E-Mail:
Get our new Windows 7 eBook (PDF) for $7 with 70+ Tips. Download Now!

Windows 7 Not Vulnerable To SMB Flaw

Wednesday, September 9th, 2009
by Ron Schenone

Microsoft was quick to issue an advisory after first reports suggested that a Windows flaw could attack both Windows Vista and Windows 7. After the flaw was discovered, Microsoft was quick to note that Windows 7 was NOT one of the operating systems that could be attacked. In an advisory the company stated the following information:

General Information

Executive Summary

Microsoft is investigating new public reports of a possible vulnerability in Microsoft Server Message Block (SMB) implementation. We are not aware of attacks that try to use the reported vulnerabilities or of customer impact at this time.

We are actively working with partners in our Microsoft Active Protections Program (MAPP) to provide information that they can use to provide broader protections to customers.

Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.

Microsoft is concerned that this new report of a vulnerability was not responsibly disclosed, potentially putting computer users at risk. We continue to encourage responsible disclosure of vulnerabilities. We believe the commonly accepted practice of reporting vulnerabilities directly to a vendor serves everyone’s best interests. This practice helps to ensure that customers receive comprehensive, high-quality updates for security vulnerabilities without exposure to malicious attackers while the update is being developed.

The article goes on to state that neither Windows 7 nor Windows XP have any issues with the SMB problem.

Comments welcome.

Source.

Tags
Categories

2 Comments

the oracle

September 9th, 2009
at 10:34am

Kind of makes you wonder who is telling the truth, since I spoke a couple of days ago about this, and I cited and article in slashdot, and one on Betanews, both saying that it was true.

Microsoft has been known to deny something, then very quietly resolve the problem, under the guise of something else.

If the articles on slashdot and Betanews were not true, I’d think we’d be seeing some sort of legal response from Microsoft, instead of a PR.

Ryan Farmer

September 10th, 2009
at 9:56pm

Microsoft has a different methodology for patching Windows than Linux and the free software stack have for patching their stuff.

The Linux methodology is that anything that could potentially be exploitable is tagged as having security implications and is fixed, while Microsoft usually waits til there is some kind of attack code out there *already* infecting Windows systems.

That’s the reason why they try to tell you that open source software has more security bugs, because open source software tends to fix things that Microsoft lets go for years and only fixes when they can no longer hide the problems.

What Do You Think?

 

Posted Recently

Walmart Black Friday Ad Has Computer Bargains, While Supplies Last

Attention Facebook Users - Don’t Click da’ Button Baby!

Dell Still Having Problems - Shares Plummet - Losing Marketshare

eBay Web Glitch Renders Site Unuseable

Microsoft Seeks Partners To Fight Against The Google Empire

Tronix Country - Another BlueHippo? You Decide

Is Google Going To Reinvent The Netbook Or Just Improve On The User Experience?

The Next Tweet You Receive Could Be An Advertisement

I’m A Jerk And I Steal From Others - I Don’t Think So!

Canonical [Ubuntu] + Google = Working Together To Bring More Choice To The Consumer

HDTVs - Both LCD & Plasma Popular - But What Happened To DLP?

Google Chromium OS - It Is For Real! And It Is Linux!

AOL To Employees: Raise Your Hand If You Would Like To ‘Volunteer’ Or Be Fired!

Dell Closing Down North Carolina Facility - 1400 To Lose Their Jobs

California Passes First Standards For Energy Thirsty Televisions

MS Office 2010 Beta - Refusal To Install After Using MS Office 2010 Technical Preview

Microsoft Office 2010 Beta Available For Public Download

Diskeeper Professional 2010 - First Look - Reviewed

Don’t Become A Victim Of Web Loyalty Or Coupon Saving Scams

Notebook Reliability - Asus The Best And HP The Worst - What Do You Think?

Verizon To AT&T: The Truth Hurts - Our 3G Coverage Is Better Than Yours!

Question For You: What Is The Best Tutorial, Manual, Or Book For Windows 7 Users?

48% Would Pay For Online News While 80% Would Not - Say What?

Russia Bans Modern Warfare 2 - Recalls All Copies

Walmart - This Holiday Season Will Be Flat For Sales

Sezmi - Will This Service Replace Your Cable Or Satellite Company?

Asus And Toshiba Could Merge And Become The #3 PC Maker

Food Companies Really Like Blogging Moms

FTC To BlueHippo: You Have Duped 35,000 Consumers And That Is Enough!

Security Updates As Of November 15, 2009

Google vs. Murdoch - Once Again The Plot Thickens

Best Buy Black Friday Desktop Computer Sale With Printer All For $299

The Google Puzzle - More Pieces Coming Our Way - Maybe Even An OS Within A Week?

CompUSA & Circuit City Are Being Resurrected From The Dead

Can We Accurately Compare XP, Vista and Windows 7 When It Comes To Performance?

Can You Trust The Windows 7 Compatibility Report When Doing An Upgrade?

How Long Does It Take To Upgrade Windows 7 From One Version To Another? How About 10 Minutes

AMD Gets $1.25 Billion From Intel - Settlement Ends Years Of Litigation

Thinking Of Buying A Blu-ray Player? Read This First

Westinghouse 32″ LCD - HDTV 720p For $246? Target Will Have It On Black Friday

45 queries / 0.654 seconds.