Re: Article on WebDAV Vulnerability (MS03-007)
From: The Other Guy (nospam@this.addy)
Date: 03/24/03
- Next message: Security Alert: "SSRT2439 Security Vulnerability in xdrmem_getbytes() (rev.1)"
- Previous message: Ron Ruble: "Re: breakin analysis"
- In reply to: aladin: "Article on WebDAV Vulnerability (MS03-007)"
- Next in thread: Karl Levinson [x y] mvp: "Re: Article on WebDAV Vulnerability (MS03-007)"
- Reply: Karl Levinson [x y] mvp: "Re: Article on WebDAV Vulnerability (MS03-007)"
- Reply: John Alderson: "Re: Article on WebDAV Vulnerability (MS03-007)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: The Other Guy <nospam@this.addy> Date: Mon, 24 Mar 2003 17:56:24 GMT
On 24 Mar 2003 09:37:21 -0800, while waiting for Somebody Else to show
up and say something, The Other Guy responded to a post from
aladin168@hotmail.com (aladin) who wrote in comp.security:
>KLC Consulting has published an article on the MS03-007 WebDAV
>Vulnerability, which includes detection and mitigation
>recommendations. This article consolidates many experts' inputs and
>discussions. The URL is:
>http://www.klcconsulting.net/articles/webdav/webdav_vuln.htm
>
>BTW, KLC recently published a nice analysis, A Honeypot Analysis on
>Deloder Worm (http://www.klcconsulting.net/deloder_worm.htm), which is
>still spreading worldwide and posing serious threats. KLC also
>authored a network security utility called SMAC, a Windows MAC Address
>Modifying Tool. (http://www.klcconsulting.net/smac)
>
>Cheers,
>
>Kyle Lai, CISSP, CISA
>KLC Consulting, Inc.
>klai@klcconsulting.net
>http://www.klcconsulting.net
A patch has been released for this exploit. However, some W@K users
have experienced conflicts with other software, etc.
http://www.infoworld.com/article/03/03/19/HNwinpatch_1.html
The problems caused by this patch are apparently related
to the dependencies of 4 .dll files and this patch replaces ONE of
those .dll files. In order to avoid the blue screens you need to
first patch your system with Win2k SP3 since the updated
.dll file in the MS03-007 patch was designed to work with the other
.dll files from W2k SP3. If you do not have SP3, as I understand it
you WILL get a blue screen on reboot.
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-007.asp
-- ./configure --prefix=~/zyterion Not this guy or that guy, The Other Guy. This spot may contain a satirical comment or comedic source, and is meant to be funny. If you are easily offended, gullible or don't have a sense of humour we suggest you read elsewhere.
- Next message: Security Alert: "SSRT2439 Security Vulnerability in xdrmem_getbytes() (rev.1)"
- Previous message: Ron Ruble: "Re: breakin analysis"
- In reply to: aladin: "Article on WebDAV Vulnerability (MS03-007)"
- Next in thread: Karl Levinson [x y] mvp: "Re: Article on WebDAV Vulnerability (MS03-007)"
- Reply: Karl Levinson [x y] mvp: "Re: Article on WebDAV Vulnerability (MS03-007)"
- Reply: John Alderson: "Re: Article on WebDAV Vulnerability (MS03-007)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
