Silicon Shecky: IT News, Opinions, and Reviews

Another Zero Day Exploit with SMB

November 12, 2009 By Michael Kavka Leave a Comment

A new Zero day bug could crash Windows 7 and Server 2008 R2. Both new technologies, both have been officially released for less than a month, and to top it off, its related to the SMB protocol. It seems that we have been down this road before.

A couple of months ago Microsoft finally patched a different major problem with the SMB protocol. Just like that one, the recommendation is to turn of SMB, and close the ports for it. Now this is getting a bit ridiculous that something used for file sharing, that is a common protocol, and that has had major problems in Microsoft OSes before keeps having new issues.

The real question though is how long till there is a fix for it? The previous hole in SMB took a long time for them to fix. Now add on that Small Business, while they might not be using Server 2008 R2, could be starting to use Windows 7. How will this affect the adoption of Win 7 in the enterprise? Will it slow it down? Also does this hole affect Vista, XP, SBS 2008, SBS 2003, Server 2003, Server 2008 (non-R2)?

Hopefully, we will get answers.

Shecky Tweets for 2009-11-11

November 11, 2009 By Michael Kavka Leave a Comment

Facebook Says Hijacked Groups No Threat to Confidential Data – http://shar.es/akPBg #
RT @threatpost: 'Moderate' Flaw Hits Adobe Photoshop Elements | #
Cloud to suck money out of market, report says http://viigo.im/1s7q #
Windows exploit code coming, @networkworld #
RT @threatpost: Online Ad Site Hacked, Rigged to Serve Exploits | #
RT @threatpost: Secuirty Pros React to Potential Federal Data Law | #
RT @threatpost: Product or Malware? Android Spying App Released | #
Firefox most vulnerable browser, Safari close second: via @addthis #
RT @threatpost: @DennisF is on MontelAcrossAmerica radio live tom. at 10:45 am et to discuss computer safety. Tune in! #
RT @threatpost: Microsoft Threatens Discoverer of 'Cash Back' Loophole in Bing | #
@karengarcia OW!!!! Ok, I"ll use the 4pt then. 😛 in reply to karengarcia #

Shecky Tweets for 2009-11-10

November 10, 2009 By Michael Kavka Leave a Comment

Welcome to the 2nd Tuesday of the month, known as Patch Tuesday. Now to see what we get. #
Mac OS X mega patch covers 58 security vulnerabilities http://blogs.zdnet.com/security/?p=4870 #
RT @vladmazek: If you're going to run a blacklist, at least have someone available to address the issues when your whitelist breaks. 🙁 #
RT @threatpost: Exploitation 101: Exploiting Windows | (Video) #
RT @threatpost: Gaming Botnet Bleeds Over To The Enterprise | #
RT @threatpost: Microsoft's Police Forensic Tool Leaked to Bad Guys | #
RT @threatpost: U.S. Takes Down $9 Million RBS WorldPay Hacking Ring | #
Protesters hijack more than 200 Facebook groups – #cnn #
RT @threatpost: Microsoft: Pay Special Attention to MS09-065 Patch | #
Patch Tuesday and I can't get a new machine to connect to Microsoft Updates so I can prep it for a client. *grumble* #