Best offers
|
Windows 7 Home Premium (Upgrade) | $79.99 STAPLES More info |
|
Office 2007 Home and Student (Full... | $105.97 Royaldiscount.com More info |
|
Windows 7 Ultimate (Upgrade) | $139.99 STAPLES More info |
|
Office 2007 Professional (Academic) | $124.99 Royaldiscount.com More info |
|
Windows 7 Home Premium - 3 Users... | $149.99 STAPLES More info |
Benchmarking Windows 7: Harder, Better, Faster, Stronger?
Often hailed as the solution to Windows Vista performance problems, we wanted to know just how much better Windows 7 really is. We put one of our most recent test platforms through its paces to find out, benchmarking raw performance and responsiveness. Read More
-
Tom's Definitive Linux Software Roundup: Communications Apps
This is the second part of our Linux Software Roundup. Part one covered Internet Apps. Today we'll be looking at Communications Apps. This includes personal information managers, email clients, instant messengers, VoIP software, and IRC clients. Read More
-
How To: Windows XP Mode In...Ubuntu Linux?
Windows 7's XP Mode has already convinced many users who sat out for Vista to go out and upgrade. But will they buy the right version of Windows 7 to get XPM? You do know you can get the same XP functionality from a Linux distribution for free, right? Read More
- windows 2000 server and vista network
- the rpc server is not available server 2003
- windows server 2008 add service
- authenticated users group windows server 2003
- issues with windows server 2008
- remote procedure call in windows 2003
- issues with server 2008
- standardization issues of windows 2000
- vista networking issues windows 2000
- standard windows security alerts
- which one is best operative system vista or server
- xp to server 2008 network performance
- remote access to windows 2008 from vista
Partners
The Games selection
violent :
More Mindless Violence
Basic shooting game, but still so powerful! Use the mouse to take aim and shoot at the little beasties before they get to you. Use Space to reload....
|
crazy :
Interactive Boogy
Pick one of the 3 songs, hit on the correct keys matching this boy's dance moves.
|
Sponsored links
Patches Released for Critical Security Issues for Microsoft Windows
Next news- Email |
- Print |
- Comments (12) |
- Share
Hopefully you are not using a friends computer to read this report. Microsoft has just issued a patch marked as ‘Critical’ which applies to Windows 2000, XP, and Server 2003 – and another patch marked ‘Important’ for Windows Vista and Serer 2008.
The critical vulnerability, according to Microsoft, is caused by the operating system’s improper handling of specifically crafted remote procedure call (RPC) requests. The problem is already being exploited in the wild and can allow attackers to gain full control of a computer. Microsoft also added that the windows firewall can be used to block such an attack.
Quoting a Microsoft security bulletin:
“It is possible that this vulnerability could be used in the crafting of a wormable exploit. Firewall best practices and standard default firewall configurations can help protect network resources from attacks that originate outside the enterprise perimeter.”
On older Windows operating systems, 2000, XP, and Server 2003, attackers can gain access to networks as anonymous users. They would still be able to access networks using the Vista and Server 2008 exploits, but they need to be an authenticated user.
Microsoft claims that it had discovered the flaw itself, rather than through a security firm or by monitoring ‘chatter’ on hacker websites. Microsoft normally issues Windows updates on the second Tuesday of each month – these patches have been released ahead of regular schedule due to high importance of course. These kind of updates are referred to as ‘out-of-band’ releases.
More information regarding these security issues can be found on the United States Computer Emergency Readiness Team (US-CERT) under Technical Cyber Security Alert TA08-297A and SA08-297A.
Source : Tom's Hardware
- Help RPC error [Windows XP]
- Unable to install HP 1012 laser with XP Home [Windows XP]
- Lost domain - rejoin domain but account is damaged [Windows XP]
- RPC Dynamic Ports? Windows 2003 with Checkpoint firewall. [General Networking]
- RPC Server not available [Windows XP]
Questions? Ask Tom's community!
These two statements seem conflicting:
"Microsoft claims that it had discovered the flaw itself, rather than through a security firm or by monitoring ‘chatter’ on hacker websites."
"The problem is already being exploited in the wild and can allow attackers to gain full control of a computer."
So Microsoft "discovers" a flaw all by itself and releases a surprise patch while there are "exploits in the wild". Do the exploiters work on the Windows developer team or did they get advanced info through MSDN?
"Microsoft also added that the windows firewall CAN be used to block such an attack."
In other words it doesn't have any effect on the exploit by default.
These two statements seem conflicting:"Microsoft claims that it had discovered the flaw itself, rather than through a security firm or by monitoring ‘chatter’ on hacker websites.""The problem is already being exploited in the wild and can allow attackers to gain full control of a computer."So Microsoft "discovers" a flaw all by itself and releases a surprise patch while there are "exploits in the wild". Do the exploiters work on the Windows developer team or did they get advanced info through MSDN?"Microsoft also added that the windows firewall CAN be used to block such an attack."In other words it doesn't have any effect on the exploit by default.
Pretty Naive response - just because one person finds something, doesn't mean nobody else is allowed to find the same thing.
It could be that Microsoft discovered it, then also discovered that it was already being exploited. Maybe not exploited on a grand scale yet though.
And yes Captain obvious, the firewall is no good by default, but who DIDN'T know this already?
I was actually told about this a few days ago. A friend's aunt, who is a programmer said that some attacks are going to come in the next few weeks. Then I read this article, Sounds real, but my pc is updated and anti virus is good so I should be alright.
I was actually told about this a few days ago. A friend's aunt, who is a programmer said that some attacks are going to come in the next few weeks. Then I read this article, Sounds real, but my pc is updated and anti virus is good so I should be alright.
Anti-virus does nothing to stop a hacker.....
Not necessarily true. It depends on the method of the hack. If they're targeting your PC specifically then you are correct. But most exploits are mass attacks usually delivered by malware of some sort. If a particular malware is discovered by the anti-virus developers, and a detection pattern is written, and the pattern is published as a definition update for the anti-virus version one-shot uses, and one-shot updates the anti-virus with the new definitions, then the protection is effective for that exploit-containing malware. Of course, that's a lot of ifs and one-shot might be an "early adopter" of the malware or encounter a different malware.
The Windows firewall could be updated to block the exploit but I suspect it probably breaks some other Windows functionality that relies on the RPCs.
Maybe just get the security patch and move on. That's what I did.
this little fix might help, but it's completely retarded. it fucked up sony vegas on me so i had to call sony and waste my day trying to find out how to reactivate it. windows is a piece of shit. and so is microsoft.
Sony bites the big one as well, they were probably equally if not completely at fault. The problem was probably related to one of their rootkit DRM schemes, or some other equally invasive garbage.
this little fix might help, but it's completely retarded. it fucked up sony vegas on me so i had to call sony and waste my day trying to find out how to reactivate it. windows is a piece of shit. and so is microsoft.
Then replace windows with something else? If you don't like it, don't use it. Same goes for anything. Microsoft didn't promise you that an update won't break 3rd party software compatibility when you bought Windows.
Yeah, and Sony didn't promise that they wouldn't screw you any way that they possibly could.
I do agree with you and I haven't given Sony a dime for anything in a long time. I hope they go belly up.
"Microsoft claims that it had discovered the flaw itself"
Microsoft discovering the flaw:
"Hey look, I've discovered that someone took over Bill's computer. We better post a patch before securityfocus.com posts a detailed write up and exploit code."
It's like how Christopher Columbus discovered a country that had people already living there.
Apparently, not being popular enough to have someone tell you about important things and finding out on your own years later is better than knowing and doing something about it in a timely manner.