Full Disclosure mailing list archives

RE: RPC DCOM Patches

From: John.Airey () rnib org uk
Date: Fri, 1 Aug 2003 11:01:25 +0100

-----Original Message-----
From: Jasper Blackwell [mailto:jasper599 () hotmail com]
Sent: 01 August 2003 06:53
To: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] RPC DCOM Patches


Hi All,

Are NT 4 Workstations vulnerable too, or just NT 4 Servers?

NT 4.0 WS is bound to be vulnerable. MS did not release a

patch because the

product had hit its
official end-of-life before the patch was released. ...

Regards,

Nick FitzGerald



I have an NT4 workstation running SP6a which the patch seems 
to have worked 
fine on. At least it no longer shows up as vulnerable to 
scanners for this 
exploit.

Jasp

Whilst it is correct that support for NT4 workstation is finished
http://support.microsoft.com/default.aspx?scid=fh;en-gb;lifeAn5 the actual
difference between NT4 workstation and NT4 server is two registry keys (I
can't find the original reference to back that up right now).

So it should be possible to keep NT4 workstation "secure" till the end of
2004, but I can't promise it.


- 
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 John.Airey () rnib org uk 

The trouble with postmodernism isn't just that no-one actually believes in
it, but no-one can believe in it.

- 

NOTICE: The information contained in this email and any attachments is 
confidential and may be legally privileged. If you are not the 
intended recipient you are hereby notified that you must not use, 
disclose, distribute, copy, print or rely on this email's content. If 
you are not the intended recipient, please notify the sender 
immediately and then delete the email and any attachments from your 
system.

RNIB has made strenuous efforts to ensure that emails and any 
attachments generated by its staff are free from viruses. However, it 
cannot accept any responsibility for any viruses which are 
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email 
and any attachments are those of the author and do not necessarily 
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk 
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Re: RPC DCOM Patches Jasper Blackwell (Aug 01)
- <Possible follow-ups>
- Re: RPC DCOM Patches Albert Saerong (Aug 01)
- RE: RPC DCOM Patches John . Airey (Aug 01)
- RE: RPC DCOM Patches Byron Copeland (Aug 01)
  - Re: RPC DCOM Patches devnull (Aug 05)