Summary: Microsoft ‘secures’ its latest operating systems in the face of critical flaws not by patching by though disablement
OVER the past week, having glanced at “Microsoft” news, only 2 sets of headlines mentioned Vista (compared to 16 about “Windows 7″), in both cases regarding serious security issues. Microsoft still has not patched a severe problem that enables remote BSoD and complete hijack.
According to IDG, Microsoft is still working on it.
Windows Vista users (and IT folks taking care of Server 2008 computers) should watch out for a new security hole involving Windows file sharing. A remote attacker could assume full control of a vulnerable computer by exploiting a flaw in the SMB protocol for Windows file and printer sharing. Most home users should already have a firewall in place that blocks attempts to reach the ports that SMB uses (139 and 445). Microsoft may have a patch available by the time you read this, but as of this writing no fix was yet available. For more details, see Microsoft’s security advisory.
It may take weeks to patch.
Microsoft has released an automated tool to disable its Server Message Block 2 (SMB2) protocol in Windows Vista and Windows Server 2008. SMB2 has a flaw that Microsoft is preparing to patch in the coming weeks.
Attack code is still looming according to older reports and Microsoft’s interim ‘fix’ is disablement of an entire feature, a la XP. Microsoft deceived about Vista being secure and it is already the same with Vista 7. █