[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Windows Dcom Worm Killer

To: w g <xillwillx@yahoo.com>, bugtraq@securityfocus.com, full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Windows Dcom Worm Killer
From: Joey <joey2cool@yahoo.com>
Date: Wed, 13 Aug 2003 01:05:29 -0700 (PDT)

I suggest that you also disable DCOM completely with
the dcomcnfg utility. More info is available at the
address below. Be sure to remove all of the DCOM
"Default Protocols" including TCP to stop windows from
listening on port 135

http://www.uksecurityonline.com/husdg/windowsxp/close135.htm

--- w g <xillwillx@yahoo.com> wrote:>  Directions:
>  2. All done  :) ... next step 
>     W32.Blaster.Worm exploits the DCOM RPC
> vulnerability. This is described in Microsoft
> Security Bulletin MS03-026, 
>     and a patch is available there. You must
> download and install the patch.Also buy an antivirus
> and keep it 
>     updated weekly . Also I'd suggest getting a
> firewall to protect from any outside intruders.

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Windows Dcom Worm Killer
  - From: Nick FitzGerald <nick@virus-l.demon.co.uk>

References:
- [Full-Disclosure] Windows Dcom Worm Killer
  - From: w g <xillwillx@yahoo.com>

Prev by Date: Re: [Full-Disclosure] Re: Windows Dcom Worm planned DDoS
Next by Date: Re: [Full-Disclosure] ISS Security Brief: "MS Blast" MSRPC DCOM Worm Propagation (fwd)
Prev by thread: [Full-Disclosure] Windows Dcom Worm Killer
Next by thread: Re: [Full-Disclosure] Windows Dcom Worm Killer
Index(es):
- Date
- Thread