[VulnWatch] LLSSRV Redux

From: Dave Aitel (dave_at_immunitysec.com)
Date: 03/17/05

  • Next message: Michal Zalewski: "[VulnWatch] Linux ISO9660 handling flaws" 
    Date: Thu, 17 Mar 2005 13:59:47 -0500
To: vulnwatch@vulnwatch.org

    With regards to the LLSSRV advisory Immunity published yesterday, we
    would like to issue a clarification. There are two ways to get SP4 onto
    a Windows 2000 Advanced Server machine, as follows:
    1. Download SP4 from microsoft.com via networked or express install
    2. Obtain and install a Windows 2000 Advanced Server CD or CD image that
    includes SP4. This is available from the MSDN CD packages or online
    download site. You may also have obtained such a CD from a vendor or
    retailer.

    The second way is vulnerable; the first way is not.

    I.E. This advisory does not apply to Windows 2000 Advanced Server cases
    where Service Pack 4 was installed separately.

    We apologize for any confusion and thank those who pointed out that
    installing SP4 manually will remove the registry key that allows for
    anonymous remote access.

    Reference Image:
    http://www.immunitysec.com/downloads/win2kadvsrv_withSP4.jpg

    Thanks,
    Dave Aitel
    VP Figureheads and Verbage
    Immunity, Inc.

  • Next message: Michal Zalewski: "[VulnWatch] Linux ISO9660 handling flaws"

    Relevant Pages

    • Re: Question about a situation with SBS 2000 and SP4
      ... Windows 2000 Service Pack 4 Network Install for IT ... I told him to do it ASP and apply the the SP4 and the SP4 rollup. ...
      (microsoft.public.backoffice.smallbiz2000)
    • Cant reinstall SP4 - file lock on "atapi.sys"
      ... A few weeks ago my Windows 2000 (SP4) installation suddenly didn't boot any more and after some unsuccesfull troubleshooting I was faced with the options of either a clean re-installation of Windows, or trying the "repair" option of the Win2k installation CD. ... terrified at the thought of also re-installing some 200 programs & apps after a clean Win2k install. ... but Service Pack Setup stopped midway through saying that the "atapi.sys" file was in use and that I should resume after closing all apps using it. ...
      (microsoft.public.de.german.win2000.sonstiges)
    • Re: W2K SP4 Hosed our PC - Need Help !!!
      ... install without IE6. ... with your assertion that Service Packs of Windows 2000 have come out to fix ... The issue in the server is a pretty esoteric thing. ... But I have told you where SP4 has the most problems. ...
      (microsoft.public.win2000.general)
    • Re: Using CHKREG.EXE to repair corrupted Registry
      ... Boy this SP4 keeps rearing its ugly head. ... Windows 2000 CD-ROM with SP4 installed. ... If you cannot boot and you cannot repair then in all likelihood it is time for a reinstall. ... get a new harddrive and install anew on that. ...
      (microsoft.public.win2000.general)
    • Re: Question about a situation with SBS 2000 and SP4
      ... Windows 2000 Service Pack 4 Network Install for IT ... I told him to do it ASP and apply the the SP4 and the SP4 rollup. ...
      (microsoft.public.backoffice.smallbiz2000)