Re: [Full-Disclosure] RPC DCOM Patches

• Previous message: Dave Killion: "[Full-Disclosure] Out of Office AutoReply: Get Password mail..."
• Maybe in reply to: Jasper Blackwell: "Re: [Full-Disclosure] RPC DCOM Patches"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: john_sec_lists@hotmail.com
Date: Fri, 1 Aug 2003 15:40:59 +0700

I did with SP2 Servers and Workstation, the patch work fine and it did
close the hole.
For your environment, better do it in a none production environment first,
just-in-case there are problems with other applications that uses RPC.

cheers,

                                                                                                                                                 
                      "John Sec"
                      <john_sec_lists@hotmail.com To: full-disclosure@lists.netsys.com
> cc:
                      Sent by: Subject: [Full-Disclosure] RPC DCOM Patches
                      full-disclosure-admin@lists
                      .netsys.com
                                                                                                                                                 
                                                                                                                                                 
                      07/31/2003 07:31 PM
                                                                                                                                                 
                                                                                                                                                 

The MS website says that the patch can only be applied to Windows 2000
systems with SP3 or SP4. Has anybody tried to run the patch on an SP2
system? Are NT 4 Workstations vulnerable too, or just NT 4 Servers?

Thanks

_________________________________________________________________
STOP MORE SPAM with the new MSN 8 and get 2 months FREE*
http://join.msn.com/?page=features/junkmail

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

----------------------------------------------------------
The information contained in this communication is intended solely for the
use of the individual or entity to whom it is addressed and others
authorized to receive it. It may contain confidential or legally
privileged information. If you are not the intended recipient you are
hereby notified that any disclosure, copying, distribution or taking any
action in reliance on the contents of this information is strictly
prohibited and may be unlawful. If you have received this communication in
error, please notify us immediately by responding to this email and then
delete it from your system. Ernst & Young is neither liable for the proper
and complete transmission of the information contained in this
communication nor for any delay in its receipt.

Note: If you have received a delivery failure report, it may be due to the
change in the Ernst & Young e-mail domain from "eyi.com" to "ey.com".
Could you please make the necessary amendment, if required, and resend the
message.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: Dave Killion: "[Full-Disclosure] Out of Office AutoReply: Get Password mail..."
• Maybe in reply to: Jasper Blackwell: "Re: [Full-Disclosure] RPC DCOM Patches"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]