cancel
Showing results for 
Search instead for 
Did you mean: 
Grif
Level 10
Report Inappropriate Content
Message 1 of 3

Microsoft Issues Critical 'Out of Band" Security Patch

With this one, it's a good idea to update NOW>

Published: 2008-10-23,
Last Updated: 2008-10-23 12:16:16 UTC
by Mark Hofman (Version: 1)

Microsoft has just released an advance notification of an out-of-band update to be released on 23rd of October. They will hold a special webcast on the 23rd at 1:00 pm PT to discuss the release. The patch will be released at 10.00 am.

The information in the bulletin mentions a remote code exploit, but no further details are provided, however a restart will be required.

Microsoft rates the issue as critical for 2000/XP/2003 and important for vista/2008.

If we get more information we'll update this diary.

More: http://isc.sans.org/
___________________________

For those users which don't have Automatic Updates turned on, please visit the Windows Update site, ASAP, and install the update..OR... If you choose, you can download and run the manual installer of the update which can be downloaded from the link below:

http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx

So far today, I've tested and updated about 30 of our office machines with both Windows XP SP3 and Windows 2000 SP4.. All installations went smoothly and required a reboot after the installation.. During the tests, I updated using either the manual installers from the link above or the Windows Update site.. Either method worked fine.

Hope this helps.

Grif
2 Replies

RE: Microsoft Issues Critical 'Out of Band" Security Patch

Thanks Grif for sharing Smiley Happy

Additional information can be found here:

Microsoft issues emergency security patch MS08-067

PATCH NOW -- This is especially true if you use XP as there might be a potential for WORMABLE exploits to develop that can take over vulnerable PCs without any user actions (as most exploits require a mouse click or other action) Blaster and Sasser are examples of past worms that could infect vulnerable systems by simply connecting them to the Internet. Thankfully, there are no exploits like this currently circulating, but if there's a hole in the roof one should not wait for it to rain. Hopefully, these concerns won't materialize and it's important to always stay up-to-date on security updates.

Microsoft issues emergency security patch MS08-067
http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx

QUOTE: This security update resolves a vulnerability in the Server service that affects all currently supported versions of Windows. Windows XP and older versions are rated as “Critical” while Windows Vista and newer versions are rated as “Important”. Because the vulnerability is potentially wormable on those older versions of Windows, we’re encouraging customers to test and deploy the update as soon as possible.

His biggest fear, he said, is that a worm will be developed to take over vulnerable machines en masse. And he fully expects that to happen. "You're talking about a vulnerability that does not need user interaction," he said. "That's a gold mine if you're trying to build a botnet."

Additional articles and information
http://isc.sans.org/diary.html?storyid=5227
http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=211600270
http://blogs.technet.com/msrc/archive/2008/10/23/ms08-067-released.aspx
Grif
Level 10
Report Inappropriate Content
Message 3 of 3

RE: Microsoft Issues Critical 'Out of Band" Security Patch

Just a note about problems after the rollout of the KB 958644 updates.. A few issues are starting to appear on networks after the installation of the 958644 Patch.. The Network seems to disappear and as such, various "ping" options and "My Network Places" aren't working correctly. We've seen a few minor issues so far in our agency network.

Other examples at the links below:

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23848958.html

http://tim.mackey.ie/IIS6ServiceUnavailableAfterInstallingKB958644.aspx

It's not happening on all networks and the problem hasn't been clarified yet, but as mentioned in the previous posts here, be sure to patch those computers.. The impact of Blaster and Sasser worms were severe and this vulnerability is much the same.

Hope this helps.

Grif