Is this the first zero-day security vulnerability in Microsoft's new operating system? According to ComputerWorld, Microsoft has confirmed the presence of a flaw through which attackers could crash Windows 7 and Windows Server 2008 R2 machines.
Reportedly, exploiting the flaw can bog down those operating systems "so thoroughly that the only recourse is to manually power off the computers." Microsoft's security advisory says the flaw has to do with the Server Message Block (SMB) protocol, which is used for file sharing in Windows networks, among other things.
Microsoft spokesperson Dave Forstrom told ComputerWorld, "Microsoft is aware of public, detailed exploit code that would cause a system to stop functioning or become unreliable. . . . The company is not aware of attacks to exploit the reported vulnerability at this time."
ComputerWorld also quotes Microsoft as saying attackers could exploit the vulnerability by tricking someone into opening a malicious address from "any browser." The attacker could then issue "malformed SMB packets" to crash the system. Microsoft hasn't committed to releasing a fix within a certain time frame yet, although it says users who wish to err on the side of caution can block TCP ports 139 and 445 in their firewalls.
|Fractal's double-wide Node 804 case can swallow a dozen drives||42|
|Friday Night Shortbread||13|
|Friday night topic: Where is that plane?||94|
|WSJ: Microsoft, Google pressure Asus into shelving dual-OS tablet||30|
|Deal of the week: Discounted tablets, wireless keyboards, cheap SSDs, and more||12|
|Xbox One tightens gap with PS4 in U.S. shipments||44|
|Amazon Prime gets a price hike; Google Drive gets a price cut||46|
|Somehow this translates into a dual-Hawaii card, right?||97|
|The uncompressed audio sounds AMAZING over my $5000 speaker wire. It's truly worth every gigabyte.||+66|