MS03-39 another Critical Windows update
-
iarnell
- Posts: 784
- Joined: February 1st, 2003, 4:26 pm
- Location: Netherlands
- Contact:
MS03-39 another Critical Windows update
Heads up people. Microsoft have just announced MS03-39 (KB824146). It supersedes MS03-26, the infamous Blaster hole. So patch up now and prepare for Blaster mk II. Full details on TechNet.
-
chrisgeleven
- Posts: 3117
- Joined: November 8th, 2002, 6:55 pm
- Location: Manchester, NH USA
- Contact:
You just beat my new thread. http://forums.mozillazine.org/viewtopic.php?t=24258
Contains a news.com article and more information on the flaw.
Contains a news.com article and more information on the flaw.
Apple Macbook (Black) - 2.0 GHz, 2 GB RAM, 250GB HD, Mac OS X 10.6.x, Firefox 3.6.x
-
sharkius
- Posts: 2664
- Joined: May 26th, 2003, 6:20 pm
- Location: PA, USA
- Contact:
Just read that too. Now I have to restart my laptop yet again....
I could go much longer if they would just stop issuing these security updates...
I could go much longer if they would just stop issuing these security updates...
Das beste für die Leute. Das beste für die Masse. Das beste für die Welt.
<a href="http://www.sharkshack.tk">The Shark Shack</a>
My butt is lumpy. How 'bout yours?
<a href="http://www.sharkshack.tk">The Shark Shack</a>
My butt is lumpy. How 'bout yours?
-
old Harry Waldron
- Moderator
- Posts: 0
- Joined: December 31st, 1969, 5:00 pm
Thanks guys, as I was also planning on issuing a warning ... Think of Blaster and Welshia if you need any motivation what so ever on patching ... I'm doing mine now :o
MS03-039: Microsoft Security Bulletin #39 (CRITICAL)
http://forums.mcafeehelp.com/viewtopic.php?t=15955
MS03-039: Microsoft Security Bulletin #39 (CRITICAL)
http://forums.mcafeehelp.com/viewtopic.php?t=15955
-
iarnell
- Posts: 784
- Joined: February 1st, 2003, 4:26 pm
- Location: Netherlands
- Contact:
-
old Harry Waldron
- Moderator
- Posts: 0
- Joined: December 31st, 1969, 5:00 pm
Thanks Iain for starting this important thread ... I had to warn our ADMINS first plus I'm wrapped up in a ton of stuff at work - LOL
GREEN LIGHT on this one ... I just wanted to share that this 200KB patch installed fine on two W/2000 SP4 PCs, XP SP1, and Windows 2003 Server. You'll need to reboot after updating. Zero issues so far, so this seems solid to me.
GREEN LIGHT on this one ... I just wanted to share that this 200KB patch installed fine on two W/2000 SP4 PCs, XP SP1, and Windows 2003 Server. You'll need to reboot after updating. Zero issues so far, so this seems solid to me.
-
chrisgeleven
- Posts: 3117
- Joined: November 8th, 2002, 6:55 pm
- Location: Manchester, NH USA
- Contact:
Patch works fine in WinXP SP1 here as well.
My university is still trying to clean up after blaster came along with all of the new students a week ago. Today is the first day I can actually use the internet without many problems. Another virus like Blaster is going to drive them nuts. Sounds like they are going to use MAC addresses in the future to shutdown internet access to computers that are detected with any viruses, problem is I don't know how soon such a system will be launched.
My university is still trying to clean up after blaster came along with all of the new students a week ago. Today is the first day I can actually use the internet without many problems. Another virus like Blaster is going to drive them nuts. Sounds like they are going to use MAC addresses in the future to shutdown internet access to computers that are detected with any viruses, problem is I don't know how soon such a system will be launched.
Apple Macbook (Black) - 2.0 GHz, 2 GB RAM, 250GB HD, Mac OS X 10.6.x, Firefox 3.6.x
-
Dunderklumpen
- Posts: 16224
- Joined: March 9th, 2003, 8:12 am
-
old Harry Waldron
- Moderator
- Posts: 0
- Joined: December 31st, 1969, 5:00 pm
Dunderklumpen wrote:Patch your Windows system and close ports:
UDP:135, 137, 138 and 445.
