On TechRepublic: Why Android beats iPhone
BNET Business Network:
BNET
TechRepublic
ZDNet
57 TalkBacks

By Joris Evers
Posted on ZDNet News: Jul 18, 2005 8:02:00 PM

A security flaw that could let an attacker remotely crash computers running Windows exists in several versions of the operating system, not just Windows XP.

Windows 2000, Windows XP and Windows Server 2003 are vulnerable to a denial-of-service attack that exploits a problem in the Remote Desktop Protocol, Microsoft said in an advisory on Saturday.

RDP is a protocol that enables remote access to Windows systems. Because of a flaw in the way Windows handles remote desktop requests, an attacker could crash a PC by sending a malformed remote request, Microsoft said.

The advisory was released after the security researcher who discovered the flaw last week flagged Windows XP as vulnerable. Microsoft confirmed the issue on Friday and published the advisory over the weekend.

Microsoft said it is working on a patch, but noted that it is not aware of any attacks that try to exploit the vulnerability. However, security experts at The SANS Institute on Saturday did notice an increase in port scanning activity on the network port used by RDP. That could be a sign that hackers are trying to look for targets.

While most Windows versions ship with RDP services disabled, Remote Desktop is turned on out-of-the-box in Windows XP Media Center Edition. Only computers using services that have RDP enabled are vulnerable, Microsoft said in its advisory.

Services with RDP include Terminal Services in Windows 2000 and Windows Server 2003, and Remote Desktop Sharing and Remote Assistance in Windows XP.

Until a patch is available, Microsoft suggests users block TCP port 3389 (the port used by RDP) on their firewall, disable Terminal Services or Remote Desktop if not required, or secure remote desktop connections using either Internet Protocol Security or a virtual private network connection.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 57 Talkback(s)
Goodness, don't we all just hate each other here
and who said technology helps you escape from the real world? LOL. (Read the rest)
Posted by: Boot_Agnostic Posted on: 07/22/05 You are currently: a Guest | | Terms of Use
We all be dead and buried...  realitycheck101 | 07/18/05
Todays gaping hole in OS software  Jeff the god of biscuits | 07/18/05
Stop it ... you are killing me here....  michael_t | 07/18/05
It comes in my inbox every few days...  Jeff the god of biscuits | 07/18/05
Thank you for sharing (you are a giving person)  michael_t | 07/18/05
All I did is post the email update I get from them  Jeff the god of biscuits | 07/18/05
Do you have the emails  michael_t | 07/18/05
Thank you for sharing; let me SHARE something in return.....  michael_t | 07/18/05
Retort  Jeff the god of biscuits | 07/19/05
Good, we can converse then in good will. See below  michael_t | 07/19/05
YOU WIN!!!  Jeff the god of biscuits | 07/19/05
did you read any of those?  doh123 | 07/19/05
Post that again ...  Henaway | 07/20/05
*SHOCKER*  Chad_z | 07/18/05
Windows flaw reaches beyond XP  Loverock Davidson | 07/18/05
well i believe you are the one  Monkey_MCSE | 07/18/05
I have no idea what you are saying (NT)  Loverock Davidson | 07/18/05
In other words...  Linux_Developer | 07/18/05
Hrmmm  Loverock Davidson | 07/18/05
So why all the port scans then?  rpmyers1 | 07/18/05
LRD ... wake up dude!  Jiim_z | 07/18/05
Oh, goodie.  Judas I. | 07/18/05
If you are using RDP and no security on it...  Confused by religion | 07/18/05
Hey, Milly, ...  Judas I. | 07/18/05
OBB, Chill Out...  Rodney Davis | 07/18/05
I've got my tin foil beanie on, Rod.  Judas I. | 07/18/05
It usually takes the hackers a few weeks...  Rodney Davis | 07/18/05
Hey, good idea, thanks Rod!  Judas I. | 07/18/05
Sorry, it's been dropping to *hours*  rpmyers1 | 07/19/05
No Glory or Money...  Rodney Davis | 07/19/05
Use IPSEC  toadlife | 07/18/05
Don't be an insulter, toader:  Judas I. | 07/19/05
Sorry, but....  toadlife | 07/19/05
Toader? michael_t got my point:  Judas I. | 07/20/05
You are making a good point:  michael_t | 07/19/05
Mike Cox's Rep Scrambles For An Answer....  itanalyst | 07/18/05
Easy  nucrash | 07/19/05
Nukes use Unix!  Reverend MacFellow | 07/19/05
Actually, most nuclear power plants...  toadlife | 07/19/05
Total non-issue...  Mike Cox | 07/18/05
T-shirt and Frisbees  duclod | 07/18/05
Dance Monkey Boy, Dance!!!!  nucrash | 07/19/05
As stale as month old bread  dstinson_z | 07/19/05
Funny, since I have been coming in here with...  Colonel_Panic | 07/18/05
Bull shite  Jeff the god of biscuits | 07/18/05
Message has been deleted.  Colonel_Panic | 07/20/05
Windows latest flaw  CliffordLanterman@... | 07/18/05
Well, because...  ibabadur1 | 07/19/05
But, AFTER ALL THESE PATCHES how come  michael_t | 07/18/05
NONSENSE! This is ... nothing  michael_t | 07/18/05
NEWS FLASH!  Wolfie2K3 | 07/19/05
Doesn't matter if you're not a dolt  ibabadur1 | 07/19/05
what? no whining by M$ about not being allowed a good amount of time to  wessonjoe | 07/19/05
And how do they find these flaws? Seriously.  John Zern | 07/19/05
...how do they find these flaws?  danielnl1234@... | 07/20/05
This is news?  Reverend MacFellow | 07/19/05
Goodness, don't we all just hate each other here  Boot_Agnostic | 07/22/05

What do you think?

advertisement
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

White Papers, Webcasts, and Downloads

SmartPlanet

  • Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
  • More from IBM
  • Innovate your business' process model, play against the market, compete against others on our scoreboards and WIN! Try INNOV8 2.0: A BPM Simulator
  • Enabling Real-World Business Transformation through IBM Service Management Read the EMA Analyst Report
Click Here