Last RPC patch does not protect systems, say researchers
Security experts are warning of a flaw that could allow hackers to launch a denial of service (DoS) attack against PCs running Windows 2000 and XP. The vulnerability, in the Microsoft Remote Procedure Call (RPC) service, was discovered by security firm Internet Security Systems (ISS).
ISS warned that the flaw affects PCs even with the most current Windows patches installed, including computers patched against the devastating RPC flaw described in Microsoft Security Bulletin MS03-039 According to ISS, the DoS vulnerability exists by exploiting the race condition, allowing attackers to crash the Microsoft RPC service and/or force vulnerable systems to reboot.
News source: vnunet.com
-1 Comments - Add comment