update (12 August 2009)

HTC offers fix for Bluetooth security flaw (17 July 2009)

Researchers warn of P2P 'guilt by association' attack (10 April 2009)

Conficker worm finally stirs -- removal advice (10 April 2009)

Adobe fixes multiple flaws in Flash Player (9 April 2008)

Apple fixes QuickTime security problems (6 April 2008)

« Previous news article
Netgear launches new EVA2000 digital set-top box

Next news article »
U.S. trade panel to investigate continued infringement in Funai case

Post your comment

Discuss this article!
bobiroc (Member) 9 September 2009 0:40
*Quote:* the problem is defeated by using basic firewall protection And those that do not use a firewall either in the OS or by some piece of hardware like a router with a firewall are idiots. Once again make a big deal about a vulnerability that will only affect those that have no regard for security. They headline should read "Your house will could be robbed easier if you leave your front door wide open" [ + quote]
KillerBug (Senior Member) 9 September 2009 4:52
"We recommend filtering access to port TCP 445 with a firewall." Duh...port 445 is one of the NetBios ports...and all of these ports should always be dissabled (many ISPs block these ports by default). These should ALWAYS be dissabled. It seems that most windows vulnrabilities come from things that microsoft includes as enabled by default...yet microsoft also recomends dissabling these same services. When I can, I manauly set the IP address, then dissable DHCP and DNS services. That way, I can dissable all internet access for SVCHOST. [ + quote]
Hopium (Newbie) 9 September 2009 12:42
its only effective from LAN so yeah unless he is on your netowrk its not as big a problem as they make it sound by excluding that info. [ + quote]
DK1979 (Newbie) 21 September 2009 7:03
Blocking with firewall don't work for me :( I only have the 1 pc so i have all the mediefiles setting turned off and have comodo firewall blocking. I worked fine the first week i after i saw this post but then i just started to get the BSOD again every 24 hours or so and thats REALLYYY annoying when my pc is on 24/7... Hope and update comes soon cause i'm on XP now and i really wanna go back to vista... (HATE XP) [ + quote] This message has been edited since posting. Last time this message was edited on 21 September 2009 7:04