Re: DCOM Hotfix breaks our software

From: alex mole (alex.mole_at_realtimeworlds.com)
Date: 08/19/03

  • Next message: Ansgar Wiechers: "Re: Best IP configuration for OpenBSD firewall/router" 
    Date: Tue, 19 Aug 2003 20:37:05 +0100
To: security-basics@securityfocus.com

    The software is NXN AlienBrain 6 (www.nxn-software.com)

    It's a client-server app for version control (sort of like an uber-CVS).
    My guess is that it uses DCOM for some of it's functionality.

    The problems were on a client machine, and once the hotfix had been
    uninstalled from this machine the problems went away. Obviously, this
    machine is now still susceptible to the exploit (and W32.Blaster as well).

    Is there any other way (without breaking things like DCOM and NetBIOS)
    to patch this hole?

    Alex

    matt willson wrote:
    > Well, perhaps we could have better knowledge/responses if you informed
    > us of the software?
    >
    > -----Original Message-----
    > From: alex.mole@realtimeworlds [mailto:alex.mole@realtimeworlds.com]
    > Sent: Tuesday, August 19, 2003 2:41 AM
    > To: security-basics@securityfocus.com
    > Subject: DCOM Hotfix breaks our software
    >
    > Hi
    >
    > So, having diligently patched our PCs with hotfix 823980, it turns out
    > that
    > it breaks a piece of software that is critical to our work. Removing the
    > hotfix fixes this software. It seems that the two are incompatible...
    >
    > We're speaking to our software vendor to see if anything can be done
    > about
    > it, but:
    >
    > 1) Has anyone else had issues with this fix? I've not noticed any
    > mentioned...
    > 2) What would you suggest we do in the interim [until our software can
    > be
    > fixed]? We are behind a firewall, but there are several users who
    > bring
    > laptops into the office and use them on the network.
    >
    >
    > Thanks,
    >
    > Alex
    >
    >
    >
    > ________________________________________________________________________
    > This email has been scanned for all viruses by the MessageLabs Email
    > Security System. For more information on a proactive email security
    > service working around the clock, around the globe, visit
    > http://www.messagelabs.com
    > ________________________________________________________________________
    >
    > ------------------------------------------------------------------------
    > ---
    > ------------------------------------------------------------------------
    > ----
    >
    >
    > ________________________________________________________________________
    > This email has been scanned for all viruses by the MessageLabs Email
    > Security System. For more information on a proactive email security
    > service working around the clock, around the globe, visit
    > http://www.messagelabs.com
    > ________________________________________________________________________
    >

    ________________________________________________________________________
    This email has been scanned for all viruses by the MessageLabs Email
    Security System. For more information on a proactive email security
    service working around the clock, around the globe, visit
    http://www.messagelabs.com
    ________________________________________________________________________

    ---------------------------------------------------------------------------
    ----------------------------------------------------------------------------

  • Next message: Ansgar Wiechers: "Re: Best IP configuration for OpenBSD firewall/router"
    • Quantcast