Researchers find Zero Day security hole in Windows 7

The hole, different from previous Windows 7 bug and holes in Windows NT, is said to be the first Zero Day hole since the global public test of Windows 7.

360 Security centers, the biggest free security platform in China, has reported the vulnerability to Microsoft China and got the confirmation unofficially, the company said. Microsoft hasn’t made any official statement about the security hole or when to issue a security patch.

Engineers at 360 security center said the computers displayed blue screens when they tried to create or close windows that were affected by the problem.

The graphical interfaces system of Windows 7 RC contains old codes from Windows 3.1 where security is not considered when developed. When Microsoft optimizes the graphical interfaces of Windows 7, the incompatibility with old codes leads the system to blue screen.

Attackers will be able to firstly invade the System server of certain object to launch the attack, or to make a potential opportunity for a second attack. Thus, the security hole is a greater threat for the firm and government customers who’re using Windows 7 RC.

There is no case of attack with the security hole reported yet, but there is hot discussion about it in some hacker’s forums.

The security experts of 360 suggest Windows 7 RC users to be alert and pay close attention to the security updates of Microsoft.