Page 1 of 1
New Worm for Windows. Update now!
PostPosted: Wed Nov 12, 2003 10:00 am
by Mithrandir
Hey All,
Feel free to move this to the tech forum, but I figured more people would read it if I posted it here, and everyone really should see this! There's a new security vulnerability in windows (XP and 2000). It looks like it's the perfect sort of security hole for someone to write a worm exploit for. Do yourself a favor and get the security patch before they write the worm!
More info available at CERT or MS:
http://www.microsoft.com/technet/security/bulletin/MS03-049.asp
PostPosted: Wed Nov 12, 2003 10:36 am
by TheMelodyMaker
Can it be installed via Windows Update? (I don't use XP or 2000, so I wouldn't know.)
PostPosted: Wed Nov 12, 2003 10:41 am
by Mithrandir
It appears that you can, but I also don't have access to a box to test. Anyone wanna jump in on this and try it? Worst case scenario, you CAN use the link above to locate the latest information on any/all patches for these bugs.
PostPosted: Wed Nov 12, 2003 12:48 pm
by Fsiphskilm
Uhmmm..
PostPosted: Wed Nov 12, 2003 1:25 pm
by Mithrandir
It's not that I'm worried. I just know that people here don't always run the latest security patches until M$ tells them they need them. Since this warning came out yesterday, that means the virus will probably come out before next moday. Since Windows Updater runs (OOTB) once-a-week, on Mondays, people may get the virus before they are informed of the problem.
Quad Erratum Demonstratium. (sp?)
At least that's my ->BELEIFE<- (sic) please don't get me started on how this or that apple OSX is...
(BTW: The easiest way to keep people from tangenting on the PC vs Mac (or OS vs OS) is to not bring it up.
)
PostPosted: Wed Nov 12, 2003 2:00 pm
by Straylight
Stickied
PostPosted: Wed Nov 12, 2003 2:06 pm
by Bobtheduck
<Deleting my rant>
If this is stickied, I'm deleting my rant... This doesn't need to stay here forever...
yeah, download the patch!
man, my post is the last one here? That's embarassing... -_-
PostPosted: Wed Nov 12, 2003 9:15 pm
by Mithrandir
Yeah. We can delete it after next monday. That's pretty much when it's gonna either be taken care of, or too late.
PostPosted: Wed Nov 12, 2003 9:26 pm
by inkhana
I wonder if Win98 is one of the affected? Cuz I have NO plans to buy a new OS....
Oh well...
PostPosted: Wed Nov 12, 2003 9:29 pm
by Stephen
Is ME affected?
PostPosted: Wed Nov 12, 2003 9:33 pm
by inkhana
No, Shatterheart, it's not (thank goodness). Here's a list of what is/is not, for convenience.
Affected Software
* Microsoft Windows 2000 Service Pack 2, Service Pack 3, Service Pack 4 – Download the update
* Microsoft Windows XP, Microsoft Windows XP Service Pack 1 – Download the update
* Microsoft Windows XP 64-Bit Edition – Download the update
Note: The Windows XP security updates that released on October 15th as part of Security Bulletin MS03-043 (828035) include the updated file that helps protect from this vulnerability. If you have applied the Windows XP security updates for MS03-043 (828035) you do not have to reapply this update. However, the Windows 2000 security update that is released as part of this security bulletin contains updated files that were not part of the MS03-043 (828035) security bulletin. Customers have to apply this Windows 2000 security update even if they applied the Windows 2000 security updates for MS03-043 (828035).
Non Affected Software
* Microsoft Windows NT Workstation 4.0, Service Pack 6a
* Microsoft Windows NT Server 4.0, Service Pack 6a
* Microsoft Windows NT Server 4.0, Terminal Server Edition, Service Pack 6
* Microsoft Windows Millennium Edition
* Microsoft Windows XP 64-Bit Edition Version 2003
* Microsoft Windows Server 2003
* Microsoft Windows Server 2003 64-Bit Edition
PostPosted: Wed Nov 12, 2003 9:42 pm
by Mithrandir
Correct Ink. Shatterheart is fine, but you aint. MS no longer supports Windows 98 in any form. (ME is not windows 98, it's a weird Hybrid that accidentally was released while it was still stable). They will not tell you Win98 is fine, nor will they tell you if it aint.
