Microsoft has issued a formal security advisory in response to the latest flaw discovered within its Windows operating systems, shedding a bit of light on the issue. According to CNET, Microsoft believes that the flaw will not cause any problems for Windows 7 users, and instead only for those on Windows Vista and Windows Server 2008 (not Server 2008 R2, though).
The advisory, found here, stated the following: Microsoft is investigating new public reports of a possible vulnerability in Microsoft Server Message Block (SMB) implementation. We are not aware of attacks that try to use the reported vulnerabilities or of customer impact at this time.
We are actively working with partners in our Microsoft Active Protections Program (MAPP) to provide information that they can use to provide broader protections to customers.
However, whilst the report has Windows 7 (both x86 and x64) listed under 'Non-affected Software', be warned: if you're using the release candidate version of the operating system, you're still at risk. If you're running the RTM, you can sleep easy. Microsoft said that once they've fully investigated the flaw, they will include the fix in the monthly patch cycle, or perhaps release it out of that schedule, depending on how necessary it becomes. Keep in mind that Windows XP and 2000 are both safe from the flaw.
27 Comments - Add comment