AfterDawn: Tech news
AfterDawn > News > Windows flaw spells BSOD risk to newer operating systems

Windows flaw spells BSOD risk to newer operating systems

Written by James Delahunty @ 08 Sep 2009 11:20 User comments (4)

Windows flaw spells BSOD risk to newer operating systems Concept code has been published that takes advantage of an unpatched vulnerability in Microsoft's implementation of Server Message Block (SMB), which is a protocol used in File and Printer sharing over a network. Microsoft's Windows Vista, Windows Server 2008 and Windows 7 are all currently affected by the unpatched vulnerability, while Windows 2000 and Windows XP are not affected by it at all.
The concept exploit uses the flaw to force Windows machine into the infamous Blue Screen of Death (BSOD). According to security researchers at the Internet Storm Center (ISC), the problem is defeated by using basic firewall protection. "The exploit needs no authentication, only file sharing enabled with one packet to create a BSOD," ISC researchers warn. "We recommend filtering access to port TCP 445 with a firewall."



Microsoft issued a number of security updates during the day to address some serious vulnerabilities in the Windows operating systems. The SRV2.SYS (SMB) file vulnerability that can cause a BSOD was not included, likely due to the timing of the exploit code's release, but Microsoft did reveal that it is investigating the issue.

<Netgear launches new EVA2000 digital set-top box >U.S. trade panel to investigate continued infringement in Funai case
Previous Next  

4 user comments

19.9.2009 00:40
bobiroc
Send private message to this user
Senior Member

Quote:
 the problem is defeated by using basic firewall protection
And those that do not use a firewall either in the OS or by some piece of hardware like a router with a firewall are idiots. Once again make a big deal about a vulnerability that will only affect those that have no regard for security. They headline should read "Your house will could be robbed easier if you leave your front door wide open"

29.9.2009 04:52
KillerBug
Send private message to this user
AfterDawn Addict

"We recommend filtering access to port TCP 445 with a firewall."

Duh...port 445 is one of the NetBios ports...and all of these ports should always be dissabled (many ISPs block these ports by default). These should ALWAYS be dissabled.

It seems that most windows vulnrabilities come from things that microsoft includes as enabled by default...yet microsoft also recomends dissabling these same services.

When I can, I manauly set the IP address, then dissable DHCP and DNS services. That way, I can dissable all internet access for SVCHOST.

39.9.2009 12:42
Hopium
Send private message to this user
Member

its only effective from LAN so yeah unless he is on your netowrk its not as big a problem as they make it sound by excluding that info.

421.9.2009 07:03
DK1979
Send private message to this user
Newbie

Blocking with firewall don't work for me :(

I only have the 1 pc so i have all the mediefiles setting turned off
and have comodo firewall blocking.

I worked fine the first week i after i saw this post but then i just started to get the BSOD again every 24 hours or so and thats REALLYYY annoying when my pc is on 24/7...

Hope and update comes soon cause i'm on XP now and i really wanna go back to vista... (HATE XP)

This message has been edited since its posting. Latest edit was made on 21 Sep 2009 @ 7:04

Comments have been disabled for this article.

Latest news

VLC hits milestone: over 5 billion downloads VLC hits milestone: over 5 billion downloads (16 Mar 2024 4:31)
VLC Media Player, the versatile video-software powerhouse, has achieved a remarkable feat: it has been downloaded over 5 billion times.
1 user comment
Sideloading apps to Android gets easier, as Google settles its lawsuit Sideloading apps to Android gets easier, as Google settles its lawsuit (19 Dec 2023 11:09)
Google settled its lawsuit in September 2023, and one of the settlement terms was that the way applications are installed on Android from outside the Google Play Store must become simpler. In the future, installing APK files will be easier.
8 user comments
Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets (06 Jun 2023 9:19)
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Neato, the robot vacuum company, ends its operations Neato, the robot vacuum company, ends its operations (02 May 2023 3:38)
Neato Robotics has ceased its operations. American robot vacuum pioneer founded in 2005 has finally called it quits and company will cease its operations and sales. Only a skeleton crew will remain who will keep the servers running until 2028.
5 user comments
How to Send Messages to Yourself on WhatsApp How to Send Messages to Yourself on WhatsApp (20 Mar 2023 1:25)
The world's most popular messaging platform, Meta-owned WhatsApp has enabled sending messages to yourself. While at first, this might seem like an odd feature, it can be very useful in a lot of situations. ....
18 user comments

Reviews

Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets Roomba Combo j7+ review - Clever trick allows robot vacuum finally to tackle home with rugs and carpets
Roomba Combo j7+ is the very first Roomba model to combine robot vacuum with mopping features. And Roomba Combo j7+ does all that with a very clever trick, which tackles the problem with mopping and carpets. But is it any good? We found out.
Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner Review: Samsung Jet Bot 90 AI+ - a high-end robot vacuum cleaner
Samsung's Jet Bot 90 AI+ is a top-class robot vacuum cleaner that can avoid obstacles and empty its own dust container. Here we review the product.
1 user comment
Samsung Jet Bot 80+ review - excellent robot vacuum cleaner Samsung Jet Bot 80+ review - excellent robot vacuum cleaner
We review Samsung's Jet Bot 80+ robot vacuum cleaner over a period of three months.
1 user comment

Guides

GUIDE: Wi-Fi speeds are slow? Here are some tips GUIDE: Wi-Fi speeds are slow? Here are some tips
Having problems with Wi-Fi speed and stability at home? Here are some tips to follow to alleviate the issues.
1 user comment
HOWTO: Install Netflix App on rooted Android device HOWTO: Install Netflix App on rooted Android device
'This app is no longer compatible with your device. Contact the developers for more info.' If you are getting this message from Google Play when trying to install Netflix, then maybe this little guide can help you.
HOWTO: Boot Android device into Safe Mode HOWTO: Boot Android device into Safe Mode
Are you having trouble with your Android device? If you find that your device has become sluggish, is freezing, takes too long to boot or any of a host of other performance concerns, you may want to boot into Safe Mode.
What happens if you don't update Android? What happens if you don't update Android?
Sometimes it can be tempting to avoid updating to a new Android version. What happens if you decide to delay major updates to the OS?
Guide: Phone battery drains quickly - how to fix (iPhone / Android) Guide: Phone battery drains quickly - how to fix (iPhone / Android)
In this guide, we go through the most typical reasons for rapid battery drain with phones, and look at potential reasons or solutions.

News archive

Sections:

Follow us:

© 1999-2024 AfterDawn Oy. All rights reserved
Back to Top ⇧
AfterDawn is powered by Powered by UpCloud