Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...

• Previous message: Niek: "Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over..."
• In reply to: Florian Weimer: "Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over..."
• Next in thread: wastedimage: "Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 14 Dec 2004 15:41:06 -0500
To: "Full-Disclosure (E-mail)" <full-disclosure@lists.netsys.com>

Theres a patch out today...

Microsoft Security Bulletin MS04-045:
Vulnerability in WINS Could Allow Remote Code Execution (870763)

Bulletin URL:
<http://www.microsoft.com/technet/security/bulletin/MS04-045.mspx>

Version Number: 1.0
Issued Date: Tuesday, December 14, 2004
Impact of Vulnerability: Remote Code Execution
Maximum Severity Rating: Important
Patch(es) Replaced: This bulletin replaces a prior security update. See
the frequently asked questions (FAQ) section of this bulletin for the
complete list.
Caveats: None

-KF

Florian Weimer wrote:
> * James Lay:
>
>
>>Here they be. ODD. Anyone else seeing this?
>
>
> Probably yes. 8-) 42/TCP is used by Microsoft's WINS replication, and
> this service has got a security hole for which Microsoft has yet to
> release a patch.
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: Niek: "Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over..."
• In reply to: Florian Weimer: "Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over..."
• Next in thread: wastedimage: "Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages SSRT3509 Potential Security Vulnerability in CIFS/9000 Server ... SSRT3509 Potential Security Vulnerability in CIFS/9000 Server ... Bulletin provided that it remains complete and intact. ... (comp.security.misc) SSRT3509 Potential Security Vulnerability in CIFS/9000 Server ... SSRT3509 Potential Security Vulnerability in CIFS/9000 Server ... Bulletin provided that it remains complete and intact. ... (comp.security.unix) Microsoft Update Hoax?? ... to alert you of this Security Bulletin. ... and a patch regarding a vulnerability in the ... likelihood of the exploitation of this vulnerability. ... (microsoft.public.security) Microsoft Security Bulletin MS01-055 (Version 2.0) ... The following is a Security Bulletin from the Microsoft Product Security ... The third vulnerability is a new variant of a vulnerability ... (Bugtraq) SSRT2316 Sec. Vulnerability in DNS and resolver libs (rev.10) ... Source: HEWLETT-PACKARD COMPANY ... SECURITY BULLETIN: HPSBUX0208-209 ... SSRT2316 Sec. Vulnerability in DNS and resolver lib's ... Bulletin provided that it remains complete and intact. ... (comp.sys.hp.hpux)