TCP:135, 139, 445 and 593
And switch off COM Internet Services and RPC over HTTP
After doing that - sit down, get a cup of coffee and just wait for the worm/virus that will come.
Hi Mikael -- Thanks for sharing that great consise advice ... I don't know whether to laugh or cry on the getting the cup of coffee advice
-
old Harry Waldron
- Moderator
- Posts: 0
- Joined: December 31st, 1969, 5:00 pm
As I shared in our McAfee forums ... Mikael is right on point, time to go refill the coffee cup and hope for the best as we're patching like crazy now
New Windows virus may hit soon
http://news.com.com/2100%2D1002%2D5074415.html
It’s going to be another patch race. A virus or worm that exploits newly revealed vulnerabilities in the current versions of Windows could emerge fairly soon, security experts say, in part because the vulnerabilities are very similar to the flaws exploited by the MSBlast worm.
“This is essentially the same type of vulnerability,” said Alfred Huger, senior director of engineering at Symantec Security Response. “We’re likely to see them (new viruses) in the near future.”
Code that exploits the vulnerability is already being exchanged among researchers, he said. A new virus could come out in the next few days, he added, if not sooner. Robin Matlock, vice president of marketing at Network Associates, speculated that an exploit might take a few weeks. Still, “the gap between vulnerabilities and exploits is shrinking dramatically,” she said.
New Windows virus may hit soon
http://news.com.com/2100%2D1002%2D5074415.html
It’s going to be another patch race. A virus or worm that exploits newly revealed vulnerabilities in the current versions of Windows could emerge fairly soon, security experts say, in part because the vulnerabilities are very similar to the flaws exploited by the MSBlast worm.
“This is essentially the same type of vulnerability,” said Alfred Huger, senior director of engineering at Symantec Security Response. “We’re likely to see them (new viruses) in the near future.”
Code that exploits the vulnerability is already being exchanged among researchers, he said. A new virus could come out in the next few days, he added, if not sooner. Robin Matlock, vice president of marketing at Network Associates, speculated that an exploit might take a few weeks. Still, “the gap between vulnerabilities and exploits is shrinking dramatically,” she said.
-
Dunderklumpen
- Posts: 16224
- Joined: March 9th, 2003, 8:12 am
harrywaldron wrote:Dunderklumpen wrote:Patch your Windows system and close ports:
UDP:135, 137, 138 and 445.
TCP:135, 139, 445 and 593
And switch off COM Internet Services and RPC over HTTP
After doing that - sit down, get a cup of coffee and just wait for the worm/virus that will come.
Hi Mikael -- Thanks for sharing that great consise advice ... I don't know whether to laugh or cry on the getting the cup of coffee advice
Well - the worm/virus will come and the coffee will keep us alert and awake when it does
Also - properly patched and with all the necessary ports closed - you deserve a cup of coffee.
-
chrisgeleven
- Posts: 3117
- Joined: November 8th, 2002, 6:55 pm
- Location: Manchester, NH USA
- Contact:
You know, these network worms would be stopped (at least on XP) if you enable the firewall included (until flaws are found in the firewall ](./images/smilies/eusa_wall.gif "Brick wall")
. In fact, I believe I saw a quote from Microsoft somewhere that says they are seriously considering having the firewall enabled by default in future service packs/versions of Windows.
Every XP computer I checked to top stop the spread of Blaster, I enabled the firewall.
. In fact, I believe I saw a quote from Microsoft somewhere that says they are seriously considering having the firewall enabled by default in future service packs/versions of Windows.
Every XP computer I checked to top stop the spread of Blaster, I enabled the firewall.
Apple Macbook (Black) - 2.0 GHz, 2 GB RAM, 250GB HD, Mac OS X 10.6.x, Firefox 3.6.x
-
Dunderklumpen
- Posts: 16224
- Joined: March 9th, 2003, 8:12 am