Hackers step up search for unpatched servers

By Graeme Wearden
Posted on ZDNet News: Jan 5, 2005 4:00:00 PM

Network administrators who have failed to patch their systems against the Microsoft Windows Internet Naming Service vulnerability are now at much greater risk of attack.

The SANS Internet Storm Center warned Wednesday that it has detected a steep rise in probes directed at network ports handling Windows Internet Naming Service (WINS) services over the past several days. SANS believes this is a sign that the vulnerability is being exploited by malicious hackers.

"If you have not patched your WINS servers in your respective companies or campuses, beware. Patching these systems is now overdue," said SANS.

According to statistics gathered by the Research and Education Networking Information Sharing and Analysis Center, the increase in activity began on Thursday but became much greater on Saturday.

WINS, which is part of several Microsoft server products including NT 4.0 Server, Windows 2000 Server and Windows Server 2003, is used to identify the Internet Protocol addresses of specific computers on a network.

The flaw was first made public in November by security software maker Immunity. Microsoft then acknowledged that the WINS flaw could allow remote attacks to be launched against systems.

Graeme Wearden of ZDNet UK reported from London.

SponsoredWhite Papers, Webcasts, and Downloads

Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
VMware Infrastructure: A Guide to Bottom-Line Benefits VMware Frustrated by the high cost of maintaining or building ever-larger data centers? Get the facts you need to formulate your Virtualization Action Plan. Download Now
The True Costs of Virtual Server Solutions VMware Discover ways to streamline and simplify your assessment of the total acquisition costs of a server virtualization environment. Download Now

Talkback
Most Recent of 88 Talkback(s)

Thread View
Flat View

Why search for the muderer...: If someone overlooks a window lock one night, well then, they deserve to get shot by an intruder, correct?... (Read the rest); Posted by: John Zern Posted on: 04/11/05 You are currently: a Guest | Log in | Terms of Use

SANS takes 4 days to alert IT seadog59 | 01/05/05

Idiot troll! Confused by religion | 01/05/05

WINS on internet? ibabadur1 | 01/05/05

apparently so happy

(NT) Monkey_MCSE | 01/05/05

non-firewalled connections linuxoverwindows | 01/05/05

Everyone should be an expert, right? dbrimlow | 01/05/05

In this case PA-ITGuy | 01/05/05

A good point, but... d2r4 | 01/05/05

read the manual... Real World | 01/06/05

It helps to be ibabadur1 | 01/06/05

LOL! Sorry, I Over-reacted dbrimlow | 01/06/05

Responsibility all around. merchant@... | 01/05/05

I agree with you 200% (NT) Black-N-Blanc | 01/05/05

No such thing as 200% nor 110% and even 100% is Laff | 01/05/05

Tell that to NASA PA-ITGuy | 01/06/05

Yeah...If I'm sitting at the top of a rocket and someone Laff | 01/06/05

Microsoft share of responsibility misceng | 01/06/05

Administrators who use NT deserve to get hacked! supoman | 01/05/05

My NT is gone... nomorems | 01/05/05

Administrators who use Windows deserve to get hacked! BurmaYank | 01/05/05

Pretty Much True Pinkerton | 01/05/05

i do that linuxoverwindows | 01/05/05

Ooooo! Jeff Spicoli | 01/05/05

Hmm Roger Ramjet | 01/06/05

Good point Roger Jeff Spicoli | 01/06/05

admins allenhopton@... | 01/05/05

re: admins richdave | 01/05/05

M$ apologist Roger Ramjet | 01/06/05

Administrators who use NT gardoglee | 01/05/05

Bosses who make their Admins use Windows deserve to get hacked. BurmaYank | 01/05/05

Touche`! Roger Ramjet | 01/06/05

No they don't John L. Ries | 01/05/05

Exactly right rapson | 01/06/05

OK, maybe - but only Windows will always BEG to get hacked, inherently. BurmaYank | 01/06/05

Don't know about that but... John L. Ries | 01/06/05

Nix the question, what gives? ngqmusic@... | 01/05/05

without the crime... linuxoverwindows | 01/05/05

Yep. John L. Ries | 01/05/05

But... rapson | 01/05/05

Do unpatched servers deserve to be targets or should Microsoft take more re tom@... | 01/05/05

Message has been deleted. Jeff Spicoli | 01/05/05

Enlightened comments like these give me HOPE about humanity's future (NT) Black-N-Blanc | 01/05/05

Why thank you, Blanc dude! Jeff Spicoli | 01/05/05

So-called social darwinsm at work... Black-N-Blanc | 01/05/05

Wrong Jeff Spicoli | 01/05/05

RE: Wrong php_developer | 01/05/05

Which is interesting... rapson | 01/05/05

No Jeff Spicoli | 01/05/05

really? Real World | 01/06/05

Not really rapson | 01/06/05

What is right and moral are different Jeff Spicoli | 01/06/05

Truthfulness is... Mack DaNife | 01/06/05

You misunderstand, mi amigo Jeff Spicoli | 01/05/05

Ooh rapson | 01/06/05

So Carl Jeff Spicoli | 01/06/05

Pre-emtive war is a very dangerous concept. Laff | 01/06/05

Jeff and Laff: You're changing the subject rapson | 01/06/05

OK..sorry I was not following the entire thread my bad! Laff | 01/06/05

Laff: Bingo! rapson | 01/06/05

RE: RE: Wrong richdave | 01/05/05

heh heh heh my morals are better than yours!!!! Laff | 01/06/05

why not zep11in | 01/05/05

WHY? I Can Certainly live without them! maverick71 | 01/06/05

True Responsibility tallen | 01/05/05

True but... (there's always a BUT) Black-N-Blanc | 01/05/05

Enough blame to go around... Get over it. TonyDTolleson | 01/05/05

Hackers step up search for unpatch3d servers spfens | 01/05/05

Maliscious practices indeed whisperycat | 01/05/05

Do you realize how wrong you are? NonZealot | 01/05/05

Tush tush whisperycat | 01/05/05

Oh goodie!! NonZealot | 01/05/05

a note of point... Monkey_MCSE | 01/05/05

Nice reply NonZealot | 01/05/05

And that's the key rapson | 01/06/05

Here it is! Jeff Spicoli | 01/05/05

Dumbell lengua99 | 01/05/05

"Deserve to get hacked?" Crabby Guy | 01/05/05

Close Roger Ramjet | 01/06/05

Hmmm... catlord17 | 01/09/05

Why search for the muderer... John Zern | 04/11/05

Hackers duckbubbles | 01/05/05

Why Windows Or Linux Linux_Hak | 01/05/05

Nope Roger Ramjet | 01/06/05

morality d2r4 | 01/05/05

Tough talk Roger Ramjet | 01/06/05

What do white hatters feel FilledOut | 01/07/05

Wins Vulnerablilty pebear | 01/07/05

Hackers & Unpatched Servers zochola@... | 01/11/05

What do you think?

White Papers, Webcasts, and Downloads

Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now
VMware Infrastructure: A Guide to Bottom-Line Benefits VMware Frustrated by the high cost of maintaining or building ever-larger data centers? Get the facts you need to formulate your Virtualization Action Plan. Download Now
The True Costs of Virtual Server Solutions VMware Discover ways to streamline and simplify your assessment of the total acquisition costs of a server virtualization environment. Download Now

SmartPlanet

Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
More from IBM
How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
Linking Decisions and Information for Organizational Performance Read the Tom Davenport study

Hackers step up search for unpatched servers

SponsoredWhite Papers, Webcasts, and Downloads

What do you think?

White Papers, Webcasts, and Downloads

SmartPlanet

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads