Page 1 of 2
WINDOWS XP/2K/NT MAJOR SECURITY RISK...
Posted: Mon Aug 11, 2003 9:27 pm
by Axilla
Hey, the Department of Home Land Security just annouced a second time that this nasty backdoor that Microsoft put in many of their OS is starting to fuck people's computers big time. I recommend all of you get this patch.
http://www.microsoft.com/technet/treevi ... 03-026.asp
It's a critical Update and it says this fixes a problem that may allow hackers to execute code on your computer. The truth is they can do what ever they want through this exploit and my friend's company already got 4 calls today from people who have to reformat now because they didn't have the update.
(thx Rich)
Posted: Mon Aug 11, 2003 9:28 pm
by Axilla
www.grc.com has updated its security tool.
https://grc.com/x/ne.dll?bh0bkyd2
This tool scans your ports and lets you know if you have any open.
(thx ich)
Posted: Tue Aug 12, 2003 8:38 am
by Axilla
Hey I know its not a post for the General, but maybe this needs to stay at the top. One forum member seems to be infected with the worm already, I hope it doesn't happen to others.
Posted: Tue Aug 12, 2003 8:51 am
by Walker
Is This Just For NT/2k/XP? or Does it also affect 9x systems?
Posted: Tue Aug 12, 2003 9:00 am
by Robpol86
yes, alot of ppl have been callin (@ work) sayin that when they get on the net, their comp shuts down after a few seconds, theres a timer. it had something to do w/ RPC and the NT AUTHORITY SYSTEM
happened yesterday
Posted: Tue Aug 12, 2003 9:17 am
by Walker
All My Ports Are On Stealth. So To Hackers, my computer dosen't exist.
Posted: Tue Aug 12, 2003 9:34 am
by Axilla
Walker wrote:Is This Just For NT/2k/XP? or Does it also affect 9x systems?
Well, the windows update page (
here) doesnt show a patch for 9x, but I'm guessing 9x systems can be affected too.
Posted: Tue Aug 12, 2003 10:31 am
by fuuucckkers
Hehehe I feel sorry for you all Windows users.
Good thing I have Linux ..
I can't get most of your viruses because I don't have DLL files, and a Windows Registry and such.. so even if I were to download one, it'd be harmless to my computer
Posted: Tue Aug 12, 2003 1:40 pm
by Robpol86
9x isnt affected. this flaw only affects nt based os'
Posted: Tue Aug 12, 2003 3:39 pm
by Walker
Man Am I Glad I am stuck With 9x.
Posted: Tue Aug 12, 2003 4:14 pm
by Robpol86
ha! ur stuck w/ 9x, sux0rz 4 j00!
heres a simple fix for this gay problem (cuz im a genius):
me! wrote:First: Go to Start -> Run
Second: type '%SystemRoot%\system32\services.msc /s' into run (w/o quotes)
Tercedo: Services
Fourth: go down to "Remote Procedure Call (RPC)" and double click it
Fifth: go to Recovery (the tab @ the top)
Sixth: In the 3 drop down menus, change them from "Restart the Computer" to "Restart the Service"
if %SystemRoot%\system32\services.msc /s didnt work, go to Control Pannel and then Administrative tools (or "Performance and Maintenence" -> Administrative Tools)
after that get ur ass in
www.windowsupdate.com before it dies on august the 16th
-----------
edit:
Robpol86 wrote:the reason this is happenin is cuz of this:
Every1 knew about the vulnerability a long time ago, but yesterday, the worm (the slammer or blaster) was created, and the only thing the attacker has 2 do is scan an ip range for a certain open port (like 15*) and tell the worm the ip. instantly you are infected, you dont have 2 download nething, u can leave ur comp untouched for months and still get infected.
only protection is turnin off RPC, gettin a firewall (hw or sw) or get the 1 MB patch from microsoft.
http://www.microsoft.com/technet/treevi ... 03-026.asp
if u got the worm, get the removal tool from:
http://securityresponse.symantec.com/av ... .worm.html
Posted: Tue Aug 12, 2003 5:37 pm
by the_few_the_many369
After we do that one thing Robpol86 told us to do, do we go and download that patch?? Or just go to windows update and download stuff?
Posted: Tue Aug 12, 2003 5:45 pm
by Robpol86
windows update also has the patch. if u got broadband, go ahead do windowsupdate. if ur on dialup, just gettin the patch is faster
btw:
yall know this worm is set to attack
www.windowsupdate.com on a certain date? (i think its 8/16)
Posted: Tue Aug 12, 2003 9:16 pm
by Walker
Cool. Microsoft Better Be Prepaired.
Posted: Wed Aug 13, 2003 8:04 am
by fuuucckkers
Walker wrote:Cool. Microsoft Better Be Prepaired.
Haha.. yeah right. After the last Worm dubbed "Slammer" hti M$ ?? -- it crippled their own MS SQL Servers because they didn't patch them in time.. or as they said "We didn't get around to it"
SEATTLE (AP) -- Microsoft Corp. itself was exposed to the virus-like attack that crippled global Internet activity last weekend because it failed to install crucial fixes to its own software on many Microsoft computer servers, according to internal e-mails obtained by The Associated Press.
Read more about that here:
http://www.cnn.com/2003/TECH/biztech/01 ... t.worm.ap/
Hey Rob.. if thats true, you should execpt Microsoft Windows Update to go offline for at least a day while they get hit with this worm and try to remove it from their own systems.