EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

09.08.09

Vista 7 Less Secure Than Predecessors? Remote BSoD Now Possible!

Posted in Marketing, Microsoft, Security, Vista, Vista 7, Windows at 4:46 am by Dr. Roy Schestowitz

BSoD for Novell

Summary: Vista and Vista 7 can be crashed remotely due to a newly-disclosed vulnerability

SO, Microsoft rewrote some networking components for Windows Vista, which may sound like a positive thing. Security experts warned that Microsoft had simply abandoned mature, well-established BSD code and they were right. Does anyone remember those flaws in Windows 95 which enabled remote computer users to ‘nuke’ their friends and foes (causing their computer to BSoD) given only their IP address? Well, that’s back in Vista 7.

Freshly disclosed: “Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D.”

V. BUSINESS IMPACT

An attacker can remotly crash without no user interaction, any Vista/Windows 7 machine with SMB enable. Windows Xp, 2k, are NOT affected as they dont have this driver.

VI. SYSTEMS AFFECTED

Windows Vista/7 All (64b/32b|SP1/SP2 fully updated) and possibly Win Server 2008 as it use the same SMB2.0 driver (not tested).

Wow. That is some serious stuff. What might it do to the already-poor track record of Vista 7 in security? The Register wrote about the death of the “Vista” brand and it might be just a matter of time before Vista 7′s brand is tarnished to the same extent.

Microsoft spent an absolute fortune on the Vista brand. In marketing terms, the Vista campaign was huge by any standards, and was a big success insofar as raising awareness of Microsoft’s next-generation Windows offering was concerned.

Sounds familiar? Vista 7 is Vista all over again; the resemblance in terms of hype and marketing is uncanny.

Well, if “Windows 7″ ends up like Vista in the market, then Microsoft will at least have the “Mojave” brand. Microsoft (and its extended ecosystem) can no longer just throw trolls at the problem. The hundreds of millions of dollars spent on building brands and bullying critics [1, 2, 3, 4] do have a limited shelf life.

“I am currently testing the Beta of Win7 in a closed VM environment. I am considering deleting it. It’s actually worse than Vista. Multiple program crashes, refusal to install any software, naff looks and many other complaints.”

Moog

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email
  • Google Bookmarks
  • Ask
  • Digg
  • Mixx
  • Slashdot
  • StumbleUpon
  • Alltagz
  • BarraPunto
  • blinkbits
  • BlinkList
  • Bloglines
  • blogmarks
  • BlogMemes
  • Fark
  • Gwar
  • Klickts

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

7 Comments

  1. David Gerard said,

    September 8, 2009 at 5:04 am

    Gravatar

    I’ve posted this at Slashdot – please vote it up.

  2. Yuhong Bao said,

    September 8, 2009 at 12:13 pm

    Gravatar

    It is Vista/7, not “Vista 7″. This probably got confused by the fact that BN calls 7 “Vista 7″, which can easily be confused with “Vista/7″ which is different. I don’t use this name myself.

    Roy Schestowitz Reply:

    Those two are very similar. Underneath they are virtually the same and the above proves it.

    Yuhong Bao Reply:

    I would not go that far, but yes there are indeed many similarities between Vista and 7. In this case, the key similarity is that they both support SMB 2.0, which was a new version of the SMB protocol introduced with Vista.

    Roy Schestowitz Reply:

    Underneath, however, the same codebase is more or less shared. It’s not about this one flaw in particular.

    Yuhong Bao Reply:

    7 have many modifications to the Vista codebase. But yes indeed there is indeed many similarities to Vista in 7, certainly more similarities than Vista was compared to XP. Not that this makes Vista/7 bad IMO, but still.

  3. Yuhong Bao said,

    September 8, 2009 at 10:04 pm

    Gravatar

    Ars Technica reports that MS has issued a security advisory concerning this issue, saying 7 is not affected:
    http://arstechnica.com/microsoft/news/2009/09/new-flaw-can-remotely-crash-windows-vista-and-windows-7.ars

What Else is New


  1. Twist and Turn, Show Us Your Face

    A little poem about digital privacy



  2. The Race to the Bottom of Tech Rights

    Tech rights (not to be confused with Techrights the site) are going down the drain; people are made complicit using fear tactics, having been told a lot of lies about so-called contact-tracing borderline pseudoscience



  3. [Humour/Meme] OIN Wants Us to Make Peace With Software Patents

    The way things stand, OIN is really not interested in solving the patent problem the Free software way; rather, it's looking to impose its own way on the Free software community



  4. The Last Thing Open Invention Network (OIN) Needs Right Now is Public Association With a Patent Trolls' and Software Patents' Propaganda Site

    The Open Invention Network (OIN) seems to be choosing rather odd platforms; the above publisher, a judge-bashing software patents extremist, cannot possibly improve OIN's image (by association)



  5. The EPO's Misleading 'Studies' Are Just More of the Same Perception Management Routines

    EPO management pays sites to publish a bunch of EPO-controlled propaganda; and we've meanwhile noticed that almost everyone in the press team of the EPO has left (to be replaced by the President's confidant)



  6. Links 14/7/2020: More Laptop Models With GNU/Linux and WordPress 5.5 Beta 2 is Out

    Links for the day



  7. Microsoft Has Not Changed at All (Only the Shallow Marketing and Control of What's Left of the Media Has Changed)

    Microsoft wants everybody to come closer so that everybody can be crushed; the tactics are largely the same



