Langsung ke konten utama

Serious Windows 7 Flaws Unearthed

Microsoft announced on Tuesday that its newest operating system Windows 7 can be vulnerable to users in terms of code execution and denial-of-service attacks. The vulnerability of Windows 7 and Windows Server 2008 R2 has been discussed before Microsoft issued the advisory. Although, the company claims that no attack due to this Windows flaws has been reported so far. The flaw was found in the Canonical Display Driver (cdd.dll), which is used by desktop composition to mix the Windows Graphics Device Interface (GDI) and DirectX drawing.

Microsoft also thinks that chances are high if an attacker can successfully exploit this vulnerability, it can result the affected system to stop responding and automatically restart. The company assured that they are going to fix the problem once the investigation is complete. By this time, affected Windows 7 or Windows 2008 R2 users should disable the Windows Aero Theme to prevent the issue from being exploited.


Code execution, while possible in theory, would be very difficult due to memory randomization both in kernel memory and via Address Space Layout Randomization (ASLR). Additionally, this vulnerability only affects Windows systems if they have the Aero theme installed; Aero is not switched on by default in Windows Server 2008 R2, nor does 2008 R2 include Aero-capable graphics drivers by default.

Please, follow the steps to disable the Aero theme:
1. Click Start, select the Control Panel, and then click on Appearance and Personalization.
2. Under the Personalization category, click on Change the Theme.
3. Scroll to the bottom of the listed themes and select one of the available Basic and High Contrast Themes.

source : http://blog.taragana.com/index.php/archive/serious-windows-7-flaws-unearthed/

Postingan populer dari blog ini

57% Use Social Network Sites

The power of online social networking was demonstrated by the tens of thousands who gathered in Shanghai at the weekend to pay their respects to the people who died in last Monday's blaze. The event at Jiaozhou Road was launched on microblogs and information spread rapidly on the Internet , especially on social networking sites such as Kaixin001.com. According to a survey by Shanghai Daily and Touchmedia, of 110,000 people traveling in taxis in Shanghai, Beijing, Guangzhou and Shenzhen , 57 percent of interviewees use social networking sites or microblogs for more than half an hour a day, and 18 percent for more than three hours. Microblogging is the most popular form. Almost 60 percent of the interviewees said they publish information on microblogs, communicating with friends, following celebrities, expressing their opinions, sharing jokes and conducting online marketing, said the survey.

Upcoming Facebook Redesign Surface

Kerajaan Jeumpa, Kerajaan Islam Pertama Nusantara

Teori tentang kerajaan Islam pertama di Nusantara sampai saat ini masih banyak diperdebatkan oleh para peneliti, baik cendekiawan Muslim maupun non Muslim. Umumnya perbedaan pendapat tentang teori ini didasarkan pada teori awal mula masuknya Islam ke Nusantara. Mengenai teori Islamisasi di Nusantara, para ahli sejarah terbagi menjadi 3 kelompok besar, yaitu pendukung (i) Teori Gujarat (ii) Teori Parsia dan (iii) Teori Mekah (Arab). Bukan maksud tulisan ini untuk membahas teori-teori tersebut secara mendetil, namun dari penelitian yang penulis lakukan, maka dapat disimpulkan bahwa Teori Mekkah (Arab) lebih mendekati kebenaran dengan fakta-fakta yang dikemukakan. Teori Mekkah (Arab) hakikatnya adalah koreksi terhadap teori Gujarat dan bantahan terhadap teori Persia. Di antara para ahli yang menganut teori ini adalah T.W. Arnold, Crawfurd, Keijzer, Niemann, De Holander, SMN. Al-Attas, A. Hasymi, dan Hamka. i Arnold menyatakan para pedagang Arab menyebarkan Islam ketika mereka mendo...