Microsoft Scrambles to Fix Security Hole in Vista, Server 2008

REDMOND, Wash. — Microsoft has alerted users to a critical security hole in both Windows Vista and Windows Server 2008. The flaw does not affect users of Windows 7.

The flaw leaves both operating systems vulnerable to malicious remote control, though in many cases, the systems will simply stop responding and restart.

Microsoft Server 2008 is the tech giant’s latest entry into server-management operating systems. The security flaw specifically affects Microsoft Server’s server message block, or SMB, functionality. SMB functionality oversees shared access to files, printers, serial ports and other communications.

"Microsoft is investigating new public reports of a possible vulnerability in Microsoft Server Message Block (SMB) implementation," Microsoft said. "We are not aware of attacks that try to use the reported vulnerabilities or of customer impact at this time."

Admins and other tech professionals should be advised that the security breach is what’s known as a “zero-day” flaw, meaning that hackers figured it out before Microsoft did.

But that doesn’t mean Microsoft is waiting around. The company has enlisted the aid of other security software companies to plug the hole. Microsoft may be forced to release an extra patch outside of its usual software release cycle to address the problem.

Users who are still working with the “release candidate” version of Windows 7 are still vulnerable to the attack. Release candidates are preliminary versions of software that companies distribute in hopes of ferreting out bugs and other problems.

The final version of Windows 7 is not vulnerable to the flaw. Neither are Windows XP or Windows 2000.

Related:  

Copyright © 2025 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

TeamSkeet, MYLF to Launch New Website FamilyStrokes.com

Sister studios TeamSkeet and MYLF are launching a new website, FamilyStrokes.com.

AV Bulletin: Age Verification Hits the Mainstream, Ofcom Sets a Date

Industry stakeholders and free speech advocates have anxiously been awaiting the Supreme Court’s decision in Free Speech Coalition v. Paxton, which could significantly impact state age verification laws around the country. In the meantime, state legislatures continue to weigh and pass AV bills, AV tech providers continue to tout their services, and legal challenges continue to play out in the courts — with some cases on hold pending the SCOTUS ruling in Paxton.

Segpay Names Kristi Greer VP of Sales

Segpay has promoted long-time employee Kristi Greer to the position of vice president of sales.

BranditScan Names Subgirl Newest Brand Ambassador

BranditScan has named content creator Subgirl its newest brand ambassador.

Arcom Reports Age Verification Enforcement Actions Against 5 Adult Sites

French media regulator Arcom released a statement Tuesday detailing recent actions to enforce age verification rules as set forth under France’s Security and Regulation of the Digital Space (SREN) law.

Pineapple Support, Clips4Sale to Host Performers' Partners Support Group

Pineapple Support and Clips4Sale are hosting a free online support group for partners and family members of adult industry professionals.

FSC Mourns the Loss of Board Director Emeritus Mark Kernes

Free Speech Coalition has released a statement regarding the passing of Board Director Emeritus Mark Kernes.

Alexa Creed Launches New Paysite

Creator Alexa Creed has launched a new membership site through MyMember.site.

Choice Talent Management Launches Fan Platform 'ChoiceFilmz'

Choice Talent Management CEO Chris Crisco has launched a new fan platform called ChoiceFilmz.

Dredd to Launch Official Site

Dredd has announced his new website OfficialDreddXXX.com, launching April 20.

Show More