BindView RAZOR Team Issues RapidFire Updates for Three New Microsoft Vulnerabilities.HOUSTON -- What BindView Corp. (Nasdaq:BVEWE) announced today that its RAZOR Rapid Response Team has created security checks for newly identified critical Microsoft vulnerabilities outlined in three separate Microsoft Security Bulletins. BindView customers on current maintenance contracts running Vulnerability Management solutions that include bv-Control for Windows and/or bv-Control for Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. can take immediate protective action. BindView's RapidFire Update Service provides customers with immediate access to the updates via automatic distribution, or customers can download the new updates online at http://www.bindview.com/advisories/ADV_MSFT MSFT Microsoft (stock symbol) MSFT Movimento Sociale Fiamma Tricolore (Italy) MSFT Multi-Stage Fitness Test MSFT Master of Science in Family Therapy MSFT Macalester Students for Fair Trade 04-121504.cfm. Who is at Risk It is recommended that customers refer to the associated Microsoft Security Bulletins for full details. Following are the systems affected by these newly identified vulnerabilities: MS04-042: This vulnerability allows attackers to compromise IT systems, creating denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack. and remote-code execution. Windows operating systems Operating systems can be categorized by technology, ownership, licensing, working state, usage, and by many other characteristics. In practice, many of these groupings may overlap. affected by this vulnerability include Windows Server See Windows Server 2008, Windows Server 2003, Windows Home Server, Windows 2000 and Windows NT. NT 4.0 Service Pack 6a and Windows NT (Windows New Technology) A 32-bit operating system from Microsoft for Intel x86 CPUs. NT is the core technology in Windows 2000 and Windows XP (see Windows). Available in separate client and server versions, it includes built-in networking and preemptive multitasking. Server 4.0 Terminal Server Edition Service Pack 6. Windows 98, ME, 2000 XP and 2003 are not vulnerable. MS04-044: The Local Security Authority Subsystem Service Local Security Authority Subsystem Service (LSASS), is a process in Microsoft Windows operating systems that is responsible for enforcing the security policy on the system. It verifies users logging on to a Windows computer or server and creates security tokens. (LSASS LSASS Local Security Authority Subsystem Service (Microsoft) LSASS Lightweight Seismic/Acoustic Surveillance System ) provides an interface for managing local security, domain authentication and Active Directory processes. There is a buffer overflow in the Local Procedure Call (LPC (language) LPC - A variant of C designed ca 1988 to program LP MUDs. ) interface to the LSASS which allows an attacker with local access to escalate their privileges to a higher level within the business-critical IT infrastructure. Microsoft operating systems The following is a list of Microsoft operating systems. For the codenames that Microsoft gave their operating systems, see Microsoft codenames. Before Windows
MS04-045: This vulnerability potentially causes service failures or executions of arbitrary code with the Windows Internet Naming Service (networking) Windows Internet Naming Service - (WINS) Software which resolves NetBIOS names to IP addresses. (WINS), which provides address resolution for NetBIOS systems running in an Internet Protocol (IP) environment. The WINS server is vulnerable to a buffer overflow flaw, which allows for remote-code execution. Organizations at risk include those using Windows NT Server 4.0 Service Pack 6a, Windows NT Terminal Server Edition Service Pack 6, Microsoft Windows 2000 Server Service Pack 3, Microsoft Windows 2000 Server Service Pack 4 and Windows Server 2003 64-Bit Edition. BindView has created vulnerability checks for bv-Control for Windows and bv-Control for Internet Security to assist customers in locating compromised systems. Once these systems are identified, customers should proceed with the outlined precautionary measures as quickly as possible. Priority should be given to Internet-facing and other critical Web servers, as well as bv-Control for Windows installations. Also important are mobile systems connected to broadband networks -- including notebook computers -- that may be exposed to the Internet without firewall protection. Commentary on the Vulnerabilities BindView RAZOR Team experts are available to discuss these new vulnerabilities and share further insight into organizations most at risk, potential outcomes of an attack, as well as additional ways to secure enterprise IT infrastructures. Experts can also discuss the growing number of system vulnerabilities that have been identified in the past few months. About BindView Corporation BindView Corporation is a leading provider of proactive business policy, IT security and directory management software. BindView solutions and services enable customers to centralize and automate policy compliance, vulnerability assessment, and directory administration across the entire organization. With BindView insight at work(TM), customers benefit from reduced risk and improved operational efficiencies with a verifiable return on investment. More than 20 million licenses have shipped to 5,000 companies worldwide, spanning all major business segments and the public sector. Contact BindView via e-mail at info@bindview.com or visit BindView's Web site at http://www.bindview.com. BindView can also be reached at 800-749-8439 or at 713-561-4000. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion