Security Researcher Reveals New Windows Zero-Day Flaw
A new zero-day security flaw has been found in Windows that could allow a hacker remote access to a PC. A security researcher recently disclosed the bug, which Microsoft is currently investigating.
The programming code for the security flaw has been posted publically and is related to a Windows system file called "mrxsmb.sys". The file is related to Windows Server Message Block (SMB) protocol, used for network communications.
Bug Rated Critical by Security Experts
In short, the affected file is associated with file and printer sharing features within the Windows operating system (OS).
Because this is such a sensitive part of the operating system, experts, including French security firm Vupen, have already dubbed the bug "critical," typically the highest alert level for a flaw of this kind. Vupen says a hacker with knowledge of the exploit could "cause a denial of service or take complete control of a vulnerable system." (Source: computerworld.com)
Secunia, a Danish security firm, agreed that the bug could be used to hijack a PC. "Successful exploitation may allow execution of arbitrary code," Secunia representatives recently stated.
Unclear Which Versions of Windows are Vulnerable
It's not yet been confirmed exactly which versions of Windows are affected. Thus far it seems Windows XP and Windows Server 2003 SP2 are most definitely vulnerable, though Secunia suspects Windows Vista and Windows 7 could also be open to attack.
There's still a lot of time until Microsoft's next scheduled Patch Tuesday (March 8), meaning the company will have to determine if the bug warrants and out-of-schedule emergency fix.
Most popular articles
- Which Processor is Better: Intel or AMD? - Explained
- How to Prevent Ransomware in 2018 - 10 Steps
- 5 Best Anti Ransomware Software Free
- How to Fix: Computer / Network Infected with Ransomware (10 Steps)
- How to Fix: Your Computer is Infected, Call This Number (Scam)
- Scammed by Informatico Experts? Here's What to Do
- Scammed by Smart PC Experts? Here's What to Do
- Scammed by Right PC Experts? Here's What to Do
- Scammed by PC / Web Network Experts? Here's What to Do
- How to Fix: Windows Update Won't Update
- Explained: Do I need a VPN? Are VPNs Safe for Online Banking?
- Explained: VPN vs Proxy; What's the Difference?
- Explained: Difference Between VPN Server and VPN (Service)
- Forgot Password? How to: Reset Any Password: Windows Vista, 7, 8, 10
- How to: Use a Firewall to Block Full Screen Ads on Android
- Explained: Absolute Best way to Limit Data on Android
- Explained: Difference Between Dark Web, Deep Net, Darknet and More
- Explained: If I Reset Windows 10 will it Remove Malware?
My name is Dennis Faas and I am a senior systems administrator and IT technical analyst specializing in cyber crimes (sextortion / blackmail / tech support scams) with over 30 years experience; I also run this website! If you need technical assistance , I can help. Click here to email me now; optionally, you can review my resume here. You can also read how I can fix your computer over the Internet (also includes user reviews).
We are BBB Accredited
We are BBB accredited (A+ rating), celebrating 21 years of excellence! Click to view our rating on the BBB.