| T O P I C R E V I E W |
| mm_0_mm |
Posted - 10/23/2008 : 2:52:26 PM
did a quick search and didn't see this posted anywhere yet...
out of band patch for all supported OS's
http://www.microsoft.com/technet/security/bulletin/MS08-067.mspx |
| 6 L A T E S T R E P L I E S (Newest First) |
| Curt |
Posted - 10/30/2008 : 12:03:29 PM
Guys, the Network Administrators (Facilities Managers) are too scared to have anyone complain about a server being unavailable to patch machines.
IT managers have to get some back bone and explain how the machines are not magic and we all know hat RPC needs a reboot.
I had to figure out if two sessions on a client's server were running routines or if they just left their sessions running.
I would up patching and rebooting the server a 2 A.M. on a Monday morning.
SO Lots of people are not going to get patched.
|
| joe_elway |
Posted - 10/24/2008 : 07:44:43 AM
I don't think MS could have publicised this any more other than get some "sky writing" planes in. I got about 6 or 7 notifications over the last day. I've asked that our customers get contacted. |
| wkasdo |
Posted - 10/24/2008 : 02:59:39 AM
> but the long-term solution is to make RPC go away.
Seriously, this vulnerability is on par with the one that made blaster and its friends possible. Patch those servers ASAP! |
| jadgate |
Posted - 10/23/2008 : 5:24:55 PM
Yes, I'm an enterprise cust of Microsoft so we got the bulletin:
MS08-067
In brief from what I read, it's a vulnerability in the server service linked to RPC. Firewalls can also be configured to help mitigate it, but the long-term solution is to make RPC go away.
Jim
|
| mm_0_mm |
Posted - 10/23/2008 : 4:11:11 PM
I think there is another one tomorrow morning Search for event id 1032394179 at msevents.microsoft.com. |
| Xenophane |
Posted - 10/23/2008 : 3:04:00 PM
There is a 60 minute webcast about it in an hour or so.. Unfortunately I did not get in before it was fully booked :( |
