Alerts
New Windows RPC DCOM Vulnerability
Date:
September 10, 2003
Severity:
High
Systems Affected:
Microsoft Windows NT Workstation 4.0
Microsoft Windows NT Server 4.0
Microsoft Windows NT Server 4.0, Terminal Server Edition
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Overview:
eEye Digital Security Advisory
http://www.eeye.com/html/Research/Advisories/AD20030910.html
Detection:
eEye Releases Updated RPC DCOM Remediating Utility
This special version of eEye's free RPC DCOM Vulnerability Scanner dramatically enhances the initial version by adding the capability to disinfect systems throughout the network impacted by worms like Blaster (plus its variants), Nachi, Teekids, and Penis32.
The Class C version of the utility is free to all existing clients of eEye. Class A, Class B and Class C versions of the utility are available for purchase.
For additional information, please visit:
http://www.eeye.com/html/Research/Tools/RPCDCOM.html
Prevention:
Microsoft Patch
http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS03-039.asp
Users should note that this vulnerability differs from the vulnerability publicized in Microsoft Bulletin MS03-026 found here:
http://www.microsoft.com/technet/security/bulletin/MS03-026.asp
This alert was last updated on September 10, 2003.
September 10, 2003
Severity:
High
Systems Affected:
Microsoft Windows NT Workstation 4.0
Microsoft Windows NT Server 4.0
Microsoft Windows NT Server 4.0, Terminal Server Edition
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Overview:
eEye Digital Security Advisory
http://www.eeye.com/html/Research/Advisories/AD20030910.html
Detection:
eEye Releases Updated RPC DCOM Remediating Utility
This special version of eEye's free RPC DCOM Vulnerability Scanner dramatically enhances the initial version by adding the capability to disinfect systems throughout the network impacted by worms like Blaster (plus its variants), Nachi, Teekids, and Penis32.
The Class C version of the utility is free to all existing clients of eEye. Class A, Class B and Class C versions of the utility are available for purchase.
For additional information, please visit:
http://www.eeye.com/html/Research/Tools/RPCDCOM.html
Prevention:
Microsoft Patch
http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS03-039.asp
Users should note that this vulnerability differs from the vulnerability publicized in Microsoft Bulletin MS03-026 found here:
http://www.microsoft.com/technet/security/bulletin/MS03-026.asp
This alert was last updated on September 10, 2003.
