SMB 2.0 zero-day affects Windows

By Stephen Withers
Thursday, 10 September 2009 05:52

Security

A vulnerability in certain Microsoft SMB implementations has been made public before the company has had a chance to fix it.

A vulnerability in the SMB implementation in certain recent Microsoft operating systems has been publicly disclosed, along with a proof of concept exploit.

Vista and Windows Server 2008 are affected, but not 2000, XP, Server 2008 R2 or Windows 7, the company stated.

However, there are some reports that the SMB 2.0 code in the widely distributed Windows 7 Release Candidate (build 7100) is vulnerable.

According to McAfee officials, the issue involves the handling of malformed SMB 'negotiate protocol request' queries. An exploit could cause remote code execution or denial of service.

Microsoft concedes that a successful exploit could give an attacker complete control over a system, but notes that "Most attempts to exploit this vulnerability will cause an affected system to stop responding and restart."

As temporary measures, Microsoft officials suggest disabling SMB v2 completely (achieved by editing a registry key), or blocking ports 139 and 445 at the firewall.

The downside of these approaches is that the first prevents all SMB v2 communication, while the second interferes with a variety of applications and services including applications that use SMB, file and print sharing, Group Policy, and Systems Management Server.

The issue is being investigated by Microsoft, which says it "will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs."

Tags:

Please enable JavaScript in your browser to post your comment!

SPONSORED PRESS RELEASES

Independent Research Shows High Customer Satisfaction for NetSuite
NetSuite Inc. (NYSE: N), a leading vendor of cloud computing business management software suites, today announced that technology advisory firm Nucleus Research has completed an independent survey of NetSuite customers and concluded that NetSuite customers are highly satisfied, l...
Websense Security Labs Reports ‘User Trust’ Targeted Attacks; Over 1 in 10 ‘Top Search’ Results Categorised as Malware; Increased Focus on Web 2.0
ComOps Scoops Leading Position in SmartCompany Dun and Bradstreet IT Company Growth List
F5 APAC CIO Survey Underscores Need for Proactive Approach to Application Delivery and Cloud Computing
F5 Delivers Next-Generation Application Delivery Services Giving Enterprises More Control with Context-Aware Networking
WatchGuard Enhances Security Software
engin Launches Hosted Phone System for Australian Small Business

Featured IT jobs

Melbourne
Senior Software consultant
Senior Software consultant responsible for providing support on a unique enterprise level software solution for various customers, Melbourne based!
Skills Tags:   IT  ITIL  Linux  Management  RFP  Unix
Sydney
Database Developer - SQL Server 2005
This financial client has an excellent opportunity for an experienced Database Developer. SQL 2005 Some Schema design + SSIS & SSRS - 80k+super
Skills Tags:   Design  Development  SQL  SQL Server
Melbourne
Hyperion Planning Consultant
Massive Hyperion Project requires a Hyperion Planning Architect / Lead Developer - drive home a huge Hyperion solution.
Skills Tags:   Architect  Design  Development  Hyperion
Sydney
OBIEE BI/DW Consultant
OBIEE Consultant to work on a very large greenfield OBIEE implementation to date to work end-to-end with excellent modelling & BI Server skills
Skills Tags:   Business Intelligence  Cognos  Hyperion  Informatica  Oracle  SQL

Editors Picks

Stories you may have missed

How YouTube is killing mobile networks, and what to do about it

Microsoft Surface slips into Australia

Wikileaks is back from the brink
 

What iTWire offers for free

E - mail News SMS Headlines Desktop Alerts News Feeds Job Alerts Technology Events Press-Releases