Cybercrooks are using a yet-to-be-patched security flaw in certain Windows versions to attack computers running the operating systems, Microsoft warned late last week. The attacks target Windows 2000 Server and Windows Server 2003 systems through a hole in the domain name system, or DNS, service, Microsoft said in a security advisory. The attacks happen by sending rigged data to the service, which by design is meant to help map text-based Internet addresses to numeric Internet Protocol addresses.

"An anonymous attacker could try to exploit the vulnerability by sending a specially crafted RPC packet to an affected system," Microsoft said in the advisory. RPC, or Remote Procedure Call, is a protocol that applications use to request services from programs on another computer in a network. RPC has been involved in several security bugs before, including in the vulnerability that let the Blaster worm spread. The French Security Incident Response Team deems the Windows DNS vulnerability "critical," its highest rating.

View: Full Story
News source: Zdnet


There is 1 additional comment
Advertisement
Quote this comment Reply to this comment #1 Posted by hapbt on 16 Apr 2007 - 19:59
Yes, the lack of a patch is just glorious, it's ben like 3 days now, still nothing?
Disabling remote DNS management isn't a big deal really, nothing that can't be scripted, and then un-done later... but still, this sucks.

Why does the DNS service require a locally privleged account anyways? Stupid.
[1]

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.


Scroll to the Top
....
My Preferences
....
Communicating with server
Loading
Please Wait...
....
Loading
 X 
....