I'll see if I can find out exactly what's the case on this one from the boys at CERT.
PostPosted: Thu Nov 13, 2003 8:33 am
by madphilb
See, there are advantages to running a 5 yo OS!
PHIL
PostPosted: Thu Nov 13, 2003 8:56 am
by inkhana
LOL! Win3.x, anyone? ^^
PostPosted: Thu Nov 13, 2003 9:06 am
by Mithrandir
Yeah. I tried to post this last night (but for some reason the board didn't like me then...) hmm... Anyway...
I was going to post the stuff Ink just posted, but remember that this comes with the M$ curse. M$ is not supporting Win98 in any of it's many forms anymore. If you are running Win98, it's possible you can be infected. Just because you aren't on the 'affected software' list doesn't mean you're automatically OK. Based on the fact that ME isn't affected, I think Win98 users will be OK. But, INAME.
PostPosted: Thu Nov 13, 2003 4:30 pm
by Link Antilles
Thanks for the info, Oldphil!
Downloading, yet another security patch. Wait… if Win 98 is not supported, will my firewall protect me on my 98 PC? Note: I have a Hardware and Software firewall. Also, if a worm using this flaw infects that machine, can it spread to mine patched XP system over the shared files network?
PostPosted: Thu Nov 13, 2003 5:33 pm
by Mithrandir
Hey Link,
Looks like you'll be OK if you've got the firewalls. Due to the nature of this exploit, however, I can't be sure of ALL worms that can be written. All I know is what kind of worm I could write. Mine wouldn't be able to infect a patched system, but I know there are better writers out there.
NOTE: I do not write viruses/worms (anymore). I do NOT endorse writing viruses/worms. I simply point these things out to make you a more informed user of said technology.
PostPosted: Thu Nov 13, 2003 8:02 pm
by Stephen
Woo dodged another bullet..lol
PostPosted: Thu Nov 13, 2003 8:54 pm
by true_noir_chloe
If I just updated tonight with the little Windows pop up that comes on with XP users to update, am I covered? Otherwise, I'll have my husband look at the site you posted and see what he thinks. He's my "computer whisperer."
PostPosted: Fri Nov 14, 2003 8:26 am
by Mithrandir
Yeah. The new patches seem to cover everything.
OK. I did a little snooping, and it appears that the DLL in question is ONLY part of the WinXP/2K workstation package. Since no other versions of Windows rely on this (with the possible exception of WinNT Workstation - protectect by the 6a patch) it appears they are unaffected. Merry X-Mas to everyone who has put off 'Upgrading' to WinXP.
PostPosted: Fri Nov 14, 2003 9:32 am
by inkhana
*whew* Thanks OldPhil...
PostPosted: Fri Nov 14, 2003 7:44 pm
by true_noir_chloe
Thanks for your input.
I feel better now.
PostPosted: Fri Nov 14, 2003 9:01 pm
by Rashiir
*cough**cough*
I'm not gonna say nuthin.
PostPosted: Fri Nov 14, 2003 9:47 pm
by Mithrandir
Thanks for the self control.
PostPosted: Sun Nov 16, 2003 1:16 am
by Macross
if the problens are for win 2000 and XP, the users of earlier versions shoud not be worried, also the ones that use others OS, like Linux.... There´s nothing like beteen Win XP or 2000 and the ones before... and I belive that you shoud download the patch
(it worked for me with the Blaster32 a while ago
)...
PostPosted: Sun Nov 16, 2003 11:51 am
by shooraijin
> I'm not gonna say nuthin.
Yes. I, too, have nothing to *cough* say.
PostPosted: Mon Nov 17, 2003 8:17 am
by Mithrandir
7 Days should be enough time for people to have delt with this. (WU checks once a week).
Unstuck. Please let it die with no further coughing.
PostPosted: Mon Nov 17, 2003 10:44 am
by Gypsy
shooraijin wrote:> I'm not gonna say nuthin.
Yes. I, too, have nothing to *cough* say.
Alright you guys. Enough with the unspoken stuff.
You may have more power and stability ... but we have ... more errors.
