Critical Warning for Microsoft Windows users

Watch Reply
More
Mark unread Print Skip to new
Danita GA, GA(Zone 7b) Oct 25, 2008

Hi All,

A friend who works in IT forwarded this email to me and I thought I would pass it along. He says it is pretty dangerous so run Windows Update asap for updates.

Subject: Security Bulletin MS08-067


Severity Rating: Critical


Overview:


Microsoft has released an emergency security alert for all operating systems released after Windows 98. This would include all versions of Windows 2000, Windows XP, Windows Server 2003, Vista and most versions of Windows Server 2008*. This alert should be treated as a very high priority requiring immediate action. Microsoft estimates that a worm or other exploit could be release into the wild within 24 to 48 hours. This exploit could allow an attacker to assume full control of any affected system allowing the attacker to install programs, view, change or delete files. The vulnerability can be distributed via RPC over the Internet or standard network connections WITHOUT user input utilizing ports 139 and 445 and/or via malware, or a worm variant.



Affected Systems:


Windows 2000 (All versions)

Windows XP (All Versions)

Windows Server 2003 (All Versions)

Windows Vista (All Versions)

Windows Server 2008 (Most Versions*)

*Windows Server 2008 Core is not affected by this vulnerability


Consult the following articles for detailed instructions on how to update your systems:
http://www.microsoft.com/technet/security/bulletin/ms08-067.mspx

http://support.microsoft.com/kb/958644

Update all Windows computers via Windows Update, WSUS or via logon script as soon as possible. The update will require a reboot.

Update any firewalls or gateway security appliances with the latest updates from the manufacturer and confirm that ports 139 and 445 are closed (unless specifically opened, most firewalls would have these ports closed for inbound traffic).

A note to SonicWALL Firewall Clients with a valid subscription to Gateway Security Services Installed; all firewalls have been updated with a signature recognizing this vulnerability.

Use Microsft Baseline Analyzer to identify computers within your network that are not up to date. This is a free download from Microsoft: http://technet.microsoft.com/en-us/security/cc184921.aspx#ESD

Update the virus definitions to any AntiVirus solutions that you may have deployed.



Post #5715772
Quote
This thread has 3 replies. This forum is accessible only to subscribing members of Dave's Garden. There are many free features here, and about half of our forums are completely open to all members. And learn more about Dave's Garden, and explore the benefits of becoming a subscribing member.

Want to join? Register here. Already signed up? Click here to login!

Back to Forum Homepage

More Computer Talk Threads

Go to all Computer Talk threads
BACK TO TOP