RE: DCOM Worm

From: Ken Remley (ken.remley_at_jfshea.com)
Date: 08/13/03

  • Next message: Vincent Martin: "RE: Why the shutdown if infected with blaster?"
    To: 'Mario Davids' <MarioD@etv.co.za>, focus-ms@securityfocus.com
    Date: Wed, 13 Aug 2003 08:39:14 -0700
    
    

    Yes it is on there. It will take forever to get it from there because
    everyone is hitting that server! You might want to get it from the direct
    link at http://support.microsoft.com/?kbid=823980

    I don't think sp4 has the latest release of this patch inbedded.

    Ken

    -----Original Message-----
    From: Mario Davids [mailto:MarioD@etv.co.za]
    Sent: Wednesday, August 13, 2003 1:25 AM
    To: focus-ms@securityfocus.com
    Subject: DCOM Worm
    Importance: High

    Hey,

    Has MS put the patch on http://windowsupdate.microsoft.com/ yet ? and Does
    SP4 have the fix ? ...

    Thanks
    Blue

    ---------------------------------------------------------------------------
    Your network firewall and IDS products do not prevent Web application
    attacks - the most common form of online exploitation- resulting in Web
    defacement, data theft, sabotage and fraud.
    KaVaDo is the only company that provides a complete suite of Web
    application security products.
    Download a FREE whitepaper on "Security Policy Automation for Web
    Applications":http://www.securityfocus.com/Kavado-focus-ms
    ---------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Your network firewall and IDS products do not prevent Web application
    attacks - the most common form of online exploitation- resulting in Web
    defacement, data theft, sabotage and fraud.
    KaVaDo is the only company that provides a complete suite of Web
    application security products.
    Download a FREE whitepaper on "Security Policy Automation for Web
    Applications":http://www.securityfocus.com/Kavado-focus-ms
    ---------------------------------------------------------------------------


  • Next message: Vincent Martin: "RE: Why the shutdown if infected with blaster?"

    Relevant Pages

    • RE: What the heck is this msblast.exe
      ... Send data on TCP port 135 that may exploit the DCOM RPC vulnerabilty to ... the worm to be download and run using the program tftp. ... Your network firewall and IDS products do not prevent Web application ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • RE: What the heck is this msblast.exe
      ... Your network firewall and IDS products do not prevent Web application ... KaVaDo is the only company that provides a complete suite of Web ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • Re: What the heck is this msblast.exe
      ... the default is reboot system. ... and download the patch and then run it from their machine. ... >Your network firewall and IDS products do not prevent Web application ... >Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • RE: Exchange 2000 out of office
      ... Your network firewall and IDS products do not prevent Web application ... KaVaDo is the only company that provides a complete suite of Web ... Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)
    • RE: What the heck is this msblast.exe
      ... What the heck is this msblast.exe ... |Your network firewall and IDS products do not prevent Web application ... |attacks - the most common form of online exploitation- resulting in Web ... |Download a FREE whitepaper on "Security Policy Automation for Web ...
      (Focus-Microsoft)