Please go patch! MS08-001
This post is late, but better late than never right? I am shocked at the lack of coverage this has received so figured I would write about it to help get the word out and make people understand why they need to run out and make sure their systems are patched. I typically do not run around yelling “The sky is falling” after MS Patch Tuesday’s, but this one stood out as a big deal! The Microsoft Security Bulletin MS08-001 was listed as critical and deserved much more press than it has received. There are two parts to this bulletin, one only affects servers with Router Discovery Protocol enabled (which is disabled by default) so I will not focus on that part.
This is the important part, an exploit related to a very low level buffer overflow that permits remote code execution in the TCP/IP stack itself. This is in the IGMP protocol which is a multitask protocol. Because this is at the core of the stack, it is not port dependent so typical software firewalls will not prevent it! Just think….kernel level access from some anonymous attacker because you didn’t patch, so what are you waiting for?
I won’t go into any further detail unless someone requests it, but please go patch your systems because it is only a matter of time before a worm is written and starts spreading. Go, right now….seriously!
Oh…and it affects Windows 2000, XP, Vista, and Server 2003. Great!
Filed under: Microsoft, Security | Leave a Comment