AlanBarber.Org
Friday, August 01, 2003
Worm in Works to Exploit Windows Security Flaw
This comes straight from vnunet.com. Everyone read it and then make sure your system is updated and secured!
"The vulnerability involves the RPC protocol, which deals with inter-computer communications. Microsoft warned that, under certain circumstances, the RPC might not properly check messages sent to the PC.
A malformed message could be routed through port 135 and used to run code on the infected PC. Windows Exchange Server 2003, XP, 2000 and NT 4 are all affected.
'There is already talk in both the underground and other security forums of worm development using this vulnerability.'
Initial reports from mailing lists suggest that, while the exploit code may run, it is still easily detectable.
Once exploitation is complete RPC/DCOM functions fail completely, affecting functions like drag and drop or using the clipboard. This makes any attempt at hacking highly visible."
Anti-Virus advocacy has become my pet project and I can't say it enough! Keep your system updated and secured. People always blame Microsoft or Hackers/Crackers for these problems but the real blame lies with lazy users!
Computers are not like TVs people. You can't treat it like an appliance that you just turn on and off whenever you like. Computers are highly complex tools. Think of a computer more like an airplane or formula 1 race car. The operators must be willing to spend lots of time and energy learning how to use and maintain the machines safely.
on 08/01/2003 at 11:37 AM