EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

09.08.09

Vista 7 Less Secure Than Predecessors? Remote BSoD Now Possible!

Posted in Marketing, Microsoft, Security, Vista, Vista 7, Windows at 4:46 am by Dr. Roy Schestowitz

BSoD for Novell

Summary: Vista and Vista 7 can be crashed remotely due to a newly-disclosed vulnerability

SO, Microsoft rewrote some networking components for Windows Vista, which may sound like a positive thing. Security experts warned that Microsoft had simply abandoned mature, well-established BSD code and they were right. Does anyone remember those flaws in Windows 95 which enabled remote computer users to ‘nuke’ their friends and foes (causing their computer to BSoD) given only their IP address? Well, that’s back in Vista 7.

Freshly disclosed: “Windows Vista/7 : SMB2.0 NEGOTIATE PROTOCOL REQUEST Remote B.S.O.D.”

V. BUSINESS IMPACT

An attacker can remotly crash without no user interaction, any Vista/Windows 7 machine with SMB enable. Windows Xp, 2k, are NOT affected as they dont have this driver.

VI. SYSTEMS AFFECTED

Windows Vista/7 All (64b/32b|SP1/SP2 fully updated) and possibly Win Server 2008 as it use the same SMB2.0 driver (not tested).

Wow. That is some serious stuff. What might it do to the already-poor track record of Vista 7 in security? The Register wrote about the death of the “Vista” brand and it might be just a matter of time before Vista 7’s brand is tarnished to the same extent.

Microsoft spent an absolute fortune on the Vista brand. In marketing terms, the Vista campaign was huge by any standards, and was a big success insofar as raising awareness of Microsoft’s next-generation Windows offering was concerned.

Sounds familiar? Vista 7 is Vista all over again; the resemblance in terms of hype and marketing is uncanny.

Well, if “Windows 7″ ends up like Vista in the market, then Microsoft will at least have the “Mojave” brand. Microsoft (and its extended ecosystem) can no longer just throw trolls at the problem. The hundreds of millions of dollars spent on building brands and bullying critics [1, 2, 3, 4] do have a limited shelf life.

“I am currently testing the Beta of Win7 in a closed VM environment. I am considering deleting it. It’s actually worse than Vista. Multiple program crashes, refusal to install any software, naff looks and many other complaints.”

Moog

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • StumbleUpon
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Propeller
  • Slashdot
  • Technorati
  • TwitThis
  • Webnews
  • YahooMyWeb

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channel. To use your own IRC client, join channel #boycottnovell in FreeNode.

Pages that cross-reference this one

7 Comments

  1. David Gerard said,

    September 8, 2009 at 5:04 am

    Gravatar

    I’ve posted this at Slashdot – please vote it up.

  2. Yuhong Bao said,

    September 8, 2009 at 12:13 pm

    Gravatar

    It is Vista/7, not “Vista 7″. This probably got confused by the fact that BN calls 7 “Vista 7″, which can easily be confused with “Vista/7″ which is different. I don’t use this name myself.

    Roy Schestowitz Reply:
    September 8th, 2009 at 12:30 pm

    Those two are very similar. Underneath they are virtually the same and the above proves it.

    Yuhong Bao Reply:
    September 8th, 2009 at 2:06 pm

    I would not go that far, but yes there are indeed many similarities between Vista and 7. In this case, the key similarity is that they both support SMB 2.0, which was a new version of the SMB protocol introduced with Vista.

    Roy Schestowitz Reply:
    September 8th, 2009 at 2:39 pm

    Underneath, however, the same codebase is more or less shared. It’s not about this one flaw in particular.

    Yuhong Bao Reply:
    September 8th, 2009 at 3:41 pm

    7 have many modifications to the Vista codebase. But yes indeed there is indeed many similarities to Vista in 7, certainly more similarities than Vista was compared to XP. Not that this makes Vista/7 bad IMO, but still.

  3. Yuhong Bao said,

    September 8, 2009 at 10:04 pm

    Gravatar

    Ars Technica reports that MS has issued a security advisory concerning this issue, saying 7 is not affected:
    http://arstechnica.com/microsoft/news/2009/09/new-flaw-can-remotely-crash-windows-vista-and-windows-7.ars

What Else is New

  1. The Brute Force and Sheer Power of Microsoft Windows

    How Windows botnets enable criminals to make a lot of money at the expense of Windows users

  2. IRC: #boycottnovell @ FreeNode: March 21st, 2010

    IRC Log for March 21st, 2010

  3. Xbox 360 Dies Without a “Coffin” and Microsoft's Other Hardware Endeavours Seemingly a Dead End

    Microsoft's attempts to sell hardware products such as consoles, portable media players, and phones seem destined to burial

  4. Jerry Seinfeld Makes “Lousy Celebrity Endorsement” for Microsoft After Reportedly Dumping Windows

    Key Vista endorser Jerry Seinfeld is named as one of IDG's top 10 "Lousy Celebrity Endorsements"; Compatibility problems in Vista 7 stressed again to rebut Microsoft's latest spin

  5. Microsoft Vice President Quits in China, Others Do Too

    The Great Microsoft Exodus carries on, particularly in a division that loses obscene amounts of money

  6. SCO Cash Infusion Came from Former SCO Staff

    A new disclosure of names of those who fund SCO's lawsuit against Linux reveals many former members of SCO

  7. Are Proprietary Software Users Too Dangerous for Copying and Pasting?

    The primitivism of Apple's and Microsoft's tablets or phones (respectively) as shown using some new information

  8. Given Choice, Customers Reject Microsoft

    Customers who buy new PCs choose Web browsers other than Internet Explorer, so a similar approach should be taken and applied to operating systems

  9. Eye on Security: Windows Botnets and Other New Problems

    Assemblage of security news from recent days

  10. The Vanishing of Microsoft's Misconduct (Bribes)

    Resurrection of a dead article about Microsoft corrupting academia

  11. Links 21/3/2010: LXDE in Google Summer of Code, CrunchBang Moves to Debian

    Links for the day

  12. IRC: #boycottnovell @ FreeNode: March 20th, 2010

    IRC Log for March 20th, 2010

  13. Señor de Icaza Meets Other Microsoft MVPs

    José, Miguel, and other boosters of Microsoft Corporation have a get-together at the company's annual event

  14. SCO Roundup: SCO Group Receives a $2 Million Cash Infusion

    News from the SCO case, including a few major developments

  15. Novell Staff Shrank by ~10% and Hovsepian Allegedly Plays Hard to Get With Elliott Associates

    It's rutting season for Novell's Ron Hovsepian and Elliott Associates' Singer as the company keeps diminishing but wants to be valued more generously

  16. Novell News Summary - Part III: Clarifications from Elliott Associates, Hosted Conferencing, and BrainShare 20TEN

    Elliott Associates still insists that Novell will stay in tact; Utah prepares for the annual Novell pilgrimage

  17. Novell News Summary - Part II: IBM, Novell, SUSE Appliances, and Ingres

    News about SLES, especially as an appliance but also as a server that IBM commonly uses

  18. Novell News Summary - Part I: FLISOL 2010, Linux Tage 2010, and OpenSUSE 11.3 Milestone 3

    Another restful week for "Geeko" and some news from events that featured OpenSUSE

  19. Patents Roundup: Android/Linux Defended by HTC; Monsanto and Ghana

    News about patents where the system has gone awry (the Apple-HTC case and GMO in Africa)

  20. Microsoft and Its Front Group, Association for Competitive Technology (ACT), Organise Software Patents Lobby Events in Europe

    The Microsoft PR effort to marginalise or illegalise Free software overseas carries on quietly (using proxies, as usual)

  21. Microsoft MVP de Icaza: Microsoft “Shot the .NET Ecosystem in the Foot” Because of Patent Threats

    Despite awakening and realisation of the obvious, Novell carries on promoting and spreading .NET, knowing damn well the consequences for others

  22. Links 19/3/2010: Google’s TV Project, OpenOffice.org Turning 10, OSBC

    Links for the day

  23. IRC: #boycottnovell @ FreeNode: March 19th, 2010

    IRC Log for March 19th, 2010

  24. Novell Hires More Mono People (Despite Sacking SUSE Developers) and Microsoft Buys an OSBC Spot/Seat

    Novell and Microsoft continue to fund development with the desired bias of using Microsoft APIs; Microsoft pays for its share of OSBC (again) and gets to set the tone with a keynote speech

  25. Patents Roundup: Europe, ACTA, Aldi Attacked by the MPEG Cartel, and More

    Europe's policy on software patents and the ACTA factor; the MPEG patent pool turns out to be not much of a sleeping giant but an awake one; patents relating to cancer genes continue to needlessly cost lives

  26. Linux is Not Against Software Patents (and Why Linus Torvalds Should Speak Up)

    An inconvenient truth about the Linux Foundation is brought up again now that Linux is attacked with software patents that are named

  27. Microsoft Sued by VirnetX (Again) and Kodak Alleges That Microsoft's Patent Troll Bullies Companies Along With Ray Niro

    Intellectual Ventures is said to be attacking companies using its proxies and Microsoft suffers the wrath of the very practice it advocated with investments (patent trolling)

  28. Democracy is Not the Same as Freedom

    People have lost track of real mistakes that Canonical is making and instead they focus on buttons and themes

  29. Amazon and Dell: Friends or Foes of GNU/Linux?

    What Amazon does not want to tell us about software patents in its recent deal with Microsoft; more reasons to suspect that Dell pays Microsoft for Ubuntu GNU/Linux

  30. Unsolicited Mail from Microsoft Canada Wants Developers to Create/Increase Government's Windows Lock-in

    Microsoft wants volunteers to help their countries become hostages of Redmond

RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts