Now Available:

line

Realtime Communities

line

Newsletter

Email Address:

line

RSS

  • XML
  • iTUNES
line

Ask the Expert

Have a question for our resident expert? .

« Tuesday "Just for Fun": Hasselhoff, eat your heart out... | Main | Hacking WSUS #3 of 5 -- Creating a MS Number to Knowledgebase Article Number Comparison Report »

BlueLane Releases Threat Filter Update for Unpatched DNS Zero-Day

BlueLane -- a company whose products I've praised a few times before -- has released a signature update for their Internet threat filtering products. This update will protect networks against the still-unpatched Microsoft DNS zero-day vulnerabilty currently gaining some attention in the press.

If you lack a threat filter like the BlueLane product, you are currently in a "wait and pray" mode until Microsoft releases their patch. Conversely, implementation of one can be an excellent secondary mechanism in protecting your internal network from external exploit.

According to BlueLane's press release...

PatchPoint® Update #175 – April 13, 2007

Blue Lane has released a PatchPoint System update via the Blue Lane PatchPoint Update service. Each PatchPoint update is comprehensive; that is, all system components are updated. If you fall behind in installing PatchPoint updates, the most current update covers all previous updates. The inline patch update in this release may also feature ongoing PatchPoint system improvements, including performance and state machine enhancements.

Blue Lane Inline Patch Additions

Microsoft — Addresses an unpatched vulnerability in RPC on Windows DNS Server affecting various versions of Microsoft Windows.

Microsoft BL-9999969 (No Vendor Patch Available)
A buffer overflow vulnerability has been reported in the Microsoft Domain Name System (DNS) Server Service. An attacker who successfully exploits this vulnerability could run arbitrary code and take over the system (CVE-2007-1748). No vendor patch is available yet.

Tags:  

Posted by Greg Shields on April 17, 2007 6:52 PM |

TrackBack

TrackBack URL for this entry:
https://realtime-windowsserver.com/type/mt-tb.cgi/95

Search

line

Most Active Posts

line

Library Resources

line
line

Recent Posts

  • Memorial Day! Take it Easy Today...
  • Microsoft SoftGrid Sequencing Best Practices
  • Holy timing, batman! Microsoft Press Releases Windows Server 2008 Book
  • CBT Nuggets "Introduction to VBScript" Series to be Released Soon
  • Free CBT Nuggets Citrix and SMS Videos
  • WSUS 3.0 Auto-Update Excludes SBS Servers
  • Sarbanes-Oxley Revision under Review -- This may be a Good Thing
  • WSUS 3.0 update posted to WSUS today
  • Citrix Access Suite 4.5 Video Demos Available
  • Arguably the Least Specific or the Most Necessary Terminal Server Hotfix Ever
line

Categories

line

Greg Shields' Bio:

Greg Shields is a Principal Consultant with 3t Systems in Denver, Colorado. With more than 10 years of experience in information technology, Greg has developed extensive experience in systems administration, engineering, and architecture specializing in Microsoft, Citrix, and VMware technologies. Greg is a Contributing Editor for both Redmond Magazine and Microsoft Certified Professional Magazine, authoring two regular columns along with numerous feature articles, webcasts, and white papers. He is known for his abilities to relate highly technical concepts with a drive towards fulfilling business needs. Greg is also a highly sought-after instructor and speaker, teaching system and network troubleshooting curriculum for TechMentor Events, a twice-annual IT conference, and producing computer-based training curriculum for CBT Nuggets on numerous topics. Greg is a triple Microsoft Certified Systems Engineer (MCSE) with security specialization and a Certified Citrix Enterprise Administrator (CCEA).