Theres a patch out today...
Microsoft Security Bulletin MS04-045: Vulnerability in WINS Could Allow Remote Code Execution (870763)
Bulletin URL: <http://www.microsoft.com/technet/security/bulletin/MS04-045.mspx>
Version Number: 1.0
Issued Date: Tuesday, December 14, 2004
Impact of Vulnerability: Remote Code Execution
Maximum Severity Rating: Important
Patch(es) Replaced: This bulletin replaces a prior security update. See the frequently asked questions (FAQ) section of this bulletin for the complete list.
Caveats: None
-KF
Florian Weimer wrote:
* James Lay:
Here they be. ODD. Anyone else seeing this?
Probably yes. 8-) 42/TCP is used by Microsoft's WINS replication, and this service has got a security hole for which Microsoft has yet to release a patch. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
