Windows 7 users would be well-advised to block outgoing ports 139 and 445. Microsoft has confirmed the existence of a vulnerability that affects SMB in Windows 7 and Windows Server 2008 RC2. Worst case scenario: you connect to a malicious server then it crashes your PC.
The beauty here is that, in a perfect world, these ports would be blocked by default, making the exploit much less troubling. Let’s say you’re messing around on your computer, and all of a sudden Windows (or your firewall of choice) prompts you to open port 445 for a connection. So you say to yourself, “Hmm, I’m pretty sure my game of chess doesn’t need to access an SMB share to work properly, so I’m going to go ahead and deny that port-open request.”
But that’s now how the real world works.
It comes down to this: block those two ports when you’re not actively using them. No problems.
I could make some sort of snide remark about this being the first of many (maybe!) Windows 7 exploits, but let’s face it: when you’re dealing with so many lines of code, you’re bound to find a few bugs in there.
Oh, and Microsoft hasn’t said when it plans to patch the exploit. Presumably it will do so with its next big first Tuesday of the month patch day.
Disrupt 2026: The tech ecosystem, all in one room
Your next round. Your next hire. Your next breakout opportunity. Find it at TechCrunch Disrupt 2026, where 10,000+ founders, investors, and tech leaders gather for three days of 250+ tactical sessions, powerful introductions, and market-defining innovation. Register now to save up to $400.
Save up to $300 or 30% to TechCrunch Founder Summit
1,000+ founders and investors come together at TechCrunch Founder Summit 2026 for a full day focused on growth, execution, and real-world scaling. Learn from founders and investors who have shaped the industry. Connect with peers navigating similar growth stages. Walk away with tactics you can apply immediately
Offer ends March 13.
via Slashdot
