Information Technology Services

Microsoft releases workaround for SMB vulnerability

ALARM Group ALERT - click for a description of ALARM, The Computing Alert System

Alert Number: 092109-01
Alert Date: 09/21/09
Alert Title: Microsoft releases workaround for SMB vulnerability
Update-to: 090809-01 "*UNPATCHED* vulnerability in Windows Vista, Windows 7, Server 2008"

OS/Platform/Application:

Microsoft Vista
Microsoft Server 2008

Category: ALERT
Severity: HIGH
Attention: Windows Vista/Server 2008 users, System Administrators, Desktop Support Personnel.

Summary: Microsoft has released an automated "fixit" workaround implementation to address a vulnerability in the SMB V2 service originally detailed in ALARM Alert 090809-01.

Recommended Actions: The fixit workaround provides the best protection from this vulnerability until a proper patch is released from Microsoft (likely in October 2009). Vista and Server 2008 users are encouraged to read the Microsoft Security Advisory and apply the fixit at their earliest convenience. A link to ALARM Alert 090809-01 is included (for reference) below.

Readers are encouraged to share this alert with family, friends, and associates.

ITS Actions: N/A

Resources:

Microsoft Security Advisory (includes fixit links):
http://support.microsoft.com/kb/975497

ALARM Alert 090809-01 (provides details of vulnerability):
http://www.albany.edu/its/alerts_archive_2009_4078.htm

Information Technology Services University at Albany, SUNY 1400 Washington Avenue Albany, NY 12222 ITS Service Centers: 518-442-4000	University at Albany Home Page Contact UAlbany \| Directories \| Calendars \| Visitors \| Site Index \| Search Admissions \| Academics \| Research \| IT Services \| Libraries \| Athletics
Internet Privacy Policy IT Policies