Saturday November 21, 2009 1:57 PM AEST
Networking

Windows 7, Vista vulnerable to BSOD attack

  • Email a Friend
  • Print Page
Windows 7, Vista vulnerable to BSOD attack
Related Articles
By Justin Robinson
Sep 9, 2009 | 7 Comments
Tags: Windows | 7 | Vista | vulnerable | security | BSOD | attack | SMB | SRV2.SYS

A faulty driver leaves the system wide open.

Operating systems are incredibly complicated bundles of code, so entangled around each other and manipulated to form some kind of working beast that it's a surprise they manage to work at all. With so many variables introduced by the many humans working on code under a strict deadline (and keeping in mind just how reliable humans are under pressure), there are frequent system-threatening errors.

The latest one, discovered by security researcher Laurent Gaffie, involves a driver called SRV2.SYS that is buried inside the networking stack of both operating systems. Its function is to allow printers and scanners be used remotely from other users on the network, but adding a simple ampersand (& for those who don't know) to the "Process Id High" field and sending it through the wide-open port 445, it causes the entire stack to crash and force a reboot.

While it's pretty amusing that a simple printer exception in the firewall can crash a system, it means that anyone who is wily enough to know what they're doing could crash your PC in the middle of pretty much anything. Gaffie recommends turning off the printing features until a patch is released, just in case. This bug affects both Windows 7 and Vista equally, while XP and earlier are not affected.

Head to the H Security to check out an explanation of how to use this naughty resetting bug.

 

 
 
The latest issue is on sale now!

Want to learn all about Diablo III? Want to find out what the best Solid State Drive is on the market today, and how to look after it? Want to catch up on the latest hardware, games and in depth tech from Australia's best enthusiast mag?

Get your copy today :)
7 Comments
Thoughts on this article? Add a comment below.
thesorehead
Sep 9, 2009 11:44 AM
 lulz. I guess something like that is bound to happen. I wouldn't have expected that having the stack crash (whatever that means) would force a reboot. Also, wouldn't it only be activated if you have a network-shared printer?


*shrug* such is life.
SyKRyD
Sep 9, 2009 12:43 PM
 can someone post up instructions? i would like to play a joke on enemi... uh, i mean, "colleagues", in my company. lol
Hoonbernator
Sep 9, 2009 1:17 PM
 interesting that this affects Vista too... meaning it's been around for quite a while.

I'm with you SyKRyD, I want a little application to do this :)
N3M3SiS
Sep 9, 2009 4:16 PM
 Woot, its WinNuke all over again! ;)

Those interested in "testing" follow the link at the end of the article.
.:Cyb3rGlitch:.
Sep 9, 2009 5:13 PM
 *waits for patch Tuesday*
hazarama
Sep 9, 2009 9:50 PM
 That is an awesome bug. Great post.
Xen
Sep 17, 2009 9:26 AM
 it's strange to think that a couple of years ago security vulnerabilities like this would have been ignored for year (teardrop/ping of death..etc).

Now its found and the window to use the exploit is reduced to a week at the most.

Glad to see security is becoming more and more of a priority.
Login or register to submit a comment.
 
Area 53
 
Editor's Choice
 
Atomic Magazine

Issue: 107 | December, 2009

Atomic is a magazine aimed squarely at computer enthusiasts, gamers, and serious PC upgraders.

Every month we bring you the latest reviews of new technology and PC components, in depth features on everything from overclocking to console hacking, and gaming previews and interviews.
 
Latest Comments
"Done.

.
..
..."
on Queensland takes on Atkinson!
by theflyingswan | Nov 21, 2009 10:41 AM
 
""sudo preupgrade"
...failed to download installer metadata
------------
So ..."
on Fedora 12 is released
by wlayton27 | Nov 21, 2009 8:16 AM
 
"I thought Vista outlived it's usefulness about the same time it was released , lol"
on Windows 7: Fastest selling OS ever
by mr.gargoyle | Nov 21, 2009 12:28 AM
 
"^ I find with CoD4 that I can jump on an empty server and be joined by 6-12 others before the ..."
on Modern Warfare 2 breaks records, and hearts
by Ezekill | Nov 20, 2009 10:10 PM
 
"check

LOMAC
DCS Black Shark
X-plane"
on Heroes over Europe
by Bastard Child | Nov 20, 2009 8:13 PM

Plan Finder

Powered by WhistleOut

1) Samsung S8000 Jet8 plans 50%
2) Apple iPhone 3GS 16GB35 plans 25%
3) Blackberry Curve 85206 plans 17%
4) Apple iPhone 3GS 32GB35 plans 42%
5) Nokia E7147 plans 1%
Three iiNet Virgin Mobile Vodafone
« 1 of »
1) iiNet32 plans 7%
2) Netspace33 plans 42%
3) Optus47 plans 17%
4) Telstra BigPond41 plans 9%
5) Internode34 plans 9%

Compare: Mobiles | Broadband

Atomic MPC
Latest User Reviews
Shenmue II
10%
Shenmue II
asdfasdf
By jeffreybushii | Nov 13, 2009
 
EVGA X58 Classified
90%
EVGA X58 Classified
great board, a few things could be better
By -adicolor93- | Nov 2, 2009
 
EVGA X58 Classified
90%
EVGA X58 Classified
Gorgeous looking
By kramgref | Oct 29, 2009
 
Sapphire 4890
90%
Sapphire 4890
So good, I immediately wanted a second one!
By prof_skum | Sep 20, 2009
 
MSI 790FX-GD70 motherboard
90%
MSI 790FX-GD70 motherboard
Allmost the prefect gaming board
By George copley | Aug 28, 2009
 
more user reviews »