On BNET: How to rock your excel universe
BNET Business Network:
BNET
TechRepublic
ZDNet
102 TalkBacks

By Matt Hines
Posted on ZDNet News: Nov 30, 2004 7:48:00 PM

A flaw in popular Windows server software could allow remote attacks to be launched against systems, Microsoft has confirmed.

The vulnerability is in Windows Internet Name Service, or WINS, a network infrastructure component of server products such as Windows NT 4.0 Server, Windows 2000 Server and Windows Server 2003, Microsoft said Tuesday. The company has issued a temporary work-around for the problem while it works on an update to fix the vulnerability.

The problem, first made public last Friday by security software maker Immunity, is being defined by Microsoft as a "a remote buffer overflow" flaw that could enable an attacker to run malicious software on vulnerable servers.

Microsoft said its Windows 2000 Professional, Windows XP and Windows Me products are not affected by the security hole. Security company Secunia has rated the flaw "moderately critical."

WINS is a server-naming tool used to identify the IP address of specific computers on a network. The problem affects a replication function in the software that allows servers loaded with WINS to communicate. Microsoft pointed out that the infrastructure tool is not turned on by default and said the feature is not typically used by network administrators on Internet-facing servers.

The company said it has not been informed of any actual exploits of the WINS flaw, but that it will continue to monitor the situation.

A Microsoft representative said the company is working on a permanent fix for the vulnerability, which it plans to release as part of its normal monthly update process. For the time being, it is advising customers to simply turn off the WINS function if not needed on servers. It also suggests blocking several ports, including TCP port 42 and UDP port 42, at their network firewalls, or using IP security to protect traffic between WINS-capable servers. Other details of the work-around are available on Microsoft's Knowledge Base Web site.

The disclosure of the WINS flaw revived an ongoing debate over how much time security companies should give software makers to patch a vulnerability before they make the flaw public. The Microsoft representative said the company was "concerned that the vulnerability was disclosed irresponsibly" by Immunity and that tools designed to exploit the problem have been made publicly available as a result.

"Microsoft believes the presence of exploit code for vulnerabilities that have not been addressed by an update puts customers at risk from attack by criminals," the Microsoft representative said.

"Microsoft continues to encourage responsible disclosure of software vulnerabilities. We believe the commonly accepted practice of reporting vulnerabilities directly to a vendor serves everyone's best interests," the representative added.

