And it is http://www.microsoft.com/technet/security/Bulletin/ms08-067.mspx
Recommended workarounds: -Disable the Server and Computer Browser services -Block TCP ports 139 and 445 at the firewall Go and patch ASAP this RPC vulnerability, folks. Juha-Matti Juha-Matti Laurio [EMAIL PROTECTED] kirjoitti: > "Microsoft will rush out an emergency security patch for Windows users on > Thursday. > > The company offered few details on why it was releasing the software update, > which is rated critical for users of Windows 2000, Windows XP, and Windows > Server 2003. > A critical flaw is worrisome, however, because it can be exploited by online > attackers to seize control of the PC. > > The update will be released at 10:00 am, Pacific time, said Microsoft > spokesman Christopher Budd in a blog posting published late Wednesday. > > The flaw is considered to be a less serious risk for users of the Windows > Vista and Server 2008 operating systems Microsoft said in an advisory on the > issue." > --clip-- > > More at > http://www.pcworld.com/businesscenter/article/152665/microsoft_to_rush_out_emergency_windows_patch.html > > Reference: > http://www.microsoft.com/technet/security/bulletin/ms08-oct.mspx > (has replaced the Oct sumamry page:-( btw) > > Upcoming webcast: > http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032393978&EventCategory=4&culture=en-US&CountryCode=US > > According to PC World > "[Mr. Dragos] Ruiu said that presenters at Microsoft's recent Blue Hat > internal security conference told him that they'd discovered some serious > Windows bugs using security testing tools and that the update could fix one > of these issues. "It might have wide reaching impact, or might be used easily > for significant malicious hijinks," he said." > _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
