[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Time to patch Windows boxes with MS08-067
- To: James Matthews <nytrokiss@xxxxxxxxx>
- Subject: Re: [Full-disclosure] Time to patch Windows boxes with MS08-067
- From: Juha-Matti Laurio <juha-matti.laurio@xxxxxxxx>
- Date: Fri, 24 Oct 2008 09:53:36 +0300 (EEST)
Correction, the advance notification was on Wed 22nd Oct, not on Tuesday..
http://www.microsoft.com/technet/security/bulletin/ms08-oct.mspx
Juha-Matti
James Matthews [nytrokiss@xxxxxxxxx] kirjoitti:
> We are still waiting to hear more about this Vulnerability. I guess the
> BinDiff will come out soon.
>
> On Thu, Oct 23, 2008 at 5:12 PM, Juha-Matti Laurio <
> juha-matti.laurio@xxxxxxxx> wrote:
>
> > The out-of-the cycle update from Microsoft is MS08-067 - Vulnerability in
> > Server Service Could Allow Remote Code Execution:
> >
> > http://www.microsoft.com/technet/security/Bulletin/ms08-067.mspx
> >
> > Recommended workarounds:
> > -Disable the Server and Computer Browser services
> > -Block TCP ports 139 and 445 at the firewall
> >
> > As reported in Tuesday's advance notification all major Windows versions
> > are affected, the bulletin rates Vista update as Important.
> >
> > Microsoft has updated their AV products to protect against this RPC issue
> > too.
> >
> > Juha-Matti
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>
>
> --
> http://www.goldwatches.com/
>
> http://www.jewelerslounge.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/