New Critical RPC Vulnerability

[Angel L Cruz <cruz () AUSTIN UTEXAS EDU>]

Colleagues:

 

I'm afraid we have another critical MS Vulnerability notice:
http://www.microsoft.com/security/security_bulletins/ms03-039.asp.

 

Impacted include Windows NT, Windows 2000, Windows XP, Windows 2003.

 

Not impacted include Windows 95/98/ME/SE, Mac OS, UNIX, LINUX, other
commercial systems.

 

Actual patch has just been placed online and supercedes other RPC
patches (if you have patched for MS03-026, apply MS03-039; if you have
not applied MS03-026, just apply MS03-039 to fix both issues at once).

 

Recommend you review the notice and related knowledge base article
824146 as soon as possible for action planning.

 

MS has posted a tool for finding vulnerable systems at
http://support.microsoft.com/?kbid=827363.

 

We are not aware of exploit code out yet, but it should follow very soon
-- more news to follow.

 

-Angel

 

 

Mr. Angel L. Cruz, BS

Director & University ISO

ITS - Information Security Office

The University of Texas at Austin

1 University Station, #G0900

Austin, Texas 78712-0557

(512) 475-9462

cruz () austin utexas edu

 

++++++++++++++++++++++++++++++++++++++++++++
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they are
addressed. If you have received this email in error please notify the
system manager. If you are not the named addressee you should not
distribute or copy this e-mail. Please notify the sender immediately if
you have received this e-mail by mistake and delete this e-mail from
your system. If you are not the intended recipient you are notified that
disclosing, copying, distributing or taking any action in reliance on
the contents of this information is prohibited.
++++++++++++++++++++++++++++++++++++++++++++

 


**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.