|
Internet Security Systems Preemptively Protects Customers From Vulnerability
14 December 2004Internet Security Systems (ISS) (Nasdaq: ISSX) today announced that a vulnerability has been discovered in the Microsoft Windows Internet Naming Service (WINS). A WINS server is a
Microsoft NetBIOS name server that eliminates the need for broadcast packets to resolve a NetBIOS computer name to an IP address. The vulnerability was discovered in the WINS server replication feature, which allows one or more WINS servers to exchange information with each other about the computers on their respective networks. By default, WINS is installed and running on Microsoft Small Business Server 2000 and on Microsoft Windows Small Business
Server 2003. WINS is off by default on all other Microsoft server operating
systems.
Organizations that have deployed ISS products or using ISS managed services are preemptively protected against all threats targeting this vulnerability.
Organizations not protected by ISS preemptive solutions should note:
An attacker who successfully exploits this vulnerability could take complete control of an affected system, including installing malicious programs; viewing, changing, or deleting confidential information; or further network compromise.
Affected Infrastructure:
By default, WINS is not installed on:
* Windows NT Server 4.0
* Windows NT Server 4.0 Terminal Server Edition
* Windows 2000 Server
* Windows Server 2003.
By default, WINS is installed and running on:
* Microsoft Small Business Server 2000
* Microsoft Windows Small Business Server 2003
On all versions of Microsoft Small Business Server, the WINS component
communication ports are blocked from the Internet and WINS is available only
on the local network.
Available Protection:
Microsoft is currently developing a patch for this vulnerability. To mitigate exposure, it is recommended that organizations block TCP port 42 and UDP 42 at the firewall. Organizations that do not need WINS are encouraged to remove it from their systems if it has been installed. WINS is not enabled by default on Microsoft server operating systems with the exception of Small Business Server 2000 and Small Business Server 2003.
For the complete listing of Microsoft's suggested steps to mitigate exposure, please visit: http://support.microsoft.com/kb/890710/EN-US/ .
The full ISS X-Force alert can be found at: http://xforce.iss.net/xforce/alerts/id/184 .
For more information on Internet Security Systems(TM) preemptive protection offerings, please
visit: http://www.iss.net/proof/preemptiveprotection/ .
Source: PR Newsire
All trademarks and copyrighted information contained herein are the property of their respective owners.
|
 | Unlimited Domain Hosting Only $10 a Month
Founded in 2002, Hostgator.com, LLC has quickly grown from its humble beginnings in Boca Raton, Florida into one of the most respected names in the web hosting industry. Renowned for exceptional customer support and unrivaled in terms of customer satisfaction, Host Gator is poised to take the lead in the highly competitive and densely populated world of web hosting providers.
For more information!
Click Here |
|
|
 | Got Root?! 1&1 Dedicated Servers starting at $99 mo.
We guarantee the highest product quality, top security, and unshakeable reliability. 1&1’s advanced Data Centers have been built from the ground up using the most advanced technology available, giving our global network a strength that is beyond doubt. The power and stability of 1&1’s systems allows us to be first to market with web products that are innovative yet dependable.
For more information!
Click Here |
|
|
 | Get a full dedicated server starting at just $29.95!
ServerPronto is a dedicated hosting subsidiary of Infolink, one of a few profitable Data Center Corporations in the world. From it's beginning in January 1999, Infolink served the "Value Orientated" segment of the Internet market. Not by offering a sub-standard product at a low price, but by offering a top-quality, feature rich product at an incredible price. Since the beginning Infolink has enjoyed dramatic growth while other's in the industry have suffered. We operate our own network in the USA and maintain redundant Fiber Optic Rings which allow us to directly peer with Tier 1 Internet Backbones.
For more information!
Click Here |
|
|
