Most Popular
| Top Stories | Commented | Featured |
ATI Radeon HD 5570 Review featured
TechSpot's PC Buying Guide: Always up to date! featured
Windows 7 overtakes Vista among enthusiasts, plus other interesting trends
Microsoft rumored to showcase Windows Mobile 7 next week with Zune-like interface
IBM launches next generation Power 7 CPU, servers
AMD's six-core Thuban to have feature like Turbo Boost?
TS Community
| User Gallery | Recent Discussion |
 Dsc00262 by Mikymjr |  Tatooed Mars by luvhuffer |
 I_Think by John Williams |  dsktp4 by d3ath |
TechSpot RSSIT Security
First zero-day Windows 7 flaw published; not a great risk
Windows 7 has brought a lot to the table, not the least of which is improved security architecture that helps make it safer than previous versions. It isn't impenetrable though, and the first zero-day exploit for the new OS was discovered earlier this week.
A flaw buried inside the SMB protocol could cause a system lockup if a user attempts to browse shares on a "malicious" server. While the flaw is unpatched, there are already several methods posted on how to avoid it -- such as filtering the ports used by SMB, disabling file sharing, and not browsing shares on remote machines.
Keep in mind, the scope of this flaw is fairly limited. Most firewalls already block the standard ports used by SMB and Windows File Sharing, so users must physically trigger it, which will leave them open to a system lockup at most -- as opposed to system compromise. It is probably more of a concern to networks relying on Windows File Sharing, and potential outsiders causing havoc.
Either way, it doesn't do much to detract from the positive news surrounding Windows 7's debut.
A flaw buried inside the SMB protocol could cause a system lockup if a user attempts to browse shares on a "malicious" server. While the flaw is unpatched, there are already several methods posted on how to avoid it -- such as filtering the ports used by SMB, disabling file sharing, and not browsing shares on remote machines.
Keep in mind, the scope of this flaw is fairly limited. Most firewalls already block the standard ports used by SMB and Windows File Sharing, so users must physically trigger it, which will leave them open to a system lockup at most -- as opposed to system compromise. It is probably more of a concern to networks relying on Windows File Sharing, and potential outsiders causing havoc.
Either way, it doesn't do much to detract from the positive news surrounding Windows 7's debut.
User Comments (5)
Post a comment| Kibaruk on November 13, 2009 2:51 PM | Mmm indeed it doesn't, flash news was way
worse. This can be easily repaired, and we will probably see a soon enough security patch on next updates. |
| JudaZ on November 13, 2009 3:56 PM | not really a security issue...more a bug, that the system locks up.. |
| Guest on November 13, 2009 5:53 PM | So you've got one on win 7> PLZ Give the team a break.. Windows 7 is by far the best OP system released to date!! & I'm sure all will be sorted in time  Bet you have wet farted once or twice: but did you POST it .COM {@v@} Regards Trev Newcastle... |
| JudaZ on November 13, 2009 6:26 PM | Guest said: Dont see what you are complaing about,
there is a flaw...this article describes the problem... and
also say its not a big deal.So you've got one on win 7> PLZ Give the team a break.. Windows 7 is by far the best OP system released to date!! & I'm sure all will be sorted in time Bet you have wet farted once or twice: but did you POST it .COM {@v@} Regards Trev Newcastle... Still good to get a heads up on the issue, how small the problem now might be its stil worth a mention. ..Windows 7 kicks ass by the way.. :o) |
| IvanAwfulitch on November 14, 2009 3:30 AM | Considering the potential flaws that it could have had, this
is like a drip of water hitting them in the face. Easily
wiped away with a towel or even their shirt sleeve. A system
lock up? "OH NO I HAVE TO RESTART MY COMP- oh wait...hey
that's not so bad. I just won't do that again." A quick Patch Tuesday and you'd hardly have known this flaw ever existed. Bang up job MS! The OS has been out for a while and hardly any major flaws detected yet! Keep up the good work. |
