Flaw and Exploit in Latest Windows and Windows Server? Check.

Dr. Roy Schestowitz

2009-09-30 00:19:06 UTC
Modified: 2009-09-30 06:23:34 UTC

Summary: A critical vulnerability lacking any real patch has now an attack code which puts in jeopardy Windows Vista Service Pack 1, Service Pack 2, even Windows 2008 Service Pack 1 (soon 2)

For context, see: Microsoft 'Fixes' Windows Vista and Windows Server 2008 by Disabling Entire Features

Now comes this:

● Exploit published for SMB2 vulnerability in Windows

A fully functional exploit for the security vulnerability in the SMB2 protocol implementation has been published. It can be used to discover and attack vulnerable Windows machines remotely. By integrating the exploit into the Metasploit exploit toolkit, attackers have access to a wide range of attack options, ranging from issuing a warning to setting up a convenient backdoor on a user's system.

● Hackers release new attack code for Windows

On 18 September Microsoft released a Fix-It tool that disables SMB 2, and the company said then that it was working on a fix for its software.

● Pressure on Microsoft, as Windows Attack Now Public

Metasploit developer HD Moore said Monday that the exploit works on Windows Vista Service Pack 1 and 2 as well as Windows 2008 SP1 server. It should also work on Windows 2008 Service Pack 2, he added in a Twitter message.

