DOWNLOAD: Best tool to repair Windows problems & optimize system performance | Best driver update software for your PC
 
Results 1 to 3 of 3

Thread: Windows Security Bug Revealed After Microsoft Patch Tuesday

  1. #1
    leofelix is offline Member
    Join Date
    Oct 2008
    Location
    Italy
    Posts
    1,668

    Default Windows Security Bug Revealed After Microsoft Patch Tuesday

    By Brian Prince



    A security researcher discovers a bug that could be used to trigger a crash in Windows 7 and Windows Server 2008 Release 2.

    Researcher Laurent Gaffie posted proof-of-concept code as well as information about the flaw on his blog and the Full Disclosure mailing list Nov. 11. The exploit takes advantage of the implementation of SMB (Server Message Block). An attacker can use the bug to remotely crash Windows 7 and Windows Server 2008 R2 on a LAN or via Internet Explorer.

    A Microsoft spokesperson said the company is looking into the matter.


    Read more

    Technical details can be found here



  2. #2
    leofelix is offline Member
    Join Date
    Oct 2008
    Location
    Italy
    Posts
    1,668

    Default

    Workaround

    Block TCP ports 139 and 445 at the firewall. Impact of Workaround: Several Windows services use the affected ports.


    Microsoft Security Advisory (977544): Vulnerability in SMB Could Allow Denial of Service

  3. #3
    seti is offline Member
    Join Date
    Nov 2008
    Posts
    1,923

    Default

    These DOS attacks are very frequent now. I am wondering if MS are researching their patches as well as they used to do so as it seems to me that recently as soon as they release a patch they have to release another to patch the patch.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22