Security Vulnerability Research & Defense : December 2007

Thursday, December 27, 2007 1:47 PM

MS07-063 - The case of the insecure signature

MS07-063 addresses a weakness in the SMBv2 message signing algorithm. SMB signing is a feature enabled by default on domain controllers to prevent man-in-the-middle attacks. As you can imagine, if an attacker on your local subnet can tamper with the SMB

Posted by swiblog | 3 Comments

Filed under: network, network capture, SMB, signing

Attachment(s): smbv2_001.pcap

Thursday, December 27, 2007 1:28 PM

MS07-065 - The case of the significant suffix

MS07-065 fixed a vulnerability in the Message Queueing service. On Windows 2000, a remote anonymous attacker could use this vulnerability to run code as local system on unpatched machines. Windows XP added defense-in-depth hardening to disallow remote

Posted by swiblog | 2 Comments

Filed under: dns, Mitigations, msmq

Thursday, December 27, 2007 1:20 PM

Welcome to the new Microsoft Security Vulnerability Research and Defense blog!

We are excited to have this outlet to share more in-depth technical information about vulnerabilities serviced by MSRC security updates and ways you can protect your organization from security vulnerabilities. You can read much more about the goals of

Posted by swiblog | 4 Comments

Security Vulnerability Research & Defense

This Blog

Syndication

Search

News

Blogroll

Report a Vulnerability to Microsoft

Tags

Recent Posts

Archives

December 2007 - Posts

MS07-063 - The case of the insecure signature

MS07-065 - The case of the significant suffix

Welcome to the new Microsoft Security Vulnerability Research and Defense blog!