Calls seeking comment from Immunity on its reports of the flaw were not immediately returned.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 102 Talkback(s)
I am sure the OS you wrote is more secure
So when will you be releasing this PERFECT OS?? (Read the rest)
Posted by: djc1309@... Posted on: 12/08/04 You are currently: a Guest | | Terms of Use
Tuesday already?  DebianDog | 11/30/04
Unguarded Windows porked in four minutes  Chad_z | 11/30/04
Only a matter of time.  sguerin_z | 12/01/04
Once again there are TWO factors in hacks..the amount  Laff | 12/01/04
There are probably 4 factors...  Jester_z | 12/01/04
stupid hackers  Me_too | 12/01/04
WINS was a huge mistake anyway  toadlife | 11/30/04
Not really  Suicida| | 12/01/04
Microsoft Should Blast Itself  itanalyst | 11/30/04
Gee, how did we know what you would say?  No_Ax_to_Grind | 11/30/04
Not Hard To Figure You Out Either  itanalyst | 11/30/04
When have I heard that before?  NonZealot | 11/30/04
Those are funny  voska | 11/30/04
Flawed reasoning  Chad_z | 11/30/04
Not really  NonZealot | 11/30/04
Good Analogy  htotten | 12/01/04
And this from a *non* zealot  Jay Cash | 11/30/04
What is your definition of a zealot?  NonZealot | 11/30/04
Aren't there  michael-t | 11/30/04
Count back.  Cardinal_Bill | 11/30/04
Ah name calling, last vestige when your losing.  No_Ax_to_Grind | 11/30/04
defending ms again - ms has no faults in your eyes  JasonL31 | 11/30/04
Jason..to be fair to NO AX I have read several posts  Laff | 12/01/04
Have to agree with that one as well.  htotten | 12/01/04
Technically he has a point  voska | 11/30/04
Can't tell, couldn't get past his insults.  No_Ax_to_Grind | 11/30/04
Re: Can't tell, couldn't get past his insults.  none none | 11/30/04
huh?  none none | 11/30/04
******** in the Title?  Spoon Jabber | 12/01/04
My point exactly  dave95 | 11/30/04
This is why they have IT Professionals...  PhoenixStorm26 | 11/30/04
*nix should Blast Itself  NonZealot | 11/30/04
Who uses Wins these days anyways?  voska | 11/30/04
Umm  Suicida| | 12/01/04
98 clients  htotten | 12/01/04
People do that?  voska | 12/01/04
win 98  sadchild | 12/01/04
What A Lie From Sadchild!  nikoli | 12/01/04
Some of us have no choice...  tbbrickster_z | 12/02/04
What are  michael-t | 11/30/04
BIND  htotten | 12/01/04
Flaw does not affect Windows prior to 2003 server  GregSalts | 12/01/04
No, that's because WINS won't run on anything but Server.  indigo_z | 12/01/04
Unix is not a monoculture  hulse_kevin | 12/01/04
OSS isnt perfect either  Suicida| | 12/01/04
Give me your car keys then  GregSalts | 12/01/04
Umm since when do wins servers...  ITsucks | 11/30/04
Presumably...  John L. Ries | 11/30/04
'Latest Product Announcements'  michael-t | 11/30/04
WAY OFF TOPIC News Flash  Squawkbox | 11/30/04
Godzillar...ROCKS! heh heh heh  Laff | 12/01/04
Oh no...  rapson | 12/01/04
Carl are you a BOC fan too?  Squawkbox | 12/01/04
Dominance and Submission  rapson | 12/01/04
Age ummmm yeah see ya later (NT)  Squawkbox | 12/01/04
Talk about "SHOOTING THE MESSENGER"... (nt)  Plain Logic | 11/30/04
This isn't news  CobraA1 | 11/30/04
Microsoft wants more cover-ups.  systemcleaner | 11/30/04
What a Blame Thrower.............  GregSalts | 12/01/04
Same deja vu Microsoft cliche.  systemcleaner | 12/01/04
I guess only in America  GregSalts | 12/01/04
Nope  rapson | 12/01/04
There is no need to do that.  systemcleaner | 12/01/04
And that means...  systemcleaner | 12/01/04
to every reason, blame, blame, blame  GregSalts | 12/01/04
Bingo.  systemcleaner | 12/01/04
sorry  JasonL31 | 11/30/04
Office 2003  scferg | 12/01/04
Thanks for the warning.  systemcleaner | 12/01/04
Oops, your ignorance is showing through  NonZealot | 12/01/04
Big deal!  systemcleaner | 12/01/04
I am sure the OS you wrote is more secure  djc1309@... | 12/08/04
Wrong  rapson | 12/01/04
Colour me a skeptic  NonZealot | 12/01/04
Works fine for me  rapson | 12/01/04
This only caused problems on machines running through  Monkey_MCSE | 12/01/04
Actually it is fixed  Monkey_MCSE | 12/01/04
OpenOffice.org  indigo_z | 12/01/04
WINS is needed for Linux-based Samba...  PhilippeV | 12/01/04
seems windows is always getting it's crack opened  sadchild | 12/01/04
OMG -- Ditch MS now!!  IT Scion | 12/01/04
Bingo!  NonZealot | 12/01/04
Of course not  lengua99 | 12/02/04
Explain that to me  IT Scion | 12/02/04
Just another Microsoft PR excuse.  systemcleaner | 12/01/04
Wow! What crap is this??  Confused by religion | 12/01/04
More and more MS deceptions.  systemcleaner | 12/01/04
Cover up?  IT Scion | 12/01/04
Excuses, excuses, and more excuses.  systemcleaner | 12/01/04
Blame, Blame, Blame .... Blame of Fools  GregSalts | 12/01/04
No different...  rapson | 12/01/04
What else could it be...  systemcleaner | 12/01/04
Microsoft's way of customer service.  systemcleaner | 12/01/04
I guess any logical debate was too much for you.(nt)  IT Scion | 12/02/04
And if the OS was a CAR...  el1jones | 12/01/04
So where do you draw the line  PA-ITGuy | 12/01/04
But in reality...  IT Scion | 12/02/04
Microsoft ... puts customers at risk from attack by criminals.  indigo_z | 12/01/04
Walking in the south side of town does the same thing....  GregSalts | 12/02/04
Stop the Microsoft excuses. Read the heading of this article.  systemcleaner | 12/02/04
You're in over your head.  IT Scion | 12/02/04
Is this the MS server used in the US election PCs  kohuratahi | 12/03/04

What do you think?

advertisement
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

advertisement
Click Here