Random Entry: Major SA websites hacked by China - nobody cares about the Web
< ISS pulling a fast one? | Hilary Rosen >

Bad Weekend for Win32

SANS has raised their Infocon warning level to yellow. This is because of a large number of exploits available for holes Microsoft patched last week. Patches need to be applied quickly. Releasing all of these patches at the same time still doesn't feel right to me;

Testing down time for an individual patch would be shorter than having to test several patches
There would be fewer workarounds that needed to be monitored, thus reducing the chance of human error
There would be less chance of something breaking as the changes being introduced would be smaller and easier to debug

I find a good place to monitor for released exploits are:

UPDATE: SANS and Fsecure are reporting that a worm (Zotob) has been released for the PnP vulnerability (MS05-039). Uh-oh. It only affects machines with port 445/TCP (microsoft-ds) open, so if you can't patch, firewall.

Sunday, August 14. 2005
Posted by Dominic White in Security
Comments (0) | Trackbacks (0)

Last modified on 2005-08-14 16:36

Trackbacks

Trackback specific URI for this entry

No Trackbacks

Comments

Display comments as (Linear | Threaded)

No comments

Add Comment

Name
Email
Homepage
In reply to
Comment	E-Mail addresses will not be displayed and will only be used for E-Mail notifications. To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly. Enter the string from the spam-prevention image above:
	Remember Information? Subscribe to this entry