Windows Denial of Service via RPC vulnerability



The Sans Institute is reporting on a vulnerability in Windows 2000 and XP SP1 (sp2 and 2003 not affected), that “could allow an attacker to levy a denial of service attack of limited duration”. It appears that valid login credentials are necessary for this. There is no patch yet, the best solution at this point is to firewall off services that are not necessary.

Related Posts

Blog Traffic Exchange Related Posts
  • Windows XP SP3 Well, in the article the other day about the Windows wireless problem/(feature that could be exploitable?) there was a mention that the default behaviour for Windows would be changed with the next service pack, for XP users that's SP3. So, when can we expec this? It seems that service pack......
  • Microsoft's unpatched security bugs George Ou at ZDnet is mystified (as many of us are) at why Microsoft can't patch ALL their security vulnerabilities. Most of the unpatched vulnerabilities are considered minor (as was the 6 month old bug that in the last week was discovered could be exploited for more than a Denial......
  • Another critical IE flaw I should mention a fairly big Windows vulnerability (which involves active scripting). Apparently there are proof-of-concept exploits circulating that do innocent things like open up the calculator. Unfortunately, once exploits are out that can do this, it's trivial for them to do worse. The bottom line is, be careful what......
Blog Traffic Exchange Related Websites
  • Adobe Zero-Day Strikes Again Maybe Steve Jobs has the right idea about Adobe flash running on its iDevices... Another 0-Day Adobe issue is causing a buzz in the industry, read what Brian Prince of eWeek.com had to say about it... For the second time in nearly a week, Adobe Systems is warning users about......
  • Create sticky topics for your Blog I was surfing through some forums and saw some sticky topics there. I thought, why shouldn't I try to make sticky topics for my blog. Finally, I got the trick and I'm posting it here. Sticky topics are those which always stay on the top of the archives irrespective of......
  • Microsoft Security Bulletin MS10-046 - Critical Microsoft Security Bulletin MS10-046 - Critical Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) Published: August 02, 2010¬†|¬†Updated: August 03, 2010 Version: 1.1 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site