funsec mailing list archives
Re: Microsoft to rush out emergency Windows patch today
From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Thu, 23 Oct 2008 23:57:07 +0300 (EEST)
And it is http://www.microsoft.com/technet/security/Bulletin/ms08-067.mspx Recommended workarounds: -Disable the Server and Computer Browser services -Block TCP ports 139 and 445 at the firewall Go and patch ASAP this RPC vulnerability, folks. Juha-Matti Juha-Matti Laurio [juha-matti.laurio () netti fi] kirjoitti:
"Microsoft will rush out an emergency security patch for Windows users on Thursday. The company offered few details on why it was releasing the software update, which is rated critical for users of Windows 2000, Windows XP, and Windows Server 2003. A critical flaw is worrisome, however, because it can be exploited by online attackers to seize control of the PC. The update will be released at 10:00 am, Pacific time, said Microsoft spokesman Christopher Budd in a blog posting published late Wednesday. The flaw is considered to be a less serious risk for users of the Windows Vista and Server 2008 operating systems Microsoft said in an advisory on the issue." --clip-- More at http://www.pcworld.com/businesscenter/article/152665/microsoft_to_rush_out_emergency_windows_patch.html Reference: http://www.microsoft.com/technet/security/bulletin/ms08-oct.mspx (has replaced the Oct sumamry page:-( btw) Upcoming webcast: http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032393978&EventCategory=4&culture=en-US&CountryCode=US According to PC World "[Mr. Dragos] Ruiu said that presenters at Microsoft's recent Blue Hat internal security conference told him that they'd discovered some serious Windows bugs using security testing tools and that the update could fix one of these issues. "It might have wide reaching impact, or might be used easily for significant malicious hijinks," he said."
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Microsoft to rush out emergency Windows patch today Juha-Matti Laurio (Oct 23)
- <Possible follow-ups>
- Re: Microsoft to rush out emergency Windows patch today Juha-Matti Laurio (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Larry Seltzer (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Paul Ferguson (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Larry Seltzer (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Paul Ferguson (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Larry Seltzer (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Paul Ferguson (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Larry Seltzer (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Paul Ferguson (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Larry Seltzer (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Paul Ferguson (Oct 23)
- Re: Microsoft to rush out emergency Windows patch today Larry Seltzer (Oct 23)