Re: Alert: Microsoft Security Bulletin - MS03-039
From: Russ (Russ.Cooper_at_RC.ON.CA)
Date: 09/10/03
- Previous message: Russ: "Revised: Microsoft Security Bulletin - MS03-026"
- Maybe in reply to: Russ: "Alert: Microsoft Security Bulletin - MS03-039"
- Next in thread: Russ: "Re: Alert: Microsoft Security Bulletin - MS03-039"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 10 Sep 2003 15:06:40 -0400 To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
I can't go into great detail at the moment, but suffice it to say that the vulnerabilities patched by MS03-039 represent new vectors for a Blaster-like worm to exploit, even if you have applied MS03-026.
1. Disable DCOM
or
2. Patch now.
I wouldn't be too worried about the RPC over HTTP or Tunneling TCP/IP vectors, its highly unlikely they would get used by any worm given how few systems have likely enabled them (neither are enabled by default.)
Cheers,
Russ - NTBugtraq Editor
---- Are You "Certifiable"? Summer's Hottest Certification Just Got HOTTER! With a growth rate exceeding 110%, the TICSA security practitioner certification is one of the hottest IT credentials available. And now, for a limited time, you can save 33% off of the TICSA certification exam! To learn more about the TICSA certification, and to register as a TICSA candidate online, just go to http://www.trusecure.com/offer/s0100/ ----
- Previous message: Russ: "Revised: Microsoft Security Bulletin - MS03-026"
- Maybe in reply to: Russ: "Alert: Microsoft Security Bulletin - MS03-039"
- Next in thread: Russ: "Re: Alert: Microsoft Security Bulletin - MS03-039"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
