p2p news / p2pnet:- Microsoft has had to issue a critical patch for a critical patch already issued as part of its monthly security update.

Workaround instructions are now available for a buggy fix which, “repairs a critical security hole, which could leave Windows 2000 systems open to an Internet worm attack,” says Netcraft, going on:

“Microsoft says that few systems have been affected by issues with the update for a security hole known as MS05-051, which could allow attackers to gain control of Windows 2000 computers via an unchecked buffer in the Microsoft Distributed Transaction Coordinator (MSDTC).”

Users were reporting, “significant problems on some Windows XP, Windows 2000 and Windows Server 2003 systems after the patch was applied,” says the post. While few people were directly affected, bug reports, “may have prompted many network administrators to delay patching their systems until the issues were resolved” and “That scenario could be trouble” because several security firms have produced working code that allow attackers to take control of Windows 2000 machines.

This, in turn, suggests a, “fast-spreading Internet worm will soon target the vulnerability,” states Netcraft, adding, “While no exploit code has been publicly released, security researchers are concerned about a worm emerging.”

Something you think we should know? tips[at]p2pnet.net

See:-
Netcraft - Microsoft Updates Fix for Critical Win2K Hole, October 17, 2005

This entry was posted on Monday, October 17th, 2005 at 2:31 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 913 times