Log in

No account? Create an account

Previous Entry | Next Entry

Security issue

Meant to put this out yesterday to y'all, but ran out of time. Yesterday, Microsoft released their monthly battery of security updates, and one of them is fairly ciritical. The exploit of this vulnerability would allow anonymous users to be able to run anonymous code, and according to Microsoft, there is already exploit code available. I figure it's only a matter of time before that code becomes automated and results in a nasty virus. So if you run a moderm Windows operating system (Windows 2000, XP, or Windows Server 2003), do yourself a favor an get to Microsoft Update and apply the security updates -- specifically MS06-040 (KB921883). If you are system admin, start testing with WSUS/SMS/manual technologies, and get this to your clients.



( 5 comments — Leave a comment )
Aug. 9th, 2006 03:17 pm (UTC)
did you see my post this morning, and is it related to this virus issue?
Aug. 9th, 2006 11:27 pm (UTC)
The Dept. of Homeless Insecurity is flagging that one. They must have caught wind of something (although it's probably just another case of bad anal-ysis).

(Oh, last CERT for z/OS and predecesors? Early 1990's.)
Aug. 10th, 2006 02:54 pm (UTC)
Just caught that. And because they are helping with some FUD, I'm using it internally to do a "See? I told you guys! What I'm doing is important." maneuver.
Aug. 10th, 2006 03:00 pm (UTC)
Excellent - For once the government is there to help you!
(Deleted comment)
Aug. 10th, 2006 02:53 pm (UTC)
Not a dumb question at all. Yes, Automatic Updates will catch this one, as well as some of the other 11 updates that also came out Tuesday.
( 5 comments — Leave a comment )