The First Windows 7 Zero-Day Exploit

xploraiswakco writes with the first Microsoft-confirmed Windows 7 zero-day vulnerability, with a demonstration exploit publicly available. The problem is in SMBv2 and SMBv1 and affects Windows 7 and Windows Server 2008 R2, but not Vista, XP, or Windows Server 2003. A maliciously crafted URI could hard-crash affected machines beyond any remedy besides pushing the white button. "Microsoft said it may patch the problem, but didn't spell out a timetable or commit to an out-of-cycle update before the next regularly-scheduled Patch Tuesday of December 8. Instead, the company suggested users block TCP ports 139 and 445 at the firewall." Reader xploraiswakco adds, "As important as this the mentioned article is, it should also be pointed out that any IT staff worth their pay packet should already have port 139 blocked at the firewall, and probably port 445, too."

Re:on or before the vendor knows about it

[DNS-and-BIND]

Uh, dude? Infallible Wikipedia? Surely you can't be serious.

Re:OMG what if my computer doesnt have a white but

[Mr_Miagi]

Buy an Apple... Sort of solves two problems, doesn't it?

Windows only for corporations, not users

[SuperKendall]

...but what about home users?

It's an admission that home users should not be running WIndows. You'd think a few decades would have been enough to figure that out...

Re:IT staff?

[BitZtream]

Unfortunately, your wife married an ignorant asshole.

Since Windows 7 has this firewalled safely out of the box for public networks your wife is fortunate.

Of course if you weren't so busy telling every how you're so good at being an unhelpful, inconsiderate dick you'd have spent 3 minutes to do some investigation to know that rather than leaving her to wonder.

Your attitude and low slashdot id leads me to believe that by 'wife' you mean Realdoll since I find it unlikely anyone would stay married to such a worthless jackass.