Please go patch! MS08-001

18Jan08

This post is late, but better late than never right?  I am shocked at the lack of coverage this has received so figured I would write about it to help get the word out and make people understand why they need to run out and make sure their systems are patched.  I typically do not run around yelling “The sky is falling” after MS Patch Tuesday’s, but this one stood out as a big deal!  The Microsoft Security Bulletin MS08-001 was listed as critical and deserved much more press than it has received.  There are two parts to this bulletin, one only affects servers with Router Discovery Protocol enabled (which is disabled by default) so I will not focus on that part.

This is the important part, an exploit related to a very low level buffer overflow that permits remote code execution in the TCP/IP stack itself.  This is in the IGMP protocol which is a multitask protocol.  Because this is at the core of the stack, it is not port dependent so typical software firewalls will not prevent it!  Just think….kernel level access from some anonymous attacker because you didn’t patch, so what are you waiting for?

I won’t go into any further detail unless someone requests it, but please go patch your systems because it is only a matter of time before a worm is written and starts spreading.   Go, right now….seriously!

Oh…and it affects Windows 2000, XP, Vista, and Server 2003.  Great!

Advertisements


No Responses Yet to “Please go patch! MS08-001”

  1. Leave a Comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: