Re: question re: continued RPC vulnerability

From: Kurt Seifried (bt_at_seifried.org)
Date: 10/16/03

  • Next message: Klassen, Matthew: "Win2003 RPC failure after Hotfix" 
    To: "E. Jimmy Allotey" <jimmy@allotey.com>, "'Zachary Mutrux'" <zmutrux@compumentor.org>, <focus-ms@securityfocus.com>
Date: Thu, 16 Oct 2003 13:03:34 -0600

    > Check out this link from Microsoft...
    >
    > Has patches for the Messenger Service RPC Hole
    >
    > http://www.microsoft.com/technet/treeview/default.asp?url=/technet/secur
    > ity/bulletin/MS03-043.asp
    >
    > Also check out this link from ISS
    >
    > http://xforce.iss.net/xforce/alerts/id/155

    This still leaves systems vulnerable to a new RPC hole (labled
    CAN-2003-0813). Exploit code for this flaw is publicly available and can be
    used to cause a denial of service attack. I have not yet seen exploit code
    that can cause code execution, but it may be possible (and I don't think
    anyone would be terribly shocked). In any event there are more holes lurking
    in MS RPC, people would do well to implement as many of the
    workaround/mitigation strategies as possible.

    Kurt Seifried, kurt@seifried.org
    A15B BEE5 B391 B9AD B0EF
    AEB0 AD63 0B4E AD56 E574
    http://seifried.org/security/

    ---------------------------------------------------------------------------
    FREE Whitepaper: Better Management for Network Security

    Looking for a better way to manage your IP security?
    Learn how Solsoft can help you:
    - Ensure robust IP security through policy-based management
    - Make firewall, VPN, and NAT rules interoperable across heterogeneous
    networks
    - Quickly respond to network events from a central console

    Download our FREE whitepaper at:
    http://www.securityfocus.com/sponsor/Solsoft_focus-ms_031015
    ---------------------------------------------------------------------------

  • Next message: Klassen, Matthew: "Win2003 RPC failure after Hotfix"