BindView RAZOR Team Issues RapidFire Updates for New Microsoft NetDDE, NNTP Vulnerabilities.

HOUSTON -- What

BindView Corp. (Nasdaq:BVEW BVEW Binary View ) announced today that its RAZOR Rapid Response Team has created security checks for two newly identified critical vulnerabilities. The new vulnerabilities comprise all Microsoft Windows See Windows.

(operating system) Microsoft Windows - Microsoft's proprietary window system and user interface software released in 1985 to run on top of MS-DOS. Widely criticised for being too slow (hence "Windoze", "Microsloth Windows") on the machines available then. NetDDE and Network News Transfer Protocol (NNTP (Network News Transfer Protocol) The protocol used to connect to Usenet groups on the Internet. Usenet newsreaders support the NNTP protocol. See also NTP.

(messaging) NNTP - Network News Transfer Protocol. ) services, both considered older communications technologies. Rapid exploitation is a potential risk for both vulnerabilities, since attackers are able to gain control of target systems without requiring user action.

MS04-031: NetDDE allows applications to communicate across networks and contains a buffer overflow A common cause of malfunctioning software. If the amount of data written into a buffer exceeds the size of the buffer, the additional data will be written into adjacent areas, which could be buffers, constants, flags or variables. that allows remote attackers to execute commands. This vulnerability allows attackers to elevate privileges on the target system. While this technology has largely been replaced with Distributed Component Object Model (programming) Distributed Component Object Model - (DCOM) Microsoft's extension of their Component Object Model (COM) to support objects distributed across a network. DCOM has been submitted to the IETF as a draft standard. (DCOM (Distributed Component Object Model) Formerly Network OLE, it is Microsoft's technology for distributed objects. DCOM is based on COM, Microsoft's component software architecture, which defines the object interfaces. ), NetDDE is still available on all Windows platforms. Disabled by default, NetDDE is still required for communication by a number of applications.

MS04-036: NNTP supports e-mail storage and transfer and is primarily used for USENET Newsgroups. The NNTP services are vulnerable to a security flaw that allows for remote command execution.

BindView customers on current maintenance contracts running Vulnerability Management solutions that include bv-Control for Windows can take immediate protective action. BindView's RapidFire Update Service provides customers with immediate access to the updates via automatic distribution, or customers can download the new updates online at www.bindview.com/Advisories/ADV_MSFT MSFT Microsoft (stock symbol)
MSFT Movimento Sociale Fiamma Tricolore (Italy)
MSFT Multi-Stage Fitness Test
MSFT Master of Science in Family Therapy
MSFT Macalester Students for Fair Trade 04-101304.cfm.

Who is at Risk

It is recommended that customers refer to the Microsoft Advisory for full details. In general, following are the systems affected by these two vulnerabilities:

MS04-031: Organizations at risk include those using Windows NT (Windows New Technology) A 32-bit operating system from Microsoft for Intel x86 CPUs. NT is the core technology in Windows 2000 and Windows XP (see Windows). Available in separate client and server versions, it includes built-in networking and preemptive multitasking. Server 4.0 Terminal Server Edition Service Pack 6, Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4, Windows XP The previous client version of Windows. XP was a major upgrade to the client version of Windows 2000 with numerous changes to the user interface. XP improved support for gaming, digital photography, instant messaging, wireless networking and sharing connections to the Internet. , Windows XP Service Pack 1, Windows XP 64-Bit Edition For the 64-bit version of Windows XP for AMD64/Intel64 systems, see .

Microsoft Windows XP 64-bit Edition is a version of Microsoft's Windows XP operating system designed to run on Intel Itanium family of microprocessors in their native IA-64 mode. Service Pack 1, Windows XP 64-Bit Edition Version 2003, Windows Server See Windows Server 2008, Windows Server 2003, Windows Home Server, Windows 2000 and Windows NT. 2003, Windows Server 2003 64-Bit Edition, Windows 98, Microsoft Windows 98 Second Edition (SE) and Microsoft Windows Millennium Edition (ME).

MS04-036: Organizations at risk include those using Windows NT Server Service Pack 6a, Windows 2000 Server Service Pack 3 and 4, Windows Server 2003, Windows 2003 64-bit, Exchange 2000 Server Service Pack 3, Exchange 2003 and Exchange 2003 Service Pack 1.

BindView has created vulnerability checks for use with its bv-Control for Windows software to assist customers in locating compromised systems. Once these systems are identified, customers should proceed with the outlined precautionary measures as quickly as possible.

Commentary on the Microsoft Windows NetDDE and NNTP Vulnerability

BindView RAZOR Team experts are available to discuss these new vulnerabilities and share further insight into organizations most at risk, potential outcomes of an attack, as well as additional ways to secure enterprise IT infrastructures. Experts can also discuss the growing number of system vulnerabilities that have been identified in the past few months.

About BindView

BindView Corporation is a leading provider of proactive business policy, IT security and directory management software worldwide. BindView solutions and services enable customers to centralize and automate policy compliance, vulnerability assessment and directory administration across the entire organization. With BindView insight at work(TM), customers benefit from reduced risk and improved operational efficiencies with a verifiable return on investment. More than 20 million licenses have shipped to 5,000 companies worldwide, spanning all major business segments and the public sector. Contact BindView via e-mail at info@bindview.com or visit BindView's website at http://www.bindview.com. BindView can also be reached at 800-749-8439 or at 713-561-4000.

COPYRIGHT 2004 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Geographic Code:	1USA
Date:	Oct 13, 2004
Words:	563
Previous Article:	RFID Technology Lecture Series Explores Revolution in Business and Science At Merrimack College.
Next Article:	Georgia Man's Video and Song Trace The Evolution of Moonshine Running Into Today's NASCAR; Song Featured in CMT's Moonshine Madness Documentary...

Related Articles
BindView First to Provide Security Solution that Defends Against BIND Vulnerabilities; New bv-Control RapidFire Update Available for Download from...
BindView Offers Solution to Help Protect Against Latest Threats to the Nation's Top eCommerce Sites.
BindView is First to Help Customers Address the Latest Wave of Security Threats and System Vulnerabilities.
ADVISORY/sendmail Vulnerability; BindView's Razor Team Creates Customer Fix for New sendmail Vulnerability.
Media Alert - BindView RAZOR Team Issues RapidFire Update for Two Critical Microsoft Vulnerabilities.
Media Alert - BindView RAZOR Team Issues RapidFire Update for New Microsoft MS03-051 Vulnerability.
Media Alert - BindView RAZOR Team Issues RapidFire Update for New Microsoft ASN.1 Vulnerability.
BindView RAZOR Team Issues RapidFire Update for New Microsoft IIS Vulnerability.
BindView RAZOR Team Issues RapidFire Updates for Two New Microsoft Vulnerabilities.
BindView RAZOR Team Issues RapidFire Update for New Microsoft Vulnerability.