[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re:FYI -- NT & Win-2k Users



PureBytes Links

Trading Reference Links

http://www.digitalisland.net/codered/

The "problem [is] in Microsoft's IIS [Internet Information Service] web
server that makes Windows NT and Windows 2000 systems vulnerable to the
Code Red worm". 

I suspect that most us using  NT or Win2K do not have it setup as a
server with IIS enabled. To check, look in the Task Manager and see if
the process "Inetinfo.exe"  is showing as running. If not, this worm,
Code-Red will not affect your computer and I would advise not to apply
the patch from MS. 

These security patches to plug a new vulnerability are evidently thrown
together in haste and may have problems themselves. After a post on this
list I applied security patch Q276471 w2k sp2 x86en.exe to my w2K. I
later saw that it was unnecessary for w2K, as by default, setup does not
enabled the vulnerability that patch was to plug. Afterwards, Netscape
locked up freezing the whole computer and eventually the machine would
not boot due to a corruption in the file
C:\windows\system32\config\software. I lost a months' time working with
the Recovery Console and finally had to reinstall win2K and all my apps.

MS pulled this patch off their web site the next week after I used it
and months later put up a new one (sp3) for the same vulnerability. This
tells me there was something wrong with the original one. I talk with a
front end person at MS but got nowhere.