Decade-Old Windows Flaw Results in Blue Screen of Death
A recently discovered decade-old denial-of-service condition could cause the instantaneous crash of a system and present users with the now-infamous blue screen of death, says a group of researchers.
The condition was discovered this week by a collection of researchers in Malta, the tiny southern European archipelago in the middle of the Mediterranean. According to Paul Gafa, CTO of 2X Software, if a user launches an application containing the malicious code, they could find their systems crashed.
"You can be the least privileged user on the system and still crash it," Gafa said. (Source: scmagazineus.com)
System Overload Could Crash Windows
A distributed denial-of-service (DDoS) attack takes place when several compromised computer systems focus an attack on an individual target (destination) PC. A flood of incoming messages to the targeted system overloads it, preventing legitimate users from being able to access the intended destination. (Source: techtarget.com)
Gafa and his team stumbled upon the flaw while constructing a software testing application. The 2X Software executive believes it's not a particularly difficult issue to resolve.
"I believe it is very easy for Microsoft to sort it out... They just need to validate arguments passed to Windows APIs (application programming interfaces)."
Flaw Dates Back to Windows 2000
The vulnerability is not a new one, Gafa says. In fact, his team is sure it's present in every version of Microsoft's Windows operating systems going back to the mostly forgotten Windows 2000.
Microsoft has taken the time to comment on the issue, but presently is dismissing the threat because of the difficulty presented to any hacker trying to exploit the flaw.
"Our initial assessment of the report is that malicious code would have to already be running or a user would have to be able to run a specially crafted application to cause the system to crash," a Microsoft spokesperson noted earlier this week. "In either case, the system has already been compromised or the user has rights to logon to the system."
Most popular articles
- Which Processor is Better: Intel or AMD? - Explained
- How to Prevent Ransomware in 2018 - 10 Steps
- 5 Best Anti Ransomware Software Free
- How to Fix: Computer / Network Infected with Ransomware (10 Steps)
- How to Fix: Your Computer is Infected, Call This Number (Scam)
- Scammed by Informatico Experts? Here's What to Do
- Scammed by Smart PC Experts? Here's What to Do
- Scammed by Right PC Experts? Here's What to Do
- Scammed by PC / Web Network Experts? Here's What to Do
- How to Fix: Windows Update Won't Update
- Explained: Do I need a VPN? Are VPNs Safe for Online Banking?
- Explained: VPN vs Proxy; What's the Difference?
- Explained: Difference Between VPN Server and VPN (Service)
- Forgot Password? How to: Reset Any Password: Windows Vista, 7, 8, 10
- How to: Use a Firewall to Block Full Screen Ads on Android
- Explained: Absolute Best way to Limit Data on Android
- Explained: Difference Between Dark Web, Deep Net, Darknet and More
- Explained: If I Reset Windows 10 will it Remove Malware?
My name is Dennis Faas and I am a senior systems administrator and IT technical analyst specializing in cyber crimes (sextortion / blackmail / tech support scams) with over 30 years experience; I also run this website! If you need technical assistance , I can help. Click here to email me now; optionally, you can review my resume here. You can also read how I can fix your computer over the Internet (also includes user reviews).
We are BBB Accredited
We are BBB accredited (A+ rating), celebrating 21 years of excellence! Click to view our rating on the BBB.