RE: DCOM Worm

From: Bruce Martins (BMartins_at_extend.COM)
Date: 08/13/03

  • Next message: Jonathan Rickman: "Re: Why the shutdown if infected with blaster?"
    Date: Wed, 13 Aug 2003 11:42:17 -0400
    To: "Mario Davids" <MarioD@etv.co.za>, <focus-ms@securityfocus.com>
    
    

    Yes they have about a month ago, and I do not believe that service pack
    4 contains the fix someone correct me if I am wrong here

    http://www.microsoft.com/technet/security/bulletin/MS03-026.asp
    http://www.microsoft.com/security/security_bulletins/MS03-026.asp
     

    Bruce Martins
    Systems Administrator
    EXTEND>>MEDIA
    190 Liberty Street
    Toronto, Ontario
    Canada
    M6K 3L5
    _______________________
    e:bmartins@extend.com
    t: (416) 535-4222 ext. 2307
    f: (416) 535-1201
    http://www.extend.com

    -----Original Message-----
    From: Mario Davids [mailto:MarioD@etv.co.za]
    Sent: Wednesday, August 13, 2003 4:25 AM
    To: focus-ms@securityfocus.com
    Importance: High

    Hey,

    Has MS put the patch on http://windowsupdate.microsoft.com/ yet ? and
    Does
    SP4 have the fix ? ...

    Thanks
    Blue

    ------------------------------------------------------------------------

    ---
    Your network firewall and IDS products do not prevent Web application
    attacks - the most common form of online exploitation- resulting in Web
    defacement, data theft, sabotage and fraud.
    KaVaDo is the only company that provides a complete suite of Web
    application security products.
    Download a FREE whitepaper on "Security Policy Automation for Web
    Applications":http://www.securityfocus.com/Kavado-focus-ms
    ------------------------------------------------------------------------
    ---
    ---------------------------------------------------------------------------
    Your network firewall and IDS products do not prevent Web application 
    attacks - the most common form of online exploitation- resulting in Web 
    defacement, data theft, sabotage and fraud.
    KaVaDo is the only company that provides a complete suite of Web 
    application security products.
    Download a FREE whitepaper on "Security Policy Automation for Web
    Applications":http://www.securityfocus.com/Kavado-focus-ms
    ---------------------------------------------------------------------------
    

  • Next message: Jonathan Rickman: "Re: Why the shutdown if infected with blaster?"

    Relevant Pages

    • RE: What the heck is this msblast.exe
      ... Your network firewall and IDS products do not prevent Web application ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • RE: What the heck is this msblast.exe
      ... Send data on TCP port 135 that may exploit the DCOM RPC vulnerabilty to ... the worm to be download and run using the program tftp. ... Your network firewall and IDS products do not prevent Web application ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • RE: What the heck is this msblast.exe
      ... Your network firewall and IDS products do not prevent Web application ... KaVaDo is the only company that provides a complete suite of Web ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • Re: What the heck is this msblast.exe
      ... the default is reboot system. ... and download the patch and then run it from their machine. ... >Your network firewall and IDS products do not prevent Web application ... >Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • Re: MS03-029 ?-Download link
      ... Your network firewall and IDS products do not prevent Web application ... KaVaDo is the only company that provides a complete suite of Web ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)