Welcome Guest [Log In] [Register]

Kia Ora
You are currently viewing our forum as a guest. This means you are limited to certain areas of the board and that there are some features you can't use or read.

We are an active community of worldwide senior members participating in chat, politics, travel, health, blogging, graphics, computer issues & help, book club, literature & poetry, finance discussions, recipe exchange and much more. Also, as a member you will be able to access member only sections, many features, send personal messages, make new friends, etc.

Registration is simple, fast and completely free. Why not register today and become a part of the group. Registration button at the very top left of the page.

Thank you for stopping by.

Join our community!

In case of difficulty, email worldwideseniors.org@gmail.com.
If you're already a member please log in to your account to access all of our features:

Username:   Password:
Add Reply
Researcher Finds Denial of Service Vulnerability in Window 7
Topic Started: Oct 18 2012, 10:21 PM (221 Views)
Deleted User
Deleted User

A few weeks ago I had a blue screen with similar text when I started up my computer … I could not proceed until I did a reboot. I am currently using Windows XP. I scanned my computer with Eset, Avast Pro & Malwarebytes Pro and did not find anything. My computer test indicates in Stealth so this is a real mystery to me.

Quote:
 

Researcher Finds Denial of Service Vulnerability in Window 7

A complete proof-of-concept code has been published
by Eduard Kovacs - on October 17th, 13:41 UTC

Posted Image

A researcher that goes by the name of Max claims to have identified a denial-of-service (DOS) vulnerability that affects fully updated versions of Windows 7 and possibly even Windows Vista. He reveals that a blue screen of death (BSOD) can be triggered by making a “very specific set of operating system calls.”

Although he hasn’t been able to determine if the security hole can be used by an attacker to execute arbitrary code, he confirms that it could be utilized to corrupt kernel memory and cause a DOS state. To demonstrate his findings, he published the complete code (written in C) needed to trigger the bug.

Max has been unable to determine what causes the crash, but he believes that it might be “some kind of race condition involving some local procedure calls. “

“I can't say whether or not this bug could be engineered to bring about execution of arbitrary code. That determination needs to be made by a Windows system
programmer. Hopefully somebody at Microsoft will conduct a deeper analysis and fix this problem,” he wrote next to the proof-of-concept.

I will attempt to contact Microsoft representatives to see if they can tell us whether the vulnerability can be used to execute arbitrary code.


http://news.softpedia.com/newsImage/Researcher-Finds-Denial-of-Service-Vulnerability-in-Window-7-2.jpg/
Quote Post Goto Top
 
1 user reading this topic (1 Guest and 0 Anonymous)
« Previous Topic · SOFTWARE & HARDWARE · Next Topic »
Add Reply