Security Advisory 2028859 Released(Windows 7 64-bit Security Advisory)

Microsoft has released a security advisory about a publicly revealed security vulnerability that is affecting 64-bit versions of Windows 7 as well as Windows Server 2008 R2. The vulnerability was discovered in the Windows Canonical Display Driver (cdd.dll) which is “used by desktop composition to blend the Windows Graphics Device Interface (GDI) and DirectX drawing”.

Remote code execution is possible in theory but unlikely according to Jerry Bryant who wrote the blog post informing Microsoft users about the Security Advisory.

The most likely impact is that affected systems will stop responding and restart.

The security advisory http://www.microsoft.com/technet/security/advisory/2028859.mspx itself gives information about mitigating factors and suggested actions.

The easiest option to block the attack until a security patch is released is to disable the Windows Aero theme in the operating system.

To disable Windows Aero by changing the theme, perform the following steps for each user on a system:

1. Click Start, select the Control Panel, and then click on Appearance and Personalization.

2.Under the Personalization category, click on Change the Theme.

3.Scroll to the bottom of the listed themes and select one of the available Basic and High Contrast Themes.

Using the Group Policy Management Console:

To disable Windows Aero by switching to the default setting through group policy, perform the following steps:

1. Open the Group Policy Management Console and configure the console to work with the appropriate Group Policy object, such as, local machine, OU, or domain GPO.

2. Navigate to the following node:
User Configuration – Policies – Administrative Templates – Control Panel – Personalization

3. Double-click Force a specific visual style file or force Windows Classic.

4. Change the setting to Enabled and ensure that the Path to Visual Style text box is blank.

5.Click Apply and click OK to return to the Group Policy Management Console.

6. Refresh the Group Policy on all systems or wait for the next scheduled Group Policy refresh interval for the settings to take effect.

It is expected that Microsoft will release a security patch soon.

One response to this post.

  1. You made some good points there. I did a search on the topic and found most people agree with you. But it’s human nature for some to disagree. But whatever. They’re in the minority.

    Reply

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: