Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

17 year old Windows flaw discovered in Windows 7. How to close this security vulnerability


  • Please log in to reply
1 reply to this topic

#1 jackbrennan

jackbrennan

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Trondheim
  • Local time:03:27 AM

Posted 11 March 2010 - 03:33 PM

Hi all,

I came across this and thought it may be usefull to a few people here on the forums, although if you use 16 bit applications you may want to keep this disabled:

This security hole is said to affect 32bit Windows operating systems

A CRITICAL FLAW has been found in the Windows NT trap handler that makes all Windows machines wide open to hackers. The problem has been a feature of every Windows system for the last 17 years and no one has noticed. According to Full Disclosure, the security hole in Windows allows users with restricted access to escalate their privileges to system level. It can be done on all 32-bit versions of Windows from Windows NT 3.1 to Windows 7. This is not likely to bother consumers much, but corporate IT managers will be wetting themselves.

And the removal instructions. Enabling the "Prevent access to 16-bit applications"

1. Start
2. Run (Windows key + R)
3. Type gpedit.msc and press enter (Run as Administrator if need be)
4. Expand - Computer Configuration
5. Expand - Administrative Templates
6. Expand - Windows Components
7. Open - Application Compatibility section.
8. Double Click 'Prevent access to 16 bit applications'
9. Check Enabled
10 Click Apply then Ok

Here is a screenshot to help those having any troubles: http://i24.photobucket.com/albums/c11/smak...6bitdisable.jpg

Sources:
http://www.theinquirer.net/inquirer/news/1...nt-windows-flaw
http://www.neowin.net/news/microsoft-issue...s-vulnerability

Edited by jackbrennan, 11 March 2010 - 03:36 PM.

Australia by birth, Norway by marriage.

BC AdBot (Login to Remove)

 


#2 carri

carri

  • Members
  • 234 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Yorkshire, England
  • Local time:03:27 AM

Posted 11 March 2010 - 04:54 PM

According to the same site microsoft had promised to patch the hole in security http://www.theinquirer.net/inquirer/news/1...osoft-patch-bug. I am afraid I am one of those people who just has automatic updates on and hardly checks to see what I am actually downloading. I guess if some person who shouldnt have admin access especially in a company or business was to get it this way microsoft would have to do a lot of explaining. Its amazing that only after 17 years this hole has been found.
Posted Image
Hug someone today and get on their nerves!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users