[mildly-OT]: RPC DCOM on W2k still vulnerable even after applying MS03-026?

TheMSsForum.com: The Microsoft Software Forum

from Russ Cooper, NTBugTraq:

> 1. It is confirmed that there is a RPC/DCOM DoS attack against
> Windows 2000 SP3 and SP4 systems which have had MS03-026 applied.

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0307&L=ntbugtraq&F=P&S=&P=8437
and
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0307&L=ntbugtraq&F=P&S=&P=8834

:-(

James
Top

Re: [mildly-OT]: RPC DCOM on W2k still vulnerable even after applying by Susan

Susan
Wed Jul 30 14:42:56 CDT 2003

That's a DOS. Not a "Run code of attackers" choice. That I'll take any ol' day over "run
code".

James Reather wrote:

> from Russ Cooper, NTBugTraq:
>
> > 1. It is confirmed that there is a RPC/DCOM DoS attack against
> > Windows 2000 SP3 and SP4 systems which have had MS03-026 applied.
>
> http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0307&L=ntbugtraq&F=P&S=&P=8437
> and
> http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0307&L=ntbugtraq&F=P&S=&P=8834
>
> :-(
>
> James

--
"Don't lose sight of security. Security is a state of being,
not a state of budget. He with the most firewalls still does
not win. Put down that honeypot and keep up to date on your
patches. Demand better security from vendors and hold them
responsible. Use what you have, and make sure you know how
to use it properly and effectively."
~Rain Forest Puppy
http://www.wiretrip.net/rfp/txt/evolution.txt


Top

Re: [mildly-OT]: RPC DCOM on W2k still vulnerable even after applying MS03-026? by Frank

Frank
Thu Jul 31 13:35:28 CDT 2003

A DOS attack means clients call slight irate because internet connection is
down.
running code of choice means I get to it first or customers are calling and
really
peeved.

Many companies and individualsI deal with the internet is critical
and part of my business model so it needs to work too.

Frank Clark

On 30-Jul-2003, "Susan Bradley, CPA aka Ebitz SBS Rocks [MVP]"
<sbradcpa@pacbell.net>, Get Security bulletins from
www.microsoft.com/security! -- SBS - doing spat forth
1 lines on "Re: [mildly-OT]: RPC DCOM on W2k still vulnerable even after
applying MS03-026?":

> I'll take it...but that doesn't mean we should accept it... it just means
> I'll take a fallen
> over server versus one that got taken over any day. A DOS means I don't
> call my clients. A
> "run code of attackers choice" means I have to evaluate whether , by law,
> I need to inform my
> clients...
>
> "Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]" wrote:
>
> > That's a DOS. Not a "Run code of attackers" choice. That I'll take any
> > ol' day over "run
> > code".
> >
> > James Reather wrote:
> >
> > > from Russ Cooper, NTBugTraq:
> > >
> > > > 1. It is confirmed that there is a RPC/DCOM DoS attack against
> > > > Windows 2000 SP3 and SP4 systems which have had MS03-026 applied.
> > >
> > > http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0307&L=ntbugtraq&F=P&S=&P=8437
> > > and
> > > http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0307&L=ntbugtraq&F=P&S=&P=8834
> > >
> > > :-(
> > >
> > > James
> >
> > --
> > "Don't lose sight of security. Security is a state of being,
> > not a state of budget. He with the most firewalls still does
> > not win. Put down that honeypot and keep up to date on your
> > patches. Demand better security from vendors and hold them
> > responsible. Use what you have, and make sure you know how
> > to use it properly and effectively."
> > ~Rain Forest Puppy
> > http://www.wiretrip.net/rfp/txt/evolution.txt
>
> --
> "Don't lose sight of security. Security is a state of being, not a
> state of budget. He with the most firewalls still does not win.
> Put down that honeypot and keep up to date on your patches. Demand
> better security from vendors and hold them responsible. Use what
> you have, and make sure you know how to use it properly and effectively."
> ~ Rain Forest Puppy
>
> http://www.wiretrip.net/rfp/txt/evolution.txt
Top