|
|
|
Did Microsoft Patch Miss the Mark?
By: Ryan Naraine
2006-07-31
Article Rating: / 0
There are 0 user comments on this Network Security & Hardware story.
Exploit code for a flaw patched in Microsoft's "critical" MS06-035 bulletin is released on the Internet, but the company's security response team says this is a brand-new, unpatched vulnerability.An anonymous security researcher has posted a proof-of-concept exploit for a flaw patched in Microsofts "critical" MS06-035 bulletin, but the companys security response team says the issue is actually a brand-new, unpatched vulnerability.
The researcher, who uses the online moniker "cocoruder," published the attack code on the Milw0rm Web site alongside a claim that it exploits a memory corruption in Mailslot to trigger a blue-screen Windows crash.
Microsoft shipped a Mailslot fix in the MS06-035 update released on July 11, but although the published code targets a similar flaw, Microsoft insists the exploit does not affect the same code path or functionality or vulnerability that was addressed by the update.
"We now have a good understanding of the issue and we are conducting a thorough investigation into this area of code to make sure we can deliver a security update that is complete and meets our quality bar," said Adrian Stone, a program manager in Microsofts security response center.
In a blog entry posted on July 28, Stone said the proof-of-concept is limited to a denial of service that would cause the target host to crash. "At this time we have not identified any possibilities with this issue that could allow remote code execution," he said.
"We have not observed or received any reports of the [exploit] being used to actively attack systems," Stone added.
Because the vulnerability exists in the Server Message Block protocol that runs on TCP ports 139 and 445, Microsoft recommends that these ports should be blocked at perimeter firewalls, both inbound and outbound.
After reviewing the exploit code, researchers at the ISS X-Force vulnerability research unit described the bug as a "null pointer