  8. The Founder of Black Duck Still Works for Microsoft

    Black Duck‘s founder, Doug Levin from Microsoft, isn’t doing a terrific job hiding his real loyalties and ‘masters’



  9. IRC Proceedings: Monday, July 13, 2020

    IRC logs for Monday, July 13, 2020



  10. Links 14/7/2020: Claws Mail 3.17.6 and RSS Guard 3.7.0 Released

    Links for the day



  11. Microsoft Has Put the String “0xBIGBOOBS” Inside Linux (Kernel Driver for Microsoft's Windows-Only Proprietary Software, Formerly a GPL Violation); Reddit (Condé Nast) Bans You For Mentioning Such Things

    In this increasingly crazy atmosphere of mass sanctioning and permanent banning (removing everything or everyone that's perceived to be impolite) even "Linux" forums are banning people who point out Microsoft being a rogue corporation that's attacking GNU/Linux



  12. There's Apparently a New Boss (or Policy) at Red Hat/IBM

    The Fedora project doesn’t seem to care much about free speech, no matter one’s seniority in the project; as the person who relayed it to us has just put it, “they even eat their own.” (Longtime contributors) “He’s not a troll. He’s a contributor who rubbed some people the wrong way and now the banhammer is coming out. Fedora KDE was already collapsing and now it finally will.” (Note: Rex Dieter leads or led this project)



  13. There Cannot be Software Freedom Without Free Speech (Which is Nowadays Being Wrongly and Creatively Conflated With Racism)

    The time to speak out in favour of free speech is now; because the next phase typically involves removal (to be sold as "voluntary") of people whose political views are seen as professionally inadequate (recall what they did to Richard Stallman last September)



  14. [Humour/Meme] 'Offensive' Jokes

    Even humour itself is under attack now; people who cannot take/tolerate cartoons and banter are targeting the stand-up comedians, the cartoonists and so on



  15. The Media Does Not Like Talking About Linux (Which It Doesn't Understand Anyway). It Makes the News All About Linus.

    Just like back in May (or every other week) the news about Linux itself is being ignored and the subject is getting personified to make Linux seem rude and unruly



  16. Links 13/7/2020: Linux 5.8 RC5, Qt Creator Beta, Mexico Threatens GNU/Linux

    Links for the day



  17. [Humour/Meme] Embrace, Extend, and Curl

    The Curl project, a high-profile prisoner of GitHub, is again being 'embraced' by Microsoft (which already controls the project through GitHub)



  18. IRC Proceedings: Sunday, July 12, 2020

    IRC logs for Sunday, July 12, 2020



  19. [Humour/Meme] Half a Decade Has Passed and EPO Management Was Never Held Accountable for Illegal Surveillance

    A lot of people may no longer remember it, but the EPO can break privacy laws — as it still routinely does — with no consequences whatsoever



  20. Cleaning the Code

    War must go on; but it'll be more diverse and inclusive



  21. Why We Care About (Mis)Use of Language in Technology

    Software development communities are being divided over issues that would likely not tackle actual racism in any meaningful and profound way (just a symbolic way)



  22. Links 12/7/2020: KF6 Progress Report, GNUnet 0.13.1, Nano Becomes Default Terminal Text Editor in Fedora

    Links for the day



  23. They Always Worked for Microsoft (Directly and Indirectly) and Were Financially Rewarded for That

    Nat and Miguel, now put in charge of new weapons against software freedom (e.g. GitHub and NPM), have long worked for Microsoft (Nat was also an intern there); Techrights was right all along about this pair



  24. Red Hat Betrayed the Free Software Community With Its Software Patents' Stockpiling Drive and Then a Sale to the Biggest Software Patents Lobbyist

    In 2020 Red Hat is little but a shadow of IBM, whose patent policy continues to threaten software freedom and whose lobbying for software patents (under the guise of "HEY HI") persists uninterrupted; this growing problem oughtn't be unspeakable



  25. Politically Correct Tech

    This new video entitled “Politically Correct Tech” covers a topic we’ve spoken a great deal about



  26. [Humour/Meme] High on Production, Stoned on Pseudoscience

    All-time high ‘production’ levels at the European Patent Office (EPO) do not mean what they want people to think and what they try hard to hide



  27. Missing From EPO Management: Actual Scientists

    Political figures and opportunists with connections occupy top positions at top European agencies; this assures self-destructive policies that diminish progress and cushion corruption



  28. All Software Should Come With a Cheat Mode

    Cheat modes are useful for developers because they enable debugging, and are sometimes called "Debug mode"



  29. Linus Torvalds Checks If It's Still Inclusive Enough to 'Bash' Bad Technology (of the Company Whose TPM Pusher Has Just Successfully Pushed to Remove Many Words)

    In the age of endless control of language (e.g. large corporations pushing for "inclusive" language whilst earning billions from bombing of 'inferior' countries) we see that it is still possible to condemn corporations on technical grounds (at least if you’re Linus Torvalds)



  30. Even Before Microsoft Paid ('Joined') the Linux Foundation Jim Zemlin Had a Preference for Microsofters

    Even years before the Linux Foundation was receiving money from Microsoft it had a tendency to hire Microsoft’s people for key positions (a lot of people no longer remember that, but it’s still in the public record; it was Jim Zemlin who approached if not chased Mr. Ramji to offer him the job and the colleagues saw no problem with that)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts