Windows Denial of Service via RPC vulnerability



The Sans Institute is reporting on a vulnerability in Windows 2000 and XP SP1 (sp2 and 2003 not affected), that “could allow an attacker to levy a denial of service attack of limited duration”. It appears that valid login credentials are necessary for this. There is no patch yet, the best solution at this point is to firewall off services that are not necessary.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft updates for May It looks as though there are two critical updates to be had today, one moderate/low (depending on the OS version.) The critical updates are one biggy for Exchange server which is reported to break some functionality with regards to Blackberry -> exchange server integration... This is an obviously important patch......
  • Microsoft's unpatched security bugs George Ou at ZDnet is mystified (as many of us are) at why Microsoft can't patch ALL their security vulnerabilities. Most of the unpatched vulnerabilities are considered minor (as was the 6 month old bug that in the last week was discovered could be exploited for more than a Denial......
  • Microsoft May 2006 patch Tuesday updates Now that the April patches have been patched.... it's time to look forward to what updates we'll be seeing from Microsoft this coming Tuesday May 9th... There are 3 expected updates for May, 2 for Windows and one for Exchange Server. The Exchange update is listed as critical as is......
Blog Traffic Exchange Related Websites
  • Windows Help Center Application Pose Grave Threat to Windows XP/Server 2003 "A new vulnerability has been reported to the general public this morning via the “Full-Disclosure” mailing list, and it is quite troubling", stated by Jonathan Davis, an IT Security Consultant in the Washington DC metro area.  He further stated, "There is a vulnerability that exists in the Windows help center......
  • New Social Security Calculator for Estimating Retirement Benefits The questions and debates about when to start receiving Social Security retirement benefits continue to rage. The news coming from DC about deficit reduction and increasing the debt ceiling has made things worse. While this is going on, new concerns have arisen about changes that may come to the Social......
  • Adobe Zero-Day Strikes Again Maybe Steve Jobs has the right idea about Adobe flash running on its iDevices... Another 0-Day Adobe issue is causing a buzz in the industry, read what Brian Prince of eWeek.com had to say about it... For the second time in nearly a week, Adobe Systems is warning users about......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site