Yes, M$ had some information on there security blog about the vector and it was malware spreading, but since the exploit code is out and the patch is out others are going to reverse engineer the code fix and do other devilish things with it.
Z Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 -----Original Message----- From: Liu, David [mailto:[EMAIL PROTECTED] Sent: Thursday, October 23, 2008 5:17 PM To: NT System Admin Issues Subject: RE: Out of Cycle Critical Windows Patch to be released today, stay tuned Has anyone spoken abut the attack vector(s) or seen any reports from reputable AV vendors re; live specimen of this buggeR? > -----Original Message----- > From: Barsodi.John [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 5:16 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > They have their own testing of each patch. Kind of like a safety, in > case it blows something up. > > - John Barsodi > > -----Original Message----- > From: Joseph L. Casale [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:14 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > Why won't Shavlik release it to you for 6 hours? > > -----Original Message----- > From: Ziots, Edward [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 3:03 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > 75 servers patched no issues, > ( going to be here most of the night since Shavlik wont released the > patch to me until 6 hrs from now, so its manual patchin) > > Hell yeah its super-important > > Z > > Edward E. Ziots > Network Engineer > Lifespan Organization > MCSE,MCSA,MCP,Security+,Network+,CCA > Phone: 401-639-3505 > > -----Original Message----- > From: Michael B. Smith [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 4:59 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > 180 servers and counting...no issues. > > Obviously, _I_ think it's important... > > Regards, > > Michael B. Smith, MCITP:SA,EMA/MCSE/Exchange MVP > My blog: http://TheEssentialExchange.com/blogs/michael > Link with me at: http://www.linkedin.com/in/theessentialexchange > > -----Original Message----- > From: Sam Cayze [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 4:52 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay > tuned > > Yikes, this even affects Win 2008 CORE?!?! > > Thanks for the info on deadlines :) > > Sam > > > > -----Original Message----- > From: Tim Vander Kooi [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:59 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > It also overcomes the issue of any users that may have admin > privileges. > Without a Deadline set, they can continue to select install later when > prompted that updates are available. > Of course none of us EVER let anyone on our networks run with admin > rights. ;-) TVK > > -----Original Message----- > From: Ziots, Edward [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:55 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > I set that on my template in Shavlik, if you don't reboot its going to > force reboot you and u don't have a choice, nor can they kill the > service, either. > > Z > > Edward E. Ziots > Network Engineer > Lifespan Organization > MCSE,MCSA,MCP,Security+,Network+,CCA > Phone: 401-639-3505 > > -----Original Message----- > From: Sam Cayze [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 3:45 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > Soo... What's this whole 'Deadline' thing in WSUS, is this one of those > times to use it? Does it overide users prograstinating about > installs/reboots? > > No biggie, I can google it too, but it you have thoughts to share, it > would be nice. > > S > > -----Original Message----- > From: Ziots, Edward [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:12 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > LOL this whole scenario is wrong: () Git-Er-Done and lets get patchin > :) > > > Z > > Edward E. Ziots > Network Engineer > Lifespan Organization > MCSE,MCSA,MCP,Security+,Network+,CCA > Phone: 401-639-3505 > > -----Original Message----- > From: Phil Thompson [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 3:09 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > My mistake.. I like your saying, I'll have to use that some time. > > > -----Original Message----- > From: Carl Houseman [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 3:07 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > I can click on "Windows XP Service Pack 3" in that bulletin and I am > taken to a download page for the update. > Same for WS03 SP2. > > Please don't insist on being wrong. > > Carl > > -----Original Message----- > From: Phil Thompson [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:43 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx > > > > Phil > -----Original Message----- > From: Carl Houseman [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:33 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > Q: How did you come to that conclusion? > > A: You're looking at the "bulletins replaced by" column. > > Reading is fundamental.. > > -----Original Message----- > From: Phil Thompson [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 2:27 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > Must not affect W03 sp2 or XP sp3, there's no update for them.. > > Phil > > -----Original Message----- > From: Ziots, Edward [mailto:[EMAIL PROTECTED] > Sent: Thursday, October 23, 2008 1:58 PM > To: NT System Admin Issues > Subject: RE: Out of Cycle Critical Windows Patch to be released today, > stay tuned > > Its out and its NASTY// > > MS08-067, publically being exploited right now, unauthenticted remote > code execution against the server service, smells like a network worm > with mass exploitation vulnerabilities to me. > > Happy patch Thrusday, just hope you don't get hacked by Friday... > > Z > > Edward E. Ziots > Network Engineer > Lifespan Organization > MCSE,MCSA,MCP,Security+,Network+,CCA > Phone: 401-639-3505 > > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
