Welcome to TechNet Blogs Sign in | Join | Help

January 2008 - Posts

Thursday, January 10, 2008 5:00 PM

MS08-001 - The case of the missing Windows Server 2003 attack vector

Part 3 of our MS08-001 blog post series mentioned that Windows Server 2003 does not expose an attack vector to the vulnerable IGMP code execution vulnerability by default. Windows XP and Vista enable UPnP (Universal Plug-and-Play) which exposes an attack vector to the vulnerable code but Windows Server 2003 does not enable UPnP. As a result, the WS03 machine will ignore IGMP messages received from the network [read more on the blog]...
Posted by migrady | (Comments Off)
Tuesday, January 08, 2008 1:23 PM

MS08-001 - The case of the Moderate, Important, and Critical network vulnerabilities

Security bulletin MS08-001 addresses vulnerabilities described by two separate CVE numbers, as you can see in the bulletin. This post provides an overview of the two issues, the affected platforms and notes on the severity. We’ll be following this post
Posted by migrady | (Comments Off)
Filed under: , , ,
Tuesday, January 08, 2008 1:16 PM

MS08-001 (part 2) – The case of the Moderate ICMP mitigations

This is the second post in the three-part series covering MS08-001 . In this post we’ll look at the ICMP vulnerability (CVE-2007-0066) in more detail. This vulnerability is caused by Windows TCP/IP’s handling of the ICMP protocol, specifically regarding
Posted by migrady | (Comments Off)
Tuesday, January 08, 2008 1:15 PM

MS08-001 (part 3) – The case of the IGMP network critical

This is the final post in the three-part series covering MS08-001. In this post we’ll look at the IGMP vulnerability (CVE-2007-0069) and why we think successful exploitation for remote code execution is not likely. This vulnerability is around Windows’
Posted by migrady | (Comments Off)
Tuesday, January 08, 2008 1:14 PM

XP SP3 range check hiding an overflow condition?

We have received a few inquiries about the full disclosure posting http://seclists.org/fulldisclosure/2007/Dec/0470.html , where a range check was added in Windows XP SP3 for the Terminal Server RPC function RpcWinStationEnumerateProcesses. The speculation
Posted by migrady | (Comments Off)
 
Page view tracker