Windows 7 Serious Vulnerability Found

by on 05/19/2010 in Security, Vulnerabilities

Windows 7 Vulnerability FixWindows 7 has a serious security vulnerability that could expose users to code execution and or denial-of-service-attacks. Microsoft first announced this vulnerability late last night.

The vulnerability, which only affects Windows 7 and Windows Server 2008 R2, was publicly discussed ahead of Microsoft’s advisory but the company said there are no reports of attacks attempting to exploit the flaw.

The flaw was found in the Canonical Display Driver (cdd.dll), which is used by desktop composition to blend the Windows Graphics Device Interface (GDI) and DirectX drawing.

More information from the MSRC blog.

To prevent the issue from being exploited, users should do the following:

Disable the Windows Aero Theme.

To disable Windows Aero by changing the theme, perform the following steps for each user on a system:

  1. Click Start, select the Control Panel, and then click on Appearance and Personalization.
  2. Under the Personalization category, click on Change the Theme.
  3. Scroll to the bottom of the listed themes and select one of the available Basic and High Contrast Themes.

3 Responses to “Windows 7 Serious Vulnerability Found”

  1. Andrew@BloggingGuide

    May 20th, 2010

    I don’t know but I am still not using windows 7 because I’m still not comfortable with it. But, in time, when It’s already tested and proven, then I’ll be using it.

  2. Aurel Wong

    May 23rd, 2010

    Thanks for sharing this issue. I will update my laptop right away.

  3. James@MicrosantecSecurity

    May 27th, 2010

    Most of my machines still have XP on, it’s faster and safer than Vista and Windows 7 whilst a vast improvement on Vista is still relatively new. I would expect several service packs to come out before I start updating my machines.