Thursday
Oct232008
Microsoft Windows Server Service Vulnerability (MS08-067)
A vulnerability has been identified in Microsoft Windows, which could be exploited by attackers to take complete control of an affected system. This issue is caused by an error in the Server service that does not properly handle specially crafted RPC requests, which could be exploited by attackers to crash an affected system or execute arbitrary code via a specially crafted request.
On Windows Vista and Windows Server 2008, the vulnerability is only exploitable by authenticated users.
Note: This vulnerability is being exploited in targeted attacks.
[via FrSirt]
This was just discovered and needs to let people know. I will do more research on it and maybe come up with a way to fix the problem. According to my sources there is a patch that will fix the problem!!
*UPDATE*
According to Microsoft:
This security update resolves a privately reported vulnerability in the Server service. The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request. On Microsoft Windows 2000, Windows XP, and Windows Server 2003 systems, an attacker could exploit this vulnerability without authentication to run arbitrary code. It is possible that this vulnerability could be used in the crafting of a wormable exploit. Firewall best practices and standard default firewall configurations can help protect network resources from attacks that originate outside the enterprise perimeter.
[Via Microsoft Security Bulletin]
|
Post a Comment | in 958644, AT&T, Andy McCaskey, EA, FrSirt, How-to, Lifehacker, Microsoft, RPC, Red, Security, Server, Service, The, Todd Cochran, US, Vista, WIndows, Windows, Windows Vista, anyone, anything, code, elese, first, hole, issue, kb952954, kb958644, ms08 066, patch, reader, request, research, system, technique, vulnerability 