gregglarkin
Legendary Poster
CNCs,
Yesterday, Microsoft release patch MS08-067 to close down a gaping security hole in all versions of Windows. From Microsft - "The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request. On Microsoft Windows 2000, Windows XP, and Windows Server 2003 systems, an attacker could exploit this vulnerability without authentication to run arbitrary code. It is possible that this vulnerability could be used in the crafting of a wormable exploit."
It is strongly recommended that you patch all of your Windows based servers and workstations. Currently this hole has not been widely exploited, but with the announcement of the vulnerability by Microsoft, it will be. Our IT guru likened the potential impact of not patching this hole to be along the lines of the Blaster Worm outbreak. http://en.wikipedia.org/wiki/Blaster_worm
Here is the link to Microsoft's site for more details on this critical patch. http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx
We had an emergency meeting to discuss this security hole this morning. A hacker could use this hole to remotely execute code on a work station or server, without needing to gain network authentication. We are taking immediate measures to protect out servers against this hole. We feel confident that our servers are well insulated from external attack. Our concern is an internal attack.
Our concern is laptops. If one of our users is on business travel and is logged in to a hotel network, they could be vulnerable to attack. Then when they return to the office and reconnect to the network, the worm can then travel internally. I have advised my users to look for the patch that our infrastructure team is pushing out, as well as patch their home computers against this security hole.
Gregg
Yesterday, Microsoft release patch MS08-067 to close down a gaping security hole in all versions of Windows. From Microsft - "The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request. On Microsoft Windows 2000, Windows XP, and Windows Server 2003 systems, an attacker could exploit this vulnerability without authentication to run arbitrary code. It is possible that this vulnerability could be used in the crafting of a wormable exploit."
It is strongly recommended that you patch all of your Windows based servers and workstations. Currently this hole has not been widely exploited, but with the announcement of the vulnerability by Microsoft, it will be. Our IT guru likened the potential impact of not patching this hole to be along the lines of the Blaster Worm outbreak. http://en.wikipedia.org/wiki/Blaster_worm
Here is the link to Microsoft's site for more details on this critical patch. http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx
We had an emergency meeting to discuss this security hole this morning. A hacker could use this hole to remotely execute code on a work station or server, without needing to gain network authentication. We are taking immediate measures to protect out servers against this hole. We feel confident that our servers are well insulated from external attack. Our concern is an internal attack.
Our concern is laptops. If one of our users is on business travel and is logged in to a hotel network, they could be vulnerable to attack. Then when they return to the office and reconnect to the network, the worm can then travel internally. I have advised my users to look for the patch that our infrastructure team is pushing out, as well as patch their home computers against this security hole.
Gregg
