PDA

View Full Version : NEW - Security Flaw In Windows XP... (and 2000/2003)

Marc Liron
December 5th 03, 10:23 PM
Hi,

My site has been receiving a lot of email about the new
security vulnerability to users of XP (and NT4/2000/2003)

Some of the folks writing to me are confused about this
issue as it relates to the flaw in XP's DCOM/RPCSS
services.

Microsoft have already issued a patch under KB823980 for
a known security threat. (Those that did not apply this
patch are the ones who were hit by the MSBlaster worm!)

However, Microsoft have discovered THREE more flaws that
could lead to another similar worm attacking tens of
thousands of users!

Users need to patch their systems against any potential
Threat exploiting these new DCOM/RPCSS flaws.

I have posted the following article in response to the
amount of interest in this subject.

The new patch is under KB824146 - released 10th Sept 2003

http://www.updatexp.com/kb824146.html


Kind Regards

Marc Liron
www.updatexp.com
Shadow of James
December 5th 03, 10:23 PM
It has also come to attention, that even Microsofts latest patch on this
flaw could and has been proven ineffective already. I would recommend fully
disabling DCOM. An easy way to test your system and disable is found at
http://grc.com/dcom/ Now when I posted this, his site was working, but over
the past couple days it has shown some problems, so if you don't get there
the first time, try again. It basically disables DCOM totally, which it
really isn't used for much anyway right now except as a way into your
system.
"Marc Liron" > wrote in message
...
> Hi,
>
> My site has been receiving a lot of email about the new
> security vulnerability to users of XP (and NT4/2000/2003)
>
> Some of the folks writing to me are confused about this
> issue as it relates to the flaw in XP's DCOM/RPCSS
> services.
>
> Microsoft have already issued a patch under KB823980 for
> a known security threat. (Those that did not apply this
> patch are the ones who were hit by the MSBlaster worm!)
>
> However, Microsoft have discovered THREE more flaws that
> could lead to another similar worm attacking tens of
> thousands of users!
>
> Users need to patch their systems against any potential
> Threat exploiting these new DCOM/RPCSS flaws.
>
> I have posted the following article in response to the
> amount of interest in this subject.
>
> The new patch is under KB824146 - released 10th Sept 2003
>
> http://www.updatexp.com/kb824146.html
>
>
> Kind Regards
>
> Marc Liron
> www.updatexp.com
Google