Re: on-line Messenger Service exploitation in Windows XP
From: Gary Flynn (flynngn@jmu.edu)
Date: 12/12/02
- Next message: Paul: "forgot initial logon password to XP Professional"
- Previous message: Jerry Bryant [MSFT]: "Re: updates has stopped working on my PCs w/ ME"
- Maybe in reply to: Mike: "on-line Messenger Service exploitation in Windows XP"
- Next in thread: Bill Sanderson: "Re: on-line Messenger Service exploitation in Windows XP"
- Reply: Bill Sanderson: "Re: on-line Messenger Service exploitation in Windows XP"
- Reply: Alun Jones: "Re: on-line Messenger Service exploitation in Windows XP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Gary Flynn" <flynngn@jmu.edu> Date: Thu, 12 Dec 2002 14:07:32 -0500
"Alun Jones" <alun@texis.com> wrote in message
news:Iy4K9.2563$tm.859659406@newssvr12.news.prodigy.com...
> In article <OsJoX7foCHA.1612@TK2MSFTNGP10>, "George Hester"
> <hesterloli@hotmail.com> wrote:
> >It is a security flaw like it or not.
>
> Yes. It indicates that you're not running a firewall, and thus anyone and
> everyone has access to your shares. Disabling Messenger covers up the symptom
> without curing the problem; rather like putting a band-aid over a melanoma.
The problem is a service allowing unauthenticated, unsolicited connections.
Removing the service solves the problem.
Adding a firewall covers it up...like bandaid covering up a port.
- Next message: Paul: "forgot initial logon password to XP Professional"
- Previous message: Jerry Bryant [MSFT]: "Re: updates has stopped working on my PCs w/ ME"
- Maybe in reply to: Mike: "on-line Messenger Service exploitation in Windows XP"
- Next in thread: Bill Sanderson: "Re: on-line Messenger Service exploitation in Windows XP"
- Reply: Bill Sanderson: "Re: on-line Messenger Service exploitation in Windows XP"
- Reply: Alun Jones: "Re: on-line Messenger Service exploitation in Windows XP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