dereference" in the server driver (srv.sys).
 Click here to read more about the exploit code.
"By sending a specially-crafted network packet to an affected system, a remote attacker could cause the system to crash," the company said in an alert published July 28.
"Users must reboot to recover from the crash. An exploit is available in the wild. As of this writing no patch is available for the vulnerability," the company warned.
Affected software includes fully patched versions of 2000 SP4, Windows Server 2003 and Windows XP SP2.
The alert said it is "unlikely" that the new flaw could result in remote code execution but warned that "complete system crashes are reliable."
Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.
|
|
�������x}ks8q�8c�H)ْcmlk)&uT�I�S$�˩'o�҃xIfl���ݍFwH�9utô'1�%3�t�D�;;?.Ї|k�S�/92t1`:x =3~�dȢ�q!)$fR��8QK�jkz=2}�{'�.4vlr�_ռYoס>x6ܳL]nlb#6fJ�ۄظ�?0��$�O�L�E��sؖ}Y֍aF�Y:o@�Y�Z*մ��*rM)�mִ
ַL{~gT3{=>~*eU�v;\H� �CK�5-%;ZAPu.qw?OO�o�9F�o�
|'��D�R*��rP8%ȇ �t4${@B3�ZP+ZV�@+(H.ՃQZzO`%�pbQUri�[}o_^\vzmo��^vH>?ecby
1�=�b Jg3Fz1G_-:[WO�WVG9j�8sِ��(PlnAZ|_mUV_�`CK'^A"7<0MߑRMRs�~iu_.d�@O#dp$˭~vJ��{(-tK9K2}!x�)!,��G)H�cU�|`Am�dƱ�(|ǚ�r�N�l�jVuT7o`�H�2��f4 �?M=w�� a4[=RFp �\� ��a�CǸgUa�l&XJp7�єyd$e��$�=hI,A]!fd}N�}�%I���F(�#ZG>o=3jY}vkh|?(6ʋMoQsi>���I7j0i��+���GzLnž�*�Q߭�D�u�|h�*>��l�d�(4o(s�ukLnL�σ�h��JC�͋�0�����=����2+?k>�f�(9N@Fܧ�mM�rAݙ39nZд@c@*%�qRPٜ�*,%5M_GѪńHVFND��l�P��PW)(�N5i;:O̗�Hږi_ES�]77�BgsݐC/�2 W.Y� ��2cxRUay�Rt*[3nR6�=MO9e�XScXMϠDv�7�Lzb0uf�u/$1`�V<:��X�鹞~k푫��6(*G�d|P��;u��-
CO4,��FV�fj:Y]����~�2.|N���,/0{.C�Všc\S��ӥa︽.JM*}5l4�_ۄ#�A��?1ɉZ*�aA1��TM~�?x;ڈy��cQ_.)�UQD�k�d"�vd\6˰@�m��;f#�Of3nߓ�hRK̴�)&� zQ8e���'�og�
đa~Sc'�%7d�70�U�9C���TKo=:>8Ģ4Q}�(���Mڄi&.}{ŤԊ���kkSsGŅR����CȮ�c��f:,JV-wZu�4_%mpH1�)dzD4@+-q8bk
��tBk�}rq�@d%RaݜU�m�"vzڀVI�JhQ�_TM.(7> s7m&mo{y�LoG37�~ɴ�h:�(1<� ֠|o��D
}�&q5�ꗁ^Q��螫VJۂ�f0�3Q9QR8c�=�k9(,�S?tWk*(�kd?y}���z�&k�w�ܕ[0_�c�-&octd�(.ō�πj̈dž�2uԚ�ZNL&��Vi
Vj�[�{؇v �̽[~{;I�L-a�~XTJJ\�ճ
(Jq�$ �[2u9p\s[?l�ICo`s�警Km�
{~L>\XS(.>UP�*jII�z$`wyU!n=m0V�VhW`Zd&s�ܜ�%\{s��iP)Qr�3[Y&)Ӕ�Wϰ�:3�Rb��
kȣ^h#e[��,%ss]<
��Ͽݜw9s�� >L;�J墦�AkR;yG+a6&rf���:���;GF�e.E�O*'+-JP^qLg(��,�$$%l,zޏ�ɷw��nhۆ
K�~w?)ɡH�HD��"״R#N-4�jV(YƵ?LohqL��]|ۅViUeAb-�����l�
|*�N=$�@h$K쓂}y9g|�8}_EwA;�NQ�A^-w;Z\#-0MC�JV�t@`eyK5?p��-��%5ނ4 ���`i8~{@]ۮ��?rfSOڋf9 ]2q?`�#Ban=�pΚ�:%i�; lu�߽���9 �!5O;�Y�
G^9:m7/��M1k�0խh{0��cl9a�(��>x�$-Zden#ݒ:p,5��2)!M���)|Lhk'IZV�6X(��4%!4T^ҌObCYF*]7'�һhop�P�poS6�ܢ)-&�HuT䵤�
g[YgUHN~D��Cޣʼn�l0��>¸*$�SVHl;`=ұGy~"ѴNxL�7Ď#
qYBK+:� C�W��./�lv�6eFȢ*i{�?Ʉ�KGS6^Y�=l}�HK{a43�q��vbϓ;~�CzS��gOɕ2ss\�ZpFl+¿υܳbpfic�HKλ}�2i�ɸ�7Ye��(fh~X:pKҠc�=b(582}K�L7K}{�Y<�cϺw�7�]f+wuB&uB6Ze%JW}�qMԈ@�j"kir4^Y8Z�䑼D�G%�{two��o
�14�L,*z>l-S9&k� ?Q@.-vc鼱��2��>
AC؞qnbL��d<�J��;�o�o܍n � ?#B��;BJ��`1tfA-Ѓє-C 6�[R>
Gԧ3ӆep�d]>9:pPRj�EQϣdfay1:\ɆUncӜҳ-F_�kO�}hݞ|�Od]U�D�rO.,}2nA~7z92A)%$^ghYh5<��x�X�ggXPy�Mt[Cm<� DG`'K.J'��&�`2�.Nr�V{tj\&|ruZl �`'Cr�$ܽe@� J5-��1rtA8NbJpu��"%"��:2l` �Ĺr
.U@�g�%k�茶Z8Nynxp4vYDx���;ˌ�F-Ƙ>֎+bױ |d|B[XjbWX+%��4�^)*?�xE^�\V�-RnA.%}`пC┋Z-�d9���'e 0MOPܴ�ڄ9^BoNXgf9��x<>:.`eݢ^00|=�!�J+�.�bs�%�t�VXo2O�mE2oڼAoR!~#]Z�u,�{�a#v�ڟ#U
oOPZ-U[37o9%C"���(7}�fH+wi*4E=$;g!7E�̨IЙ/��[ RRUQ�Rȕb���(18X���O@��`Q�e`I�v!"2�=}H1d2+APb˷�Fm}IU%My\a�6JZ�O>a0K�`-'"�k!a-h_�iKd��5�#ȷ)^P�glz3_ꈥԾsauL=+~ X*eU�7�!l�&!l%��U>�Iu{4P�TYؔ*ˏJJix0#�A���* ���Lcigf�t�����D�PL N4H�Hvn66ɵ��%URyA�vIuäT �t�S�Lϩo��R-m$�|R"!�!3�cVIZfBMi巔iZ�B8V,k,JxPAܟRn|e۠Õ^8\tv/u�Ke�e0^R:a?B*F="�<Ӿ5W)�ih=>ϝUj}H�]�A�x5ʿ^�kp~X?ZR[3�k a
ܷ D557ᕍs,Bs�P6ėr? &EXR�&])ʵb=�|�"FD�2ڶ˺vV���epZvmB�jp@ꍼLj"�#5]stXr@��dsG}r80�ǀ�<4~��s� �Dqm;�5&;(G�R�3?�wd{TS�_е�Ku-�5�� ���@0
nt�I�k-Dm�ۖؐB߰ח/`i5�^�ᢩ��W.umڿ�Κۣ�`ShD'P\�v}.76κ!�(M>?*O0"^Xu&=�o]�R*E�s�6d[G�{SPf֢��WU"Fn̻KIk
Parց pf־2;o,/pzw >
ط3q�ҝV��ܰ�VPA�
L/~��,e\4�븺e)�2&�.^�&D�eL;rO5�s9"���^�vӋ C�xtO6?0b�Z_��tyn&n$5v��M�h�X�`|J0z��
c
�C�(T=.|��ȲhKk٥gyΜ��mV*rhJ�nh7>㮦z�-�4�C�X5bM,$tF86/@��3ƚi< -~�i�#QR �>鋀!1�/'�t1�:.�Sj�c�o�HjpXO_d.Yڥm.<,pQ}uҠ2�Z���ɀ{41ln�OL�C&p6�]?�r�Ec�bh<��zExn~ a��]7T�a̙14q*o�>*Nk{ʞVS�,�F���kN+iξCu,B��Ӑ@)�rE(nuطB�%o "{ac�@�amI��Y06X@Qm
LQ�ì�fPu!ۿPmdɏQVKk^2UȯB�S
Q�?D_̙xn��?¤�t'O,7k v2.E��o
|��5�~˅�=(P��7�7 Cė[%̮�yGx32
k)G>şKZ�/W��nb�,.']T5,X�m��?IR�]
s (ѯTeQO!�'�sfJ�(aZWcW�F�=�%h�=H? ,Q(]Esn�>+�ñ:ȩ-kV��FX*�l"�Z�"�'"�KI�H�
]^<���?���X2���
/(_7`;L�F��\sj4�1��^3�R6&ƘsjxVQjjvzr_hZRӂ,nw)�do=;5�֘0zh*B Yٜ�AKup؊�*R!Q�}N9�@QΧU:�@
�N��`E,*�~^�kQ@'���}^o4t_cW&hҵτ8H D�����_`�#� l`!�gs[OyюU57n�t)6AP�;>cȞ�uNTEo�Vz��}��/0Lۼ%U$x[hto�wQf1��Ma�Du�m0h過�Dsq�`o�1�K}�J�zV=lDiwm=_ň�\>dD+9m����OcLѾcv�qҞ��T�TbЍ�B1KM;InP0Y?d=`
��W��=[!VUv�$r�&Ž�*��'4�;mL7-�b}~!~�^M$
)Io��H( ]�Y#�`�xII�(Fy\�=4;};m�ZxX�29k�`%'=#ݛ]~Oأ�z�+u=$�>asH�]W\AfxP�!+:�eh/*�{�χ\n|J7_o8fkH0bCL9ҌsGRS
��Q9 ?ч!��@�6L-nxIAX#�hb��G#Os3eǸ�ۭ�s��X�0!���\N~�}sO����X�P"X/A�cl�$��F2����5�
3IĔ�67+I8�F�|;���`�:>00\.Eܹ�]ez{?�G�Av2u:�R���#%~�:t^Q=1ex{�C`�>sc���[7�;ΥI@DZ|xL��]ƒ�$�BѽӜVX�n ?2ZWXSs, 0�H��.ƌ JU(KRW�:P
|�+R0b��UF�7)^�;ele,�-Mȕ@��ZA��Șq��JhrOuz�cѼ8BI/mt;\;sr>^&kE/WQja{ssc�OT~T_Ye(�L',C r|*UeW}(;�0%lyі�5�1o��Ll���-=�Vi؊sm8��r8ٙEW%G!u �7~RcXW۠w\rs���@ACt3ҡ��{�_ S��/��3YF�Y�|Y�~�?g�9e�,>π>2�yg3s� *+�*~2/9IR<��>k^�0#k�fK�"|�)+�P�5Hϐge�3�Vڍn�a�{r!{Fˀ^��_
sqm%�BR+�+]Q%>=Mk�[I�2}ח:
e|*�,XW&�5s��
�r hxVYd�bd�
byXe?~VP�枔u�]�KR�M�j. {%])2-XѦ�Z}5_9=U2̉��C�"̵0�Z'"%YØܺ�Czn}(��s�je&m~�4̊lOApt_Es9�MA7.[נ_/�ݹgֺ+3c�+p'k͠6K搇H>Yݩ;x߅�ߊD,�zT
�e��HI\���=ݴ}F�f(A}¾�^�ytpf�^`O~�U8�uߜ:R���O��?(RKtAc̝��O!4l%D�=C>}58]WnP�؉w&3�
P7�#D�:ɹT.jZQo\)Uʹw俒KD2�(#3t<�̈ɪ"+UW9 ط��V++R�0�X����^;�QHJvo�*%K0nhy�=q̐G�a��*1VJ�!%\B��}m.ΫX�
Ҽx�0%as8a+h;b�#�;P`�I9�;�z^̇,%�rb�g�Lߟc4дg�*6�VzA�[Rg5
u'��;Ss��ӄ[Ìc,!i܀x~l�4QA�T�Dfڔ�W�J�f@g+Ճ7rɈHτ[T�i}S%�/u5� �V{Ϲ9 [2FdX jXJr�XvL�2X`w�ȼ!+BOZ�v�56��#P���I�vՅᅀu&�Ĥ��׀6�Rx�Vň�+vi֡d�(�W1��DJx�jHNW"f�9p<`i
(
�W"^!#˙��:Z��c@8>�cc6H[8=ۺ9l؆,�wUS�.�/U`m�,�l{�[?B�k'/x��@z!_� �8$´��dd3=(u�l70-d�t{x ]u�=v�`w�"
oK��~6'I�-}�x��}Jc$l�L\3t�����ɡ>�EW郇rC�+.Ġ/�>'GTWB�Mx�XU7gM&��cӄ0�9zWL }+̑R�m5�u;�dԢԱQ#t.Hϱ�98�42a`a���6l���{�#�E3$0�Z<�nASHh�Vi~,J$g'_5�b
Fi*b5@tgQlVxRF�W"m뭻[�0\"e�z\;Tl[�.R�ca��D|J�BO/�Chy wmeΚ˼7ςezLT z̴ ��u�XaKNv֒{ƶ� ;C/'B`d�{hd���G*$_*0t>�r8��`���삇�?�dtE��#bSp.@>PEg2R8WD