Security Basics mailing list archives

Re: DCOM Hotfix breaks our software

From: alex mole <alex.mole () realtimeworlds com>
Date: Tue, 19 Aug 2003 20:37:05 +0100

The software is NXN AlienBrain 6 (www.nxn-software.com)

It's a client-server app for version control (sort of like an uber-CVS).
My guess is that it uses DCOM for some of it's functionality.

The problems were on a client machine, and once the hotfix had beenuninstalled from this machine the problems went away. Obviously, thismachine is now still susceptible to the exploit (and W32.Blaster as well).

Is there any other way (without breaking things like DCOM and NetBIOS)to patch this hole?



Alex



matt willson wrote:

Well, perhaps we could have better knowledge/responses if you informed
us of the software?

-----Original Message-----

From: alex.mole@realtimeworlds [mailto:alex.mole () realtimeworlds com]Sent: Tuesday, August 19, 2003 2:41 AM

To: security-basics () securityfocus com
Subject: DCOM Hotfix breaks our software

Hi

So, having diligently patched our PCs with hotfix 823980, it turns out
that
it breaks a piece of software that is critical to our work. Removing the
hotfix fixes this software. It seems that the two are incompatible...

We're speaking to our software vendor to see if anything can be done
about
it, but:

1) Has anyone else had issues with this fix? I've not noticed any
mentioned...
2) What would you suggest we do in the interim [until our software can
be
   fixed]? We are behind a firewall, but there are several users who
bring
   laptops into the office and use them on the network.

Thanks,

Alex

________________________________________________________________________
This email has been scanned for all viruses by the MessageLabs Email
Security System. For more information on a proactive email security
service working around the clock, around the globe, visit
http://www.messagelabs.com
________________________________________________________________________

------------------------------------------------------------------------
---
------------------------------------------------------------------------
----

________________________________________________________________________
This email has been scanned for all viruses by the MessageLabs Email
Security System. For more information on a proactive email security
service working around the clock, around the globe, visit
http://www.messagelabs.com
________________________________________________________________________




________________________________________________________________________
This email has been scanned for all viruses by the MessageLabs Email
Security System. For more information on a proactive email security
service working around the clock, around the globe, visit
http://www.messagelabs.com
________________________________________________________________________

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

DCOM Hotfix breaks our software alex.mole@realtimeworlds (Aug 19)
- Re: DCOM Hotfix breaks our software Dedric Ramsey - Ramsey Consulting Svc. (Aug 19)
- Re: DCOM Hotfix breaks our software Christophor Rick (Aug 19)
  - Re: DCOM Hotfix breaks our software alex mole (Aug 19)
- <Possible follow-ups>
- Re: DCOM Hotfix breaks our software alex mole (Aug 19)
  - Re: DCOM Hotfix breaks our software David Nichols (Aug 20)
- Re: DCOM Hotfix breaks our software Jay Woody (Aug 19)
- DCOM Hotfix breaks our software nee cee (Aug 19)
- RE: DCOM Hotfix breaks our software Alfred . Diggs (Aug 20)
- RE: DCOM Hotfix breaks our software nee cee (Aug 20)