Microsoft Security Bulletin MS02-011 re-surface.... (EDIT)

From: Daniel Field (daniel_at_WORLDOF.NET)
Date: 09/23/03

Next message: Brian Depew: "Windows 2000 server issue"

Previous message: Marek Byszewski: "Re: Perpetual restarts after installing MS03-039 patch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Tue, 23 Sep 2003 14:54:39 +0100
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

Edited....

Is it worth while mentioning this again? It seems as though the number of
people abusing this flaw is on the increase, so much in fact for Message
Labs to issue the first advisory I have seen from them, having been a
customer for 3 years.

MS rate this as a low severity issue, I think it may be more severe than
they suspect... Purely from a business cost that this flaw could cause, a)
Cost of system resources used (bandwidth, server etc) and more importantly
b) being blacklisted. The second cost could be extremely large for a small
ISP/ASP type business who offers a mail services for their customers. If
their customers are not then able to mail any domains who subscribes to
these blacklists then the cost be great!

I think due to the low rating of this issue, there will be many servers that
have not been patched. It is also easy to miss-read the issue and think it
only applies to exchange servers, it doesn't it also applies to any windows
2000 machine running the SMTP service. Although it is included in service
pack 3 upwards.

Daniel Field
WorldOf.net Ltd.
e: daniel@worldof.net
t: 01733 361345
w: www.publishingmedia.co.uk
w: www.travelmedia.ltd.uk
w: www.worldof.net

----
Are You "Certifiable"? Summer's Hottest Certification Just Got HOTTER!
With a growth rate exceeding 110%, the TICSA security practitioner
certification is one of the hottest IT credentials available.  And now, for
a limited time, you can save 33% off of the TICSA certification exam! To
learn more about the TICSA certification, and to register as a TICSA
candidate online, just go to
http://www.trusecure.com/offer/s0100/
----

Next message: Brian Depew: "Windows 2000 server issue"

Previous message: Marek Byszewski: "Re: Perpetual restarts after installing MS03-039 patch"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Is OpenVMS certified yet for 64-way Hard partitions (GS1280 M64).
... That simply tells me that Cerner ... most of the Cerner servers are either big AIX or big OpenVMS servers ... Remember the Govt certification effort on all of this. ... Lets not mix the arguments - is it a technical or cost issue you are ...
(comp.os.vms)
Re: Alert: Microsoft Security Bulletin - MS03-039
... The way that Microsoft patched the new RPC Part II vulnerability ... Summer's Hottest Certification Just Got HOTTER! ... To learn more about the TICSA certification, ...
(NT-Bugtraq)
Windows 2000 server issue
... accurately parse the lists of vulnerable machines produced by the scan ... of addresses directly on the script. ... Summer's Hottest Certification Just Got HOTTER! ... you can save 33% off of the TICSA certification ...
(NT-Bugtraq)
Re: Drivial Pursuit: Internet Explorer Browser & Your Files and Folders !
... The default Enhanced Security Configuration of IE ... access to files and folders on the local machine from the internet. ... With a growth rate exceeding 110%, the TICSA security practitioner certification is one of the hottest IT credentials available. ... And now, for a limited time, you can save 33% off of the TICSA certification exam! ...
(NT-Bugtraq)
Re: Microsoft Numbering System
... the patch for each systems affected. ... in the right frame. ... Summer's Hottest Certification Just Got HOTTER! ... you can save 33% off of the TICSA certification exam! ...
(NT-Bugtraq)