Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

Microsoft Confirms First Windows 7 Zero-Day Bug

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread
Home » Discuss » DU Groups » Computers & Internet » Computer Help and Support Group Donate to DU
 
RoyGBiv Donating Member (1000+ posts) Send PM | Profile | Ignore Mon Nov-16-09 10:02 PM
Original message
Microsoft Confirms First Windows 7 Zero-Day Bug
By Gregg Keizer Framingham | Monday, 16 November, 2009

Microsoft late has confirmed that an unpatched vulnerability exists in Windows 7, but is downplaying the problem, saying most users would be protected from attack by blocking two ports at the firewall.

In a security advisory, Microsoft acknowledged that a bug in SMB (Server Message Block), a Microsoft-made network file- and print-sharing protocol, could be used by attackers to cripple Windows 7 and Windows Server 2008 R2 machines.

The zero-day vulnerability was first reported by Canadian researcher Laurent Gaffie last Wednesday, when he revealed the bug and posted proof-of-concept attack code to the Full Disclosure security mailing list and his blog. According to Gaffie, exploiting the flaw crashes Windows 7 and Server 2008 R2 systems so thoroughly that the only recourse is to manually power off the computers.

...

Microsoft said it may patch the problem, but didn't spell out a timetable or commit to an out-of-cycle update before the next regularly-scheduled Patch Tuesday of December 8. Instead, the company suggested users block TCP ports 139 and 445 at the firewall. Doing so, however, would disable a host of critical services, including network file-sharing and IT group policies.

http://computerworld.co.nz/news.nsf/scrt/E9592E1A9719742ACC25766F0066B38D


As a Slashdot wonk observed, this block needs to be on *outgoing* traffic, not incoming.
Refresh | 0 Recommendations Printer Friendly | Permalink | Reply | Top
canetoad Donating Member (1000+ posts) Send PM | Profile | Ignore Wed Nov-18-09 02:10 AM
Response to Original message
1. An amazingly gracious post Roy
I would have gone :rofl::rofl::rofl::rofl: but you just quietly stated the facts. (Didya hear about the NetBios packets?)

Those who do not learn from history are doomed to repeat it. Give Windows 7 at least 6, 8 or 10 months to be sorted out, patched and service-packed and then consider installing it.
Printer Friendly | Permalink | Reply | Top
 
RoyGBiv Donating Member (1000+ posts) Send PM | Profile | Ignore Wed Nov-18-09 09:32 AM
Response to Reply #1
2. Yes, well ...
Edited on Wed Nov-18-09 09:44 AM by RoyGBiv
Delayed gratification isn't in our culture. Immediate frustration is.

And, Microsoft has done such a good job of convincing the public that it's a privilege to be a Beta tester that I know I'm just spitting into the wind to try to change minds at this stage.

It's like I said in Linux thread recently (and have said before). Except with certain software I know intimately, I don't update to the latest and greatest until it has been out in the wild awhile. Issues always arise, no matter the platform, and I prefer to let those brave souls who don't mind navigating that jungle find out what the major ones are before I take the plunge.

There's nothing worse than spending days or weeks customizing and hardening the security on a system only to find out there's an inherent flaw in some component of it that either undoes everything or makes irrelevant everything I did. I've been avoiding Karmic Koala, and have avoided all non-Long Term Support (LTS) releases, for this reason. Sure enough, a few issues are starting to arise with Ubuntu's latest release ... no show stoppers yet, but ya never know.
Printer Friendly | Permalink | Reply | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Tue Apr 30th 2024, 08:16 AM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » DU Groups » Computers & Internet » Computer Help and Support Group Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC