Mitch
2003-07-28, 15:47 PM
All,
Vulnerabilities recently discovered in the Microsoft Windows 2000
operating sytem have been the cause of a rash of denial of service attacks and compromised servers across the Internet over the last 24 to 48 hours. Specifically, a vulnerability in Microsoft's implementation of Remote Procedure Call (RPC) seems to be to blame. Microsoft released a patch for this vulnerability on July 16, 2003 in conjunction with Microsoft Security Bulletin MS03-026. http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS03-026.asp
We recommend you take immediate action in getting this patch applied to your Windows server(s). The easiest way to make sure you are fully patched is to run "Windows Update" on your server. To run Windows Update, log onto your server as a user with Administrator privileges and launch Internet Explorer. Go to the Tools menu within Internet Explorer and choose Windows Update. Click Scan for Updates. Windows Update will scan your computer for any required patches and make a recommendations about which patches to apply. Our recommendation at this time is to install all critical updates recommended by Windows Update, **EXCEPT** for Service Pack 4 (see note below). Deselect Service Pack 4 from the list of updates to be installed and proceed with installation of other critical updates. You will most likely need to reboot your server after application of patches. We recommend running Windows Update AGAIN after the reboot to double check for any new patch requirements. In some instances Windows Update will not install the RPC fix and it may be necessary to install the patch manually. The patch is available as standalone update at the URL listed above. Also, if may be necessary to reboot your server prior to running Windows Update if Windows Update fails to install patches properly.
** If your server is running Microsoft SQL Server or MSDE, we also recommend that you patch your server up to the latest patch level. We have seen some recent SQL Slammer activity that will affect any vulnerable (unpatched) systems. The latest patches for SQL Server can be obtained from Microsoft at the following URL http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-031.asp
If you need help with the above instructions or have any questions, please open a support ticket at www.serverbeach.com.
Thank you,
Robert Miggins
VP Operations - ServerBeach
Note - Service Pack 4 has been reported to cause some problems in rare instances and we are therefore recommending against installation at this time. If you already have Service Pack 4 installed, simply apply all critical updates.
Vulnerabilities recently discovered in the Microsoft Windows 2000
operating sytem have been the cause of a rash of denial of service attacks and compromised servers across the Internet over the last 24 to 48 hours. Specifically, a vulnerability in Microsoft's implementation of Remote Procedure Call (RPC) seems to be to blame. Microsoft released a patch for this vulnerability on July 16, 2003 in conjunction with Microsoft Security Bulletin MS03-026. http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS03-026.asp
We recommend you take immediate action in getting this patch applied to your Windows server(s). The easiest way to make sure you are fully patched is to run "Windows Update" on your server. To run Windows Update, log onto your server as a user with Administrator privileges and launch Internet Explorer. Go to the Tools menu within Internet Explorer and choose Windows Update. Click Scan for Updates. Windows Update will scan your computer for any required patches and make a recommendations about which patches to apply. Our recommendation at this time is to install all critical updates recommended by Windows Update, **EXCEPT** for Service Pack 4 (see note below). Deselect Service Pack 4 from the list of updates to be installed and proceed with installation of other critical updates. You will most likely need to reboot your server after application of patches. We recommend running Windows Update AGAIN after the reboot to double check for any new patch requirements. In some instances Windows Update will not install the RPC fix and it may be necessary to install the patch manually. The patch is available as standalone update at the URL listed above. Also, if may be necessary to reboot your server prior to running Windows Update if Windows Update fails to install patches properly.
** If your server is running Microsoft SQL Server or MSDE, we also recommend that you patch your server up to the latest patch level. We have seen some recent SQL Slammer activity that will affect any vulnerable (unpatched) systems. The latest patches for SQL Server can be obtained from Microsoft at the following URL http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-031.asp
If you need help with the above instructions or have any questions, please open a support ticket at www.serverbeach.com.
Thank you,
Robert Miggins
VP Operations - ServerBeach
Note - Service Pack 4 has been reported to cause some problems in rare instances and we are therefore recommending against installation at this time. If you already have Service Pack 4 installed, simply apply all critical updates.