Patch your machines - serious MS vulnerability

spidey07 · Nov 12, 2003

Great, another one that can allow worms to propogate. Buffer overflow meaning anybody can run code on your machine.

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-049.asp

If you run 2000 or XP then get patchin.

RagingBITCH · Nov 12, 2003

Thanks for the heads up!

EyeMWing · Nov 12, 2003

Oh joy of joyous joys. My machine is on at home and connected to the internet. $10 says that I'm infected by the time I get home.

spidey07 · Nov 12, 2003

Well, there are no known bugs for it now but I'd say give it about a week and there will be another blaster/nachi type worm.

Fausto · Nov 12, 2003

Yaaaaay for Microsoft!

Not. :frown:

spidey07 · Nov 12, 2003

I know. This is getting really old, really fast.

XZeroII · Nov 12, 2003

Major linux vulnerability! Everyone running linux, download this patch, untar it, patch your machine, recompile your kernel... oh wait. No one uses Linux at home!

Descartes · Nov 12, 2003

Originally posted by: EyeMWing
Oh joy of joyous joys. My machine is on at home and connected to the internet. $10 says that I'm infected by the time I get home.

If you're in such a sad state as to leave the associated ports open, imo, you deserve it

squirrel dog · Nov 12, 2003

Thanks.

MaxDepth · Nov 12, 2003

Another insidious thing about MS, try to use windows update URL from any browser that is not MS. http://windowsupdate.microsoft.com

(wasn't there a lawsuit about this?)

Rob9874 · Nov 12, 2003

Originally posted by: Descartes

Originally posted by: EyeMWing
Oh joy of joyous joys. My machine is on at home and connected to the internet. $10 says that I'm infected by the time I get home.

Click to expand...

If you're in such a sad state as to leave the associated ports open, imo, you deserve it

What does that even mean? What are associated ports, and how do you close them? Do you guys really go to that much trouble with your security? I just install Zone Alarm, and I'm done.

RossGr · Nov 12, 2003

Win 98 gets better every day!

amcdonald · Nov 12, 2003

thanks

Descartes · Nov 12, 2003

Originally posted by: Rob9874

Originally posted by: Descartes

Originally posted by: EyeMWing
Oh joy of joyous joys. My machine is on at home and connected to the internet. $10 says that I'm infected by the time I get home.

Click to expand...

If you're in such a sad state as to leave the associated ports open, imo, you deserve it

Click to expand...

What does that even mean? What are associated ports, and how do you close them? Do you guys really go to that much trouble with your security? I just install Zone Alarm, and I'm done.

If you installed Zone Alarm then you are, for the most part, done; it takes care of it for you.

I'm just talking about EyeMWing is seemingly worried about infection when the services associated with these ports have been traditionally exploited.

JonnyBlaze · Nov 12, 2003

nice, dosent affect me (2k3)

JBlaze

FoBoT · Nov 12, 2003

i usually get an email from MS on these, that is weird :/

spidey07 · Nov 12, 2003

From cert.org:

You may wish to block access from outside your network perimeter, specifically by blocking access to TCP & UDP ports 138, 139, and 445. This will limit your exposure to attacks. However, blocking at the network perimeter would still allow attackers within the perimeter of your network to exploit the vulnerability. It is important to understand your network's configuration and service requirements before deciding what changes are appropriate.

For a home user with a firewall or router it isn't that big of a deal. But for a business network it is.

alkemyst · Nov 12, 2003

if you show update 828035 in your add / remove proggie list you have the patch already.

Savij · Nov 12, 2003

1. Turn on WinXP firewall or zone alarm or whatever and you're OK on this one.
2. This is an MS update, not a worm.
3. If you have WinXP andf had the previous patches already installed then you don't need to worrry about this one

"Note: The Windows XP security updates that released on October 15th as part of Security Bulletin MS03-043 (828035) include the updated file that helps protect from this vulnerability. If you have applied the Windows XP security updates for MS03-043 (828035) you do not have to reapply this update."

FoBoT · Nov 12, 2003

Savij, that must be why there wasn't a critical update alert email, perhaps

mrCide · Nov 12, 2003

as a network admin I AM FED UP WITH UPDATES THAT REQUIRE A REBOOT

skace · Nov 12, 2003

828035 only works in the XP scenario. This is still a critical issue for 2K machines, as the article states.

Savij · Nov 12, 2003

Originally posted by: FoBoT
Savij, that must be why there wasn't a critical update alert email, perhaps

Not really sure about the emails. I was just trying to say it isn't something to panic about...yet.

ITJunkie · Nov 12, 2003

Originally posted by: mrCide
as a network admin I AM FED UP WITH UPDATES THAT REQUIRE A REBOOT

I totally agree...

Megatomic · Nov 12, 2003

It's gotten to the point that I run Windows Update at least every other day. I'm not kidding. I got patched up last night...

Patch your machines - serious MS vulnerability

No Lifer

Lifer

Banned

No Lifer

Elite Member

No Lifer

Lifer

Lifer

Diamond Member

Diamond Member

Diamond Member

Diamond Member

Diamond Member

Lifer

Diamond Member

No Lifer

No Lifer

No Lifer

Diamond Member

No Lifer

Diamond Member

Lifer

Diamond Member

Platinum Member

Lifer