kayodeok's Weblog

Wednesday 19 November 2003

Exploit Code For MS03-049: Microsoft Windows Workstation Service Buffer Overflow

InfoWorld reports that the Exploit Code for Microsoft Windows latest Workstation Service Buffer Overflow now exists in the wild.

The exploit code was posted on a french website called www.k-otik.net on 14 November by someone called "Snooq". The code is remarkably easy to find but I am unable to provide a link for ethical reasons.

I admit I never did install the patch (and probably will not for awhile) but if you are bothered by such vulnerabilities, I think you should get this MS03-049 patch.

If you are like me and do not like to rely on Microsoft to fix the holes in your software, then have a look at Windows XP Service Configurations and Minimisation of Network Services on Windows Systems.

Related

• Attack code surfaces for latest Windows holes
• Attack code surfaces for latest Windows vulnerability
• Microsoft Windows Workstation Service Remote Buffer Overflow Vulnerability
• CERT^® Advisory CA-2003-28 Buffer Overflow in Windows Workstation Service
• Internet Security Systems: Microsoft Workstation Service Buffer Overflow
• Microsoft ponders automatic patching to boost security
• Patching Paranoia - How Fast Do You Patch?
• Patchy years ahead for software users
• Windows XP Service Configurations
• Minimisation of Network Services on Windows Systems
• What's port 445 used for in Windows 2000/XP?
• The use of TCP port 445 in Windows 2000

Related Entry

• MS Security Bulletins - 11 November