| Author |
 Topic  |
|
|
mm_0_mm
Old Timer
USA
511 Posts
Status: offline |
|
|
Xenophane
Honorable But Hopeless Addict
Denmark
2775 Posts
Status: online |
 Posted - 10/23/2008 : 3:04:00 PM
|
| There is a 60 minute webcast about it in an hour or so.. Unfortunately I did not get in before it was fully booked :( |
SIG> George Bernard Shaw : The power of accurate observation is commonly called cynicism by those who have not got it. </SIG>
You can read my blog at www.xipher.dk |
 |
|
|
mm_0_mm
Old Timer
USA
511 Posts
Status: offline |
Posted - 10/23/2008 : 4:11:11 PM
|
| I think there is another one tomorrow morning Search for event id 1032394179 at msevents.microsoft.com. |
|
|
|
jadgate
Major Contributor
USA
757 Posts
Status: offline |
Posted - 10/23/2008 : 5:24:55 PM
|
Yes, I'm an enterprise cust of Microsoft so we got the bulletin:
MS08-067
In brief from what I read, it's a vulnerability in the server service linked to RPC. Firewalls can also be configured to help mitigate it, but the long-term solution is to make RPC go away.
Jim
|
MCSE, CISSP
Chicago, IL |
|
|
|
wkasdo
Moderator
Netherlands
6140 Posts
Status: offline |
Posted - 10/24/2008 : 02:59:39 AM
|
> but the long-term solution is to make RPC go away.
Seriously, this vulnerability is on par with the one that made blaster and its friends possible. Patch those servers ASAP! |
|
|
|
joe_elway
Honorable But Hopeless Addict
Ireland
6673 Posts
Status: offline |
Posted - 10/24/2008 : 07:44:43 AM
|
| I don't think MS could have publicised this any more other than get some "sky writing" planes in. I got about 6 or 7 notifications over the last day. I've asked that our customers get contacted. |
Aidan Finn
MCSE, MVP (Virtual Machine: Systems Administration)
IT Blog: http://www.aidanfinn.com
My Photography: http://www.aidanfinnphoto.com/
My Hyper-V Book: Mastering Hyper-V Deployment
Twitter: http://twitter.com/joe_elway |
|
|
|
Curt
Moderator
USA
5634 Posts
Status: offline |
Posted - 10/30/2008 : 12:03:29 PM
|
Guys, the Network Administrators (Facilities Managers) are too scared to have anyone complain about a server being unavailable to patch machines.
IT managers have to get some back bone and explain how the machines are not magic and we all know hat RPC needs a reboot.
I had to figure out if two sessions on a client's server were running routines or if they just left their sessions running.
I would up patching and rebooting the server a 2 A.M. on a Monday morning.
SO Lots of people are not going to get patched.
|
Curt Spanburgh
Microsoft Certified Business Solution Specialist.
Dynamics CRM MVP
Contributing Editor, Windows IT Pro
(Romans 5:7) . . .For hardly will anyone die for a righteous [man]; indeed, for the good [man], perhaps, someone even dares to die.
|
|
|
| |
Topic |
|
New critical vulnerabilty
