Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Hackers Sniffing For Vulnerable Microsoft Servers

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Hackers Sniffing For Vulnerable Microsoft Servers
Date: Wed, 5 Jan 2005 06:59:30 -0600 (CST) 
http://www.techweb.com/wire/security/56900363

By TechWeb News 
January 04, 2005 

A vulnerability within Microsoft's WINS (Windows Internet Naming
Service), a component of popular server software such as Windows
Server 2003, has been heavily exploited since the last day of 2004,
several security organizations reported Tuesday.

Although the vulnerability was patched in mid-December by Microsoft,
the Internet Storm Center and the Research and Education Networking
Information Sharing and Analysis Center (REN-ISAC) at the Indiana
University have seen a drastic increase in the number of probes
directed at WINS services (TCP and UDP ports 42).

"Patching these systems is now overdue," said the SAN Institute's
Internet Storm Center in an online alert.

"Additionally, WINS services probably should not cross your border
router...so block these ports and keep the rif-raf out in case your
local Windows Server Admins have not patched for this," the Center
continued.

The patch for the WINS issue can be found on Microsoft's Web site [1].

[1] http://www.microsoft.com/technet/security/bulletin/MS04-045.mspx



_________________________________________
Open Source Vulnerability Database (OSVDB) Everything is Vulnerable - 
http://www.osvdb.org/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Hackers Sniffing For Vulnerable Microsoft Servers, InfoSec News <=
Previous by Date:  [ISN] From Good To Great (Maybe), InfoSec News
Next by Date:  [ISN] VXers creating 150 zombie programs a week, InfoSec News
Previous by Thread:  [ISN] From Good To Great (Maybe), InfoSec News
Next by Thread:  [ISN] VXers creating 150 zombie programs a week, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]