November 24 message, Microsoft's Windows Vista operating system, found a security hole. The vulnerability allows rootkits using Vista operating system to hide a computer or a denial of server attacks. The vulnerability can cause system crashes. However, before the next service pack release is not expected to have patches.
The vulnerability is a security company Phion Austrian researchers found Thomas Unterleitner and Friday (Nov. 21) publicly announced. Unterleitner said, Phion in October this year, the company informed the security hole. However, he knows the next version of Microsoft's Vista may service package to provide the patch.
Unterleitner said the flaw exists in the Vista network input / output subsystem. Some distributed iphlpapi.dll application programming interface request to a buffer overflow, damaged Vista kernel memory, cause the system to Blue Screen of Death. He said the attacker could exploit this buffer overflow fault injection code, thus undermining the security of the client.
Unterleitner ZDNet UK via e-mail on the Web site said an attacker could exploit this to cause a denial of service attacks, shut down the user's computer. He said that the flaw in Vista's Netio.sys components, it is likely to allow hidden rootkits.
Unterleitner and his colleagues used a simple program that said, Vista Enterprise and Ultimate edition will definitely be affected by this security vulnerability. Other versions of Microsoft operating systems may be affected by this vulnerability. 32-bit version and 64-bit versions of Windows Vista operating system, is vulnerable. Windows XP from this security vulnerability.