Will Microsoft do better than with XP? ⬆

The 'Case' of the Serial Strangler From Microsoft is a Lot of Copypasta (Maybe Also LLM Slop) From the Matthew Garrett 'Case': 5RB deserves to know and the matter shall be properly reported in due course (when the time is right)
EPO Squeezing the Staff - Part II - Office Breaks Rules, Ignores Courts, Defies Justice: False promises everywhere
IBM - Like Microsoft - is a Dying Company and Perishing Brand ("AI" is a Lie and Decoy): "Arvind is cutting costs (layoffs, PIPs, forced RTO, etc...) like crazy. IBM offices are closing all over the place in the US."
"Code of Conduct" Invoked When Fedora and Red Hat Users (Since the 1990s) Don't Want to Use Wayland: That is IBM "DEI"
Microsoft Layoffs Next Week: About 10% to be Laid Off in Microsoft Gaming (2 Days Before Independence Day), About 20%+ of XBox Staff: Microsoft is rapidly collapsing
Why Techrights Cannot be Vilified (and Instead It Gets SLAPPed Repeatedly by Microsoft People): Attack dogs are all "bark"; because they have no actual "bite"
Links 26/06/2025: Noise Pollution Considered High in Europe, Mass Layoffs Next Week in Microsoft Confirmed, Very Large in Scale and Scope: Links for the day
No, I Don't Want Your Latest XYZ, ThankYouVeryMuch...: Wayland is finally ready?
LWN is a Voice of GAFAM (Through Linux Foundation, Their Front Group or Occupying Force Inside Linux): remember who the chief editor works for and who sponsors many of the articles
China Keeps Breaking Into Microsoft Systems, So for True Sovereignty, Nations Wary of China Need to Dump Microsoft: Looking at data from Taiwan (not China) and Maharlika (not Philippines, the king is dead and Spain is out), there are encouraging signs
Linux Journal Wants Ads on Its LLM Slop or Ads as 'Articles': it's basically another BetaNews
How to Kill a Monopoly: in 10 simple steps
Mozambique: GNU/Linux Rose From 0.5% Last Year to 3% This Year: what (or how) statCounter is measuring
Next Month Marks 11 Years Since Our In-Depth EPO Coverage: The same is happening to Microsoft right now
Free Software Foundation (FSF) Campaigns Against Vista 11, Adds 4 New Associate Members Per Day: If more people understood the underlying principles, more of them would flock to Free software overnight
Canonical Seems to Have Culled Some Sources of LLM Slop From Planet Ubuntu: It's like "junk food", it's not information
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, June 25, 2025: IRC logs for Wednesday, June 25, 2025
On "Weak Claims": For the record, they sent me unjustified threats, repeatedly tried injunctions (censorship)
EPO Squeezing the Staff - Part I - Burnout and Family Health: more exceptional circumstances
This Month's Mail (MX) Server Survey Shows Microsoft at 0.20% "Market Share": We need to remind people that desktops and laptops decline (in proportion to other client devices) and at the "back end" GNU/Linux is already dominant and has long been dominant
Links 26/06/2025: Filespooler Guide and Learning to Code: Links for the day
Austrian GNU/Linux Usage Up to About 5% as More of Europe Abandons Microsoft: Since inauguration day the Austrian people have adopted more and more of GNU/Linux
Why the "Wayland People" and "Rust People" Will Lose Hearts and Minds (Same Reasons): Wayland pushers are fast becoming like "Rust People"
5,600 Pages/Articles Per Year: So far this year we've kept all the promises
BetaNews Beginning to Show What Its True Goals Are: The 'new' BetaNews won't be about journalism. It's trying to sell things.
Microsoft Has Lost "The War": We'll soon see the 9th or 10th wave of Microsoft layoffs in 2025 alone
Slopwatch: A Wreck and a Dreck, "Flooding the Zone With Dreck" or Flooding the Web With Junk: "Slopwatch" continues today because we have many new examples
Links 25/06/2025: Thwarting More Software Patents, Overlap Grows Between EPO Corruption and Illegal Kangaroo Patent Courts in EU: Links for the day
Links 25/06/2025: Elon Musk’s Lawyers Caught Lying, WhatsApp Faces More Bans: Links for the day
Wayland Pushers Lose the Argument, Use LLM Slop and Chatbots to Make Up Arguments for IBM: Another new low and low blow
Brian Fagioli Created Another Slopfarm Targeting "Linux" After BetaNews Became a Slopfarm of Phantom Accounts and Pseudonyms: Mr. Fagioli even had slop about a dead Torvalds (hypothetical) as clickbait
Wayland is Perfect, Nobody Can Escape Its Perfection! (Or Not): Do not form on opinion on Wayland based on politics
What is "MATA"?: Think of it as GAFAM or "Meta"
Moral Duty for "Linux Sites" to Speak Out Against LLM Slop: My wife has long complained about "Linux bloggers" keeping quiet and thus passive about a growing problem: slop
In Recent Hours Google News Promoted at Least 3 Slopfarms That Relayed Linux Foundation Propaganda Made by Bots or LLM "Bullshit Generators" (as Dr. Stallman Dubbed Them): Google is circling down the drain and Google News too is hopeless
Linux Journal is a Slopfarm, It's Experimenting With LLM 'Authors': Is Slashdot next?
WebProNews is a Slopfarm: Please avoid linking to WebProNews
Microsoft LinkedIn is Dying and Many More Layoffs Are on the Way: LinkedIn is just a failed acquisition of Microsoft. It causes losses and debt.
Gemini Links 25/06/2025: Combinatorial Music and Self Hosting: Links for the day
Richard Stallman Coming Back to Europe This Autumn to Give More Talks: His last talk in Europe attracted about 400-450 people
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Tuesday, June 24, 2025: IRC logs for Tuesday, June 24, 2025
Social Control Media, Technology & Catholicism: Synod on Synodality review and feedback: Reprinted with permission from Daniel Pocock
How Many More Women Will Managers at Microsoft Strangle and Tell to Kill Themselves (or Try to Kill)?: The world needs to know what happened
The New BetaNews: 7 New 'Articles', All of Them LLM Slop: BetaNews is basically defunct. Nobody writes there anymore.
Another "Told You So!": XBox Mass Layoffs at Microsoft (Many Recent Reports Were Chaff and Spin), Many Other Divisions Affected: With mass layoffs at Microsoft the world would be much better
statCounter Estimates Only 1 in 300 Iranians Would Use Microsoft for Search: Iranians don't quite trust Microsoft
Gemini Links 24/06/2025: ftpd on FreeBSD and Online Small Web Magazine: Links for the day
Google News Does Great Harm by Promoting Slopfarms as Legitimate News Sites: Slopfarms are sites which are 100% LLM slop
Links 24/06/2025: Trouble at "Open" "AI" and ‘Siarhei is Free’: Links for the day
Gemini Links 24/06/2025: Stimulants and Subscription Costs for DRM: Links for the day
When the Microsoft Aggressors Rely on Several Law Firms ('Attack Dogs', 'Guns for Hire'), Not Just One, Lawyering Up Against Techrights (Acting on Behalf of Americans Against UK Publishers): From serving customers at some restaurant he has moved on to bullying people with demand letters
Links 24/06/2025: OpenAI [sic] May Soon Die (Too Much Debt) and Social Control Media Accused of Being Misinformation/Disinformation/Propaganda Amplifier: Links for the day
Nirbheek Chauhan in Planet GNOME Explains Why Wayland Pushers Are Losing: "A strange game. The only winning move is not to play."
Polygamy, from Catholic Synod on Synodality to Social Control Media & Debian CyberPolygamy: Reprinted with permission from Daniel Pocock
Only a Third of or 1 in 3 Web-Connected Devices is a Desktop or Laptop, According to statCounter: we can expect Android to widen its lead
The Days Are Getting Shorter, the First Half of 2025 is Almost Over: We're gratified to see significant increase in traffic and also positive feedback on the work we do
Turning GNU/Linux Into a Political Football: X (not the site) is Free software
X Server Still Works for Many People: A lot of people will grow suspicious of Wayland boosters/pushers if they persist and insist on using these tactics
Exactly a Week Ago "BetaNews Staff" Said "Betanews Is Growing Alongside You". Since Then Every Article (All by "Camila Nogueira") Has Been LLM Slop.: BetaNews is basically a slopfarm
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Monday, June 23, 2025: IRC logs for Monday, June 23, 2025
The "Tarzan Effect" in Compilers and Software: What happens when you forcibly make things 'work', either by hacks or by disregarding warnings (like those that compilers tend to issue)?
Gemini Links 23/06/2025: Mass Tourism, Hair Love, and Google Gemini as a Googlebomb: Links for the day

Flaw and Exploit in Latest Windows and Windows Server? Check.

Recent Techrights' Posts