Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Finance
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Attacks on New Windows Flaws Expected Soon

Experts say hackers have a head start in taking advantage of latest holes found in Microsoft OS
 

Sign up to receive Security Resource Alerts

September 15, 2003 (Computerworld) -- Companies will have even less time than usual to properly protect themselves against attackers attempting to take advantage of three critical flaws in Windows software that were revealed last week by Microsoft Corp.
Because the flaws are nearly identical to the one that the Blaster worm exploited last month, users can expect to see copycat attacks in the very near future, according to several security experts. As a result, it's important for companies to patch their systems or otherwise protect themselves against the flaws as expeditiously as possible, they said.
That sentiment was echoed by the U.S. Department of Homeland Security, which last week warned of the "potential for significant impact on Internet operations" because of the vulnerabilities.
"DHS believes that exploits are being developed" for the new flaws, the agency said in a bulletin.
Some users took the warning seriously.
"I'm pretty certain that an attack will happen faster than it did with Blaster," said Mike Tindor, vice president of network operations at First USA Inc., an Internet service provider in St. Clairsville, Ohio. The company has already installed patches against the new threat and has also closed several ports that could be exploited in an attack.
"I think it's critical that people patch immediately when a new update comes out," said David Krauthamer, director of information systems at Advanced Fibre Communications Inc. in Petaluma, Calif. The telecommunications equipment manufacturer used Microsoft's automated Security Update Services to download and patch more than 200 servers against the new flaws last week.
The holes exist in the remote procedure call (RPC) protocol used by the Windows operating system. Two of them are buffer overrun vulnerabilities that could allow an attacker to take full administrative control of a victim's system. An attacker who exploited these flaws would be able to take a variety of actions, including installing malicious programs, deleting data or creating new accounts, according to Microsoft.
The third flaw is a denial-of-service vulnerability that could allow RPC services to hang and become unresponsive, according to Microsoft.
It's not difficult to develop exploits for the new holes, said Max Caceres, director of product management at Core Security Technologies, a Boston-based vendor of security software and services.
Core Security was able to write attack code capable of compromising systems in the manner described by Microsoft in a matter of hours after the bulletin was announced, he said.
"In this case, it was pretty fast because the vulnerabilities are very similar to the last one," Caceres said. "The attack vector is exactly the same. The only change is in where the vulnerabilities exist."
"We always assume that if we can do it, there

Continued...
1 | 2 | NEXT  



Print this Story Send Us Feedback E-mail this Story Digg! Digg this Story Slashdot this Story
Attacks on New Windows Flaws Expected Soon
"An approaching hurricane fortuitously recalls the famous statement on planning from Eisenhower. We should heed his words...." Read more...
Read more Security posts or See all Blogs
At 10, Google reiterates commitment to CIOs
Microsoft explains Seinfeld-Windows TV ad: just a 'teaser'
Continuing coverage: Google's Chrome browser
More top stories...
iPhone 3G owner sues Apple, AT&T over dropped calls, app crashes
Mozilla: Firefox is faster than Chrome
Upcoming Microsoft patch lineup could be 'massive,' says researcher
Users of Windows XP SP3 who try out IE8 Beta 2 won't be able to uninstall either one under certain circumstances.
Google has gone from innovative upstart to fat-and-happy industry leader in what seems like record time. Preston Gralla explains.
Microsoft's latest beta of IE8 includes better tab management, new services such as Web Slices and Accelerators, and the new 'porn mode.'
These leading-edge graduate schools are moving at the pace of the IT workplace, delivering coursework that's relevant to today's IT professionals.
Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS.
Four years from now, the IT field will be a vastly different place. Will you be ready?
All Zones
Application Performance Zone
Business Continuity Zone
The File Data Management Zone
Security Management Zone
ITIL Best Practices Zone
The SAS Zone
Business Intelligence and Analytics Zone
Windows Protection Zone
Identity & Security Management Zone

Ads by TechWords

See your link here
From Laggard to Leader: Transforming the Data Center
From Laggard to Leader: Transforming the Data Center
Register for this complimentary live webcast today!
Go to the webcast 
Computerworld Executive Bulletin: Building a Robust Antivirus Defense
Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs.
(Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more.
Download this executive briefing download
Online Security Issues in Regulated Industries
Download this research paper, free for a limited time, compliments of Webroot!
(Source: Webroot Software) In June 2008, Computerworld invited IT and business leaders to participate in a survey on online security initiatives at their organizations. The goal of the survey was to better understand Web and e-mail security issues faced today within the regulated education, financial services, government and health care industries. The following report represents top-line results of that survey.
Download this white paper go
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
Death to PST: Hidden Cost of Email Mismanagement
Extend, Replace, or Convert; which is the best way forward for COBOL Applications?
The Trend from Unix to Linux in SAP Data Centers
View more whitepapers