Now Available:

Featured Resources:

Newsletter

Email Address:

Subscribe





Ask the Expert

Have a question for our resident expert? .

Realtime Communities

« Just for Fun: Dell uses Ubuntu? | Main | Would you Buy an Online Backup Service from Symantec? »

Active Internet Exploits against Microsoft DNS Zero-Day Vulnerability Picking Up

It appears that Microsoft's DNS problem is getting worse with the introduction of exploit code running around the Internet. Be aware that this vulnerability will allow an attacker complete control over an infected user within the context of an administrator. Since many Windows DNS servers are also Domain Controllers, this is expecially problematic.

According to Dark Reading, the name of the exploit is...

The Rinbot worm, which also is known as Delbot-AI and Nirbot, is exploiting a vulnerability in the Microsoft Domain Name System Server Service. The flaw lies in the way the Windows DNS Server's Remote Procedure Call (RPC) interface has been implemented.

Rinbot, which is an Internet Relay Chat controlled backdoor, has been able to exploit the flaw by sending a crafted RPC packet to vulnerable computers. If the worm successfully infects a PC, according to researchers at Sophos, it allows hackers to gain remote access over the computer, giving them the ability to control what it does and steal information from an unsuspecting user.

Microsoft states that a patch should be ready by May 8th. Or, at least no longer than May 8th. What's interesting about the May 8th date is that that is the usual Patch Tuesday for Microsoft patches.

You can read the entire Dark Reading article at: http://www.darkreading.com/document.asp?doc_id=122162&f_src=darkreading_section_318

TrackBack

TrackBack URL for this entry:
https://realtime-windowsserver.com/type/mt-tb.cgi/98

Most Active Posts

Recent Posts

Greg Shields' Bio:

Greg Shields is a Principal Consultant with 3t Systems in Denver, Colorado. With more than 10 years of experience in information technology, Greg has developed extensive experience in systems administration, engineering, and architecture specializing in Microsoft, Citrix, and VMware technologies. Greg is a Contributing Editor for both Redmond Magazine and Microsoft Certified Professional Magazine, authoring two regular columns along with numerous feature articles, webcasts, and white papers. He is known for his abilities to relate highly technical concepts with a drive towards fulfilling business needs. Greg is also a highly sought-after instructor and speaker, teaching system and network troubleshooting curriculum for TechMentor Events, a twice-annual IT conference, and producing computer-based training curriculum for CBT Nuggets on numerous topics. Greg is a triple Microsoft Certified Systems Engineer (MCSE) with security specialization and a Certified Citrix Enterprise Administrator (CCEA).