Using Messenger Service for 'Net Send' Functionality --- Dangerous? Why?

deadly.halo_at_gmail.com
Date: 06/02/05

  • Next message: Raoul Armfield: "Re: Restricting file server to access to domain computers only." 
    Date: 2 Jun 2005 19:20:04 -0000
To: focus-ms@securityfocus.com
    ('binary' encoding is not supported, stored as-is) A fellow network administrator at the company I work for is interested in implementing a system that utilizes the Messenger Service (not to be confused with the MS Messenger chat tool) to initiate Net Send notifications to clients throughout the user community. Our network hosts consist of Windows 2000/XP machines (XP has the service disabled by default, 2000 may as well). I remember that there was a large vulnerability reported at the end of 2003 regarding the Messenger Service. I know that the issue was addressed in subsequent service packs, but this doesn't necessarily mean it's a good idea to use it.

    Bottom line; I'm concerned that enabling the Messenger Service throughout the network will open our environment to security vulnerabilities. What are you thoughts? Any know issues at this time? Your input would be greatly appreciated.

    Regards,

    Brian

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: Raoul Armfield: "Re: Restricting file server to access to domain computers only."

    Relevant Pages

    • Re: 50 years later, Marvin Minsky still doesnt get it
      ... environment merely by observing the neural "code" and knowing the ... The first step would in effect be decoding raw sensory data into ... The first half I called the input network. ... For example, when we see a dog, and know that it's a dog, it's not because ...
      (comp.ai.philosophy)
    • Re: Usefulness of Network Intrusion Detection Systems
      ... >track of application data sent over the network as well ... Different applications and protocols present different ... You're forgetting that the IDP may stop the exploit attempting to ... in a university environment where we basically have 15,000 home ...
      (Focus-IDS)
    • Re: Privilege-escalation attacks on NT-based Windows are unfixable
      ... >>> a well secured network. ... >> So you're basically saying that local privilege escalation doesn't ... > environment, this weakness is well behind other, like user writing down ... > security facilities ...
      (comp.security.misc)
    • Re: Privilege-escalation attacks on NT-based Windows are unfixable
      ... >>> a well secured network. ... >> So you're basically saying that local privilege escalation doesn't ... > environment, this weakness is well behind other, like user writing down ... > security facilities ...
      (comp.os.ms-windows.nt.admin.security)
    • Re: Cloning a Win 2003 DC
      ... environemt (off the network). ... Same thing that would happen if your "master" DC booted up and was unable to ... the longer term you will need to do some things to keep housekeeping tidy. ... In the test environment, don't worry too much if its a fairly short term ...
      (microsoft.public.windows.server.general)