Microsoft Security Advisory (975497) published

Microsoft Security Advisory (975497)
Vulnerabilities in SMB Could Allow Remote Code Execution

Microsoft is investigating new public reports of a possible vulnerability in Microsoft Server Message Block (SMB) implementation. We are not aware of attacks that try to use the reported vulnerabilities or of customer impact at this time.

Workarounds

  • Disable SMB v2.  Impact of workaround. Host will not be able to communicate using SMB2.
  • Block TCP ports 139 and 445 at the firewall.  Impact of Workaround: Several Windows services use the affected ports. Blocking connectivity to the ports may cause various applications or services to not function

http://www.microsoft.com/technet/security/advisory/975497.mspx

Our investigation has shown that Windows Vista, Windows Server 2008 and Windows 7 RC are affected by this vulnerability. Windows 7 RTM, Windows Server 2008 R2, Windows XP and Windows 2000 are not affected by this vulnerability.

http://blogs.technet.com/msrc/archive/2009/09/08/microsoft-security-advisory-975497-released.aspx

Published Wed, Sep 9 2009 3:12 by donna

Comments

Wednesday, September 09, 2009 3:23 AM by Mikael R

# re: Microsoft Security Advisory (975497) published

What about Windows 2003, just checking since it's not listed at all and the TechNet article is not accessible yet (for me at least).

Wednesday, September 09, 2009 4:03 PM by donna

# re: Microsoft Security Advisory (975497) published

Hi Mikael,

According to Microsoft, the following is not affected:

Microsoft Windows 2000 Service Pack 4

Windows XP Service Pack 2 and Windows XP Service Pack 3

Windows XP Professional x64 Edition Service Pack 2

Windows Server 2003 Service Pack 2

Windows Server 2003 x64 Edition Service Pack 2

Windows Server 2003 with SP2 for Itanium-based Systems

Windows 7 for 32-bit Systems

Windows 7 for x64-based Systems

Windows Server 2008 R2 for x64-based Systems

Windows Server 2008 R2 for Itanium-based Systems

Regards,

Donna

Friday, September 18, 2009 7:36 PM by Donna's SecurityFlash

# Don't forget to apply Microsoft FixIt solution on your Vista to temp fix the security issue regarding MS Advisory 975497

10 days ago, Microsoft published Security Advisory 975497 affecting Vista, Windows Server 2008 and Windows