Links
- Other Posts
- 3 New Cisco Vulnerabilities
- Patch Tuesday
Microsoft Releases Critical Out-of-Band Patch
GSA Reference Number: AD081023-01
Simply Put: Normally Microsoft only releases patches on the second Tuesday of each month. But Microsoft has just released a bulletin notifying customers they will release a patch to address a new remote code execution exploit. The patch was posted today at 1 pm and addresses a bug in the Server Service.
Details: The Microsoft Server Service is vulnerable to a remote code exploit if the target receives a specially crafted RPC request. Microsoft rates this as a critical vulnerability, with an exploitability index of 1, meaning exploit code is likely. The Server Service is not typically accessible from external IP addresses, however, it is accessible from the local network. This Service is started by default on Microsoft servers. Authentication is not necessary to exploit this service on Windows 2000, Windows XP and Windows 2003.
Countermeasures: This patch is rated critical by Microsoft, so it deserves your immediate attention. As always, test the patch before you deploy it throughout the organization, but you should make rolling it out a high priority. More details can be found at the Microsoft Advanced Security Bulletin linked below.
Related Links:
- Microsoft Advanced Security Bulletin (http://www.microsoft.com/technet/security/bulletin/ms08-oct.mspx)
- Microsoft Webcast (http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032393978&EventCategory=4&culture=en-US&CountryCode=US)
- SANS Internet Storm Center Diary (http://isc.sans.org/diary.html?storyid=5227)