|
|
Focus on Microsoft
question re: continued RPC vulnerability Oct 15 2003 08:24PM Zachary Mutrux (zmutrux compumentor org) (1 replies) RE: question re: continued RPC vulnerability Oct 16 2003 03:50PM E. Jimmy Allotey (jimmy allotey com) (1 replies) |
|
Privacy Statement |
>
> Has patches for the Messenger Service RPC Hole
>
> http://www.microsoft.com/technet/treeview/default.asp?url=/technet/secur
> ity/bulletin/MS03-043.asp
>
> Also check out this link from ISS
>
> http://xforce.iss.net/xforce/alerts/id/155
This still leaves systems vulnerable to a new RPC hole (labled
CAN-2003-0813). Exploit code for this flaw is publicly available and can be
used to cause a denial of service attack. I have not yet seen exploit code
that can cause code execution, but it may be possible (and I don't think
anyone would be terribly shocked). In any event there are more holes lurking
in MS RPC, people would do well to implement as many of the
workaround/mitigation strategies as possible.
Kurt Seifried, kurt (at) seifried (dot) org [email concealed]
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/
------------------------------------------------------------------------
---
FREE Whitepaper: Better Management for Network Security
Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console
Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_focus-ms_031015
------------------------------------------------------------------------
---
[ reply ]