Windows flaw spells BSOD risk to newer operating systems

Written by James Delahunty @ 08 Sep 2009 11:20 User comments (4)

Concept code has been published that takes advantage of an unpatched vulnerability in Microsoft's implementation of Server Message Block (SMB), which is a protocol used in File and Printer sharing over a network. Microsoft's Windows Vista, Windows Server 2008 and Windows 7 are all currently affected by the unpatched vulnerability, while Windows 2000 and Windows XP are not affected by it at all.

The concept exploit uses the flaw to force Windows machine into the infamous Blue Screen of Death (BSOD). According to security researchers at the Internet Storm Center (ISC), the problem is defeated by using basic firewall protection. "The exploit needs no authentication, only file sharing enabled with one packet to create a BSOD," ISC researchers warn. "We recommend filtering access to port TCP 445 with a firewall."

Microsoft issued a number of security updates during the day to address some serious vulnerabilities in the Windows operating systems. The SRV2.SYS (SMB) file vulnerability that can cause a BSOD was not included, likely due to the timing of the exploit code's release, but Microsoft did reveal that it is investigating the issue.

<Netgear launches new EVA2000 digital set-top box >U.S. trade panel to investigate continued infringement in Funai case

4 user comments

19.9.2009 00:40

bobiroc

Send private message to this user

Senior Member

Quote:
the problem is defeated by using basic firewall protection

And those that do not use a firewall either in the OS or by some piece of hardware like a router with a firewall are idiots. Once again make a big deal about a vulnerability that will only affect those that have no regard for security. They headline should read "Your house will could be robbed easier if you leave your front door wide open"

29.9.2009 04:52

KillerBug

Send private message to this user

AfterDawn Addict

"We recommend filtering access to port TCP 445 with a firewall."

Duh...port 445 is one of the NetBios ports...and all of these ports should always be dissabled (many ISPs block these ports by default). These should ALWAYS be dissabled.

It seems that most windows vulnrabilities come from things that microsoft includes as enabled by default...yet microsoft also recomends dissabling these same services.

When I can, I manauly set the IP address, then dissable DHCP and DNS services. That way, I can dissable all internet access for SVCHOST.

39.9.2009 12:42

Hopium

Send private message to this user

Member

its only effective from LAN so yeah unless he is on your netowrk its not as big a problem as they make it sound by excluding that info.

421.9.2009 07:03

DK1979

Send private message to this user

Newbie

Blocking with firewall don't work for me :(

I only have the 1 pc so i have all the mediefiles setting turned off
and have comodo firewall blocking.

I worked fine the first week i after i saw this post but then i just started to get the BSOD again every 24 hours or so and thats REALLYYY annoying when my pc is on 24/7...

Hope and update comes soon cause i'm on XP now and i really wanna go back to vista... (HATE XP)

This message has been edited since its posting. Latest edit was made on 21 Sep 2009 @ 7:04

Comments have been disabled for this article.

	Google has a new domain: G.AI (08 Jan 2026 5:58) Google has acquired a completely new web address, G.AI. The domain redirects straight to Google Search's AI Mode tab.
	Roborock unveils robot vacuum that climbs stairs - and cleans them at the same time (06 Jan 2026 12:31) Roborock Saros Rover is a robot vacuum introduced by Roborock in January 2026 that is capable of climbing stairs. 1 user comment
	Asus to quit smartphone business - at least for now (04 Jan 2026 7:54) Taiwanese company Asus has announced that it will not be launching any new smartphone models in 2026.
	Maker of Roombas, iRobot, sold to China (15 Dec 2025 4:18) Struggling American robot vacuum manufacturer iRobot has been sold to China under pre-arranged Chapter 11 deal.
	Pebble Index 01 smart ring: Disposable, does not track health (09 Dec 2025 2:09) The legendary smartwatch brand Pebble is expanding into smart rings with the new Pebble Index 01 ring. The ring does not track the wearer's health but instead functions as an audio recorder.

Windows flaw spells BSOD risk to newer operating systems

4 user comments

Latest news

Reviews

Guides

News archive

Subscribe

Sections:

Follow us:

	Review: Roborock Saros Z70 - robot vacuum with an arm In out in-depth review of Roborock Saros Z70 we put the robot vacuum through a 3 month test period, where we observed its work in normal home. The sci-fi -like arm of Z70 was a little bit disappointing, due its limited functionality.
	Roborock Saros 10 review - Great, but not perfect We tested Roborock Saros 10 robot vacuum for more than two months in order to see whether it is really worth its hefty price tag. The mopping, self-emptying Saros 10 was mostly great, even perfect. But its object avoidance was bit disappointing. 1 user comment
	Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum We put the Roborock S8 MaxV Ultra through a very, very long review process. The $1800 mopping robot vacuum is almost perfect, but its obstacle avoidance was surprisingly bad, considering the price - and compared to its competitors.

	Does your phone rattle? Here's why it happens When you shake your phone and hear a light rattle, clatter, or jingle, it's likely not broken. The culprit is probably the optical image stabilization (OIS) system in your phone's camera, meaning everything is functioning as it should. 2 user comments
	Guide: Is Your Wi-Fi Sluggish or Slow? Here's How to Fix Do you have problems with you Wi-Fi? Slow connection or is it cutting off constantly? This guide aims to remedy these problems. 1 user comment