Holy Buddha in a Bunnysuit, we have some MS05-19 questions

From: Mike Holleran (MikeHolleran_at_discussions.microsoft.com)
Date: 04/13/05

• Next message: andy smart: "Re: Hack help"
• Previous message: Frank Jensen: "Re: Problems installing a certificate for IP Security"
• Next in thread: Karl Levinson, mvp: "Re: Holy Buddha in a Bunnysuit, we have some MS05-19 questions"
• Reply: Karl Levinson, mvp: "Re: Holy Buddha in a Bunnysuit, we have some MS05-19 questions"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 13 Apr 2005 05:30:03 -0700

Two questions about MS05-19.

1.) What are people's opinion of the seriousness of this exploit over the
Internet. According to the bulletin "most routers do not forward malformed
IP packets". That makes it seem that any sort of Internet worm or port
scanning attack is unlikley since routers on the Internet are not going to
foward these packets.

2.) Did anyone catch the link in the bulletin to this article:
http://support.microsoft.com/kb/890345/

It is entitled "You may notice that the performance of your network
decreases after you apply security update 893066".

The symptons listed in the article are :

"After you apply security update 893066, you may notice that the performance
of your network decreases. For example, the throughput may be one-fourth of
the throughput you experienced before you applied the update."

  The article is very short on details and only gives a reg key you can add
(assumingly on every machine) but does not give the format that the value
needs to be in. They article only says "In the Value data box, type the
window size that you want".

I can't imagine that MS would put out an update that had the possibility of
crippling your network and then only address the issue with a vague article
but it certainly seems that way.

Let me know what you guys think

Thanks

---

• Next message: andy smart: "Re: Hack help"
• Previous message: Frank Jensen: "Re: Problems installing a certificate for IP Security"
• Next in thread: Karl Levinson, mvp: "Re: Holy Buddha in a Bunnysuit, we have some MS05-19 questions"
• Reply: Karl Levinson, mvp: "Re: Holy Buddha in a Bunnysuit, we have some MS05-19 questions"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Here we go again, more virus and spyware ... Microsoft Security Bulletin MS06-4848 ... Cumulative Security Update for Internet Explorer ... Security Update Replacement: This bulletin replaces several prior security ... I believe many of the problem we are facing today as a result of virus ... (alt.comp.anti-virus) Re: Weird net connection problem ... Lets say that you have your own /24 network that ... The internet knows nothing. ... my sloppy writing - I mean the set of routers that go to make up ... for the high-speed route from the Tunnel to St Pancras not only cut the ... (uk.comp.sys.mac) Re: Corporate Intranet ... Try to map or figure out how is the network inside... ... all ip addresses involved, specially on routers. ... On internet browsers combined with Social Engineering, ... InfoSec Institute ... (Pen-Test) Re: Security is vital! ... The key is "does OpenBSD have the wireless driver"? ... the Internet through the current system. ... Your school kids no longer have _access_ as the routers have the only two ... connection will have to be in "bridge mode". ... (comp.os.linux.questions) Re: Really need VPN help! ... can't route them over the Internet. ... That will tell the routers where to look on the ... would be very fast (faster then VPN) and fairly secure. ... >through terminal services (MSFT Remote Desktop, ... (microsoft.public.windowsxp.work_remotely)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)