New Critical vulnerability found in Windows 7

[PenTester]

Security Researcher from Secunia discovered a new Zero-day vulnerability in 64 bit version of Windows 7 that allows an attacker to compromise the vulnerable machine.

Read More:Hacking News

 

[DiabloBlack]

Guess it's a good thing I don't use the Safari browser.

 

[WinAndLinuxTutorials]

@DiabloBlack
Guess it's a good thing not to have a computer. :lolz:

 

[Hungry Man]

To be clear, this is a Windows vulnerability. The proof of concept uses Safari but it should be possible on other browsers that can access that API/ .dll.

 

[Jack]

Good luck finding a user with Windows 7 on a 64bit with Safari installed and which will stumble upon this exploit.... and with such a poor protection that won't detect this exploit......
What can I say, it's bad but not a disaster...... Microsoft will patch this and the few Safari users on Windows will be able to browse the internet with their heart at peace...

 

[McLovin]

'Highly critical' Windows 7 bug causes BSOD

Security company Secunia has flagged a vulnerability in Windows 7 as highly critical, after it verified a tweeted claim that the operating system could be forced into a "blue screen of death" (BSOD) under certain quirky circumstances.

Link: Read more.

 

[McLovin]

RE: 'Highly critical' Windows 7 bug causes BSOD

I have not received any BSOD recently. Has anyone else encounted this or any BSOD?

 

[DiabloBlack]

RE: 'Highly critical' Windows 7 bug causes BSOD

I have not received any BSOD recently. Has anyone else encounted this or any BSOD?

It is the same bug that was posted here. It appears that you have to be running (using) the Apple Safari browser (not likely by most) in order for this to happen.

I personally have never had a BSOD on Windows 7.

 

[McLovin]

RE: 'Highly critical' Windows 7 bug causes BSOD

It is the same bug that was posted here. It appears that you have to be running (using) the Apple Safari browser (not likely by most) in order for this to happen.

I personally have never had a BSOD on Windows 7.

Right, never even knew there was a topic. :s

 

[Jack]

Microsoft Confirms Windows 7 Vulnerability

Microsoft representatives posted a message on their German Chief Security Advisory Blog in which they confirm the vulnerability found a few days ago by WebDevil who showed that by accessing a specially crafted HTML file in Safari someone would be able to crash the operating system.

The researchers claim that the weak point lies in a Windows component and not the browser, but since browsers are mostly responsible for calling the specific function, it’s believed that other browsers such as Internet Explorer versions prior to 9 could be affected.

At the moment, Microsoft is in contact with Apple trying to figure out what exactly causes this behavior.

They didn’t manage to reproduce the flaw in the 32-bit versions of Windows 7 and they state that it’s unlikely for someone to abuse this vulnerability.

“In addition, our colleagues in the US do not believe that the vulnerability is capable of infecting Windows systems with malware,” Michael Kranawetter said. “Microsoft is not aware of any attacks targeting the vulnerability.”

For now, it’s very unlikely that Microsoft will publish a security advisory, but since the investigation still continues the final decisions are yet to be made.

Read more >>