Windows 7 allows remote blue-screen attacks [U]
updated 11:50 am EDT, Tue September 8, 2009
Windows 7 returns remote BSOD
(Updated with Microsoft advisory) Windows 7 when it ships next month will be vulnerable to an attack that hasn't been possible since 1999, a new vulnerability found by a security researcher shows. Sending a deliberately malformed network negotiation request can force a Windows 7 system into a page fault that triggers a "blue screen of death" error, even without the user's help in launching the code. The attack affects both 32-bit and 64-bit versions of the OS.
The flaw stems from the rewritten network stack inherited from Vista, which itself has also been discovered as vulnerable to the attack. Although Microsoft had patched the exploits out of Windows 2000 and XP, the complete overhaul is now thought to reintroduce a problem that hasn't existed since earlier Windows releases.
Microsoft has been told of the exploit but hasn't yet released a patch; users of the newer operating systems are being asked to switch off the Server Message Block (SMB) feature or block its access entirely until a fix is available.
The attack comes at a particularly inopportune time for Microsoft, as it has been trying to market Windows 7 as its most secure release and is in the rare circumstance of having to compete against another major operating system release, Mac OS X Snow Leopard. Apple's software isn't necessarily more secure but typically hasn't been vulnerable to remote attacks that disable the system and has gotten more secure with the latest release, whose 64-bit memory space prevents certain kinds of memory attacks from working properly.
Update: Microsoft has issued an advisory that claims the finished versions of Windows 7 and Windows Server 2008 R2 aren't affected, but Windows Vista remains compromised.
New Slogan:
09/08, 12:44pm reply
"The Windows Vista look you love, the Windows ME bugs you crave!"
jpellino
Fresh-Faced Recruit
Joined: Oct 1999
New Slogan part deux:
09/08, 01:14pm reply
"The paying for betaware which you remember so fondly from Vista!"
climacs
Fresh-Faced Recruit
Joined: Sep 2001
Without user intervention
09/08, 01:20pm reply
Without user intervention, action, heck just looking at the site screws up Windows 7? What a POS! LOL
slapppy
Fresh-Faced Recruit
Joined: Mar 2008
Works a treat
09/08, 01:22pm reply
I just tested this with some python script from my Mac Mini, BSOD'ed my Windows 7 laptop the moment I ran the script the first time. Works like a champ. lol.
This appears to not work over a WAN like the internet, but works on the LAN side. Still has use though and I can see 'playing' with some of our Win Vista/7 users at work :)
DeezNutts
Fresh-Faced Recruit
Joined: Apr 2008
All I can say is...
09/08, 01:28pm reply
Mr. Strat
Fresh-Faced Recruit
Joined: Jan 2002
New Slogan part trois:
09/08, 01:29pm reply
"Windows 7, because Testudo loves a BSOD"
ricardogf
Fresh-Faced Recruit
Joined: Jan 2003
Hmmm
09/08, 02:06pm reply
That makes me want to keep my wireless net open. Anyone who abuses my bandwidth with get a swift BSOD care of me.
gitcypher
Fresh-Faced Recruit
Joined: Jul 2007
Awsome!
09/08, 02:17pm reply
Does this mean, we get to launch trumpet a couple of times more again? ohh please, someone remake trumpet again!
lrojas
Fresh-Faced Recruit
Joined: Oct 2007
Wrong
09/08, 02:27pm (1 reply) reply
Windows 7 when it ships next month will be vulnerable to an attack that hasn't been possible since 1999, a new vulnerability found by a security researcher shows.The flaw stems from the rewritten network stack inherited from Vista, which itself has also been discovered as vulnerable to the attack.
Um, if it occurs in Windows Vista, doesn't that make the whole statement false? It's been possible to do this, apparently, since 2007 (or 2006, whenever Vista came out).
testudo
Fresh-Faced Recruit
Joined: Aug 2001
Same old leaky Windows
09/09, 12:09am reply
"Windows 7 when it ships next month will be vulnerable to an attack that hasn't been possible since 1999, a new vulnerability found by a security researcher shows," Electronista reports.
http://www.electronista.com/articles/09/09/08/windows.7.returns.remote.bsod/
hardmanb
Fresh-Faced Recruit
Joined: Jul 2007