Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Zotob worm hole also affects Windows XP

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Zotob worm hole also affects Windows XP
Date: Wed, 24 Aug 2005 04:45:07 -0500 (CDT) 
http://news.com.com/Zotob+worm+hole+also+affects+Windows+XP/2100-1002_3-5842359.html

By Joris Evers 
Staff Writer, CNET News.com
August 23, 2005

The plug-and-play vulnerability that caused havoc for Windows 2000
users last week also holds a serious risk for some Windows XP users,
Microsoft said Tuesday.

Computers running Windows XP with Service Pack 1 in a specific
configuration are vulnerable to worm attacks similar to the ones that
hit Windows 2000 systems, Microsoft said in a security advisory
published Tuesday.

The Zotob worm and its offshoots, plus several other worms, downed
Windows 2000 computers, including systems at ABC, CNN and The New York
Times. All the worms exploited a security hole in the plug-and-play
feature in Windows, for which Microsoft provided a fix earlier this
month and rated as "critical" for Windows 2000.

It was previously thought that only Windows 2000 machines were
vulnerable to remote attack using the plug-and-play flaw. However,
Microsoft in its security advisory on Tuesday specified one scenario
that also exposes select Windows XP users.

Also vulnerable are systems that run Windows XP with SP1 with file and
printer sharing and the Windows guest user account enabled, according
to Microsoft. This would likely be home users, because PCs are not
vulnerable if connected to a network domain, which is common in
business environments, Microsoft said.
 
Previous Next "This is a minor and narrow attack scenario," said Debby
Fry Wilson, a director at Microsoft's Security Response Center.  
"However, because Windows 2000 customers were attacked last week, we
wanted to take the extra precaution of offering customers this
clarifying information."

The probability that there are many vulnerable systems out there "is
very remote," Fry Wilson said. Most consumers have upgraded their
Windows XP machines to Service Pack 2, she said. In businesses, where
Windows XP SP1 is more common, computers are not vulnerable because
they are typically connected to a domain, she said.

Microsoft was made aware of the Windows XP attack possibility by
security vendor Symantec, Fry Wilson said. Microsoft urges users to
apply the security patches it provided earlier this month. Also,
Microsoft is not aware of any attack exploiting the plug-and-play flaw
that targets Windows XP.



_________________________________________
Attend ToorCon 
Sept 16-18th, 2005
Convention Center
San Diego, California
www.toorcon.org
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Zotob worm hole also affects Windows XP, InfoSec News <=
Previous by Date:  [ISN] PHP hit by another critical flaw, InfoSec News
Next by Date:  [ISN] Cisco warns of sensor flaw, InfoSec News
Previous by Thread:  [ISN] PHP hit by another critical flaw, InfoSec News
Next by Thread:  [ISN] Cisco warns of sensor flaw, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]