Windows Denial of Service via RPC vulnerability



The Sans Institute is reporting on a vulnerability in Windows 2000 and XP SP1 (sp2 and 2003 not affected), that “could allow an attacker to levy a denial of service attack of limited duration”. It appears that valid login credentials are necessary for this. There is no patch yet, the best solution at this point is to firewall off services that are not necessary.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft May 2006 patch Tuesday updates Now that the April patches have been patched.... it's time to look forward to what updates we'll be seeing from Microsoft this coming Tuesday May 9th... There are 3 expected updates for May, 2 for Windows and one for Exchange Server. The Exchange update is listed as critical as is......
  • Another critical IE flaw I should mention a fairly big Windows vulnerability (which involves active scripting). Apparently there are proof-of-concept exploits circulating that do innocent things like open up the calculator. Unfortunately, once exploits are out that can do this, it's trivial for them to do worse. The bottom line is, be careful what......
  • Sun Java security updates/ Windows software update rant... Incidents.org has the story on Sun's release of new versions of the Java Runtime Environment and the Java SDK to fix some remote security vulnerabilities. These security vulnerabilities could allow malicious, untrusted code to compromise a user's computer. Sun recommends that users update to the newest version of the SDK......
Blog Traffic Exchange Related Websites
  • Microsoft Security Advisory (2286198): Vulnerability in Windows Shell Could Allow Remote Code Execution Vulnerability in Windows Shell Could Allow Remote Code Execution Published: July 16, 2010 Version: 1.0 General Information Executive Summary Microsoft is investigating reports of limited, targeted attacks exploiting a vulnerability in Windows Shell, a component of Microsoft Windows. This advisory contains information about which versions of Windows are vulnerable as......
  • New Social Security Calculator for Estimating Retirement Benefits The questions and debates about when to start receiving Social Security retirement benefits continue to rage. The news coming from DC about deficit reduction and increasing the debt ceiling has made things worse. While this is going on, new concerns have arisen about changes that may come to the Social......
  • Microsoft Security Bulletin MS10-046 - Critical Microsoft Security Bulletin MS10-046 - Critical Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) Published: August 02, 2010¬†|¬†Updated: August 03, 2010 Version: 1.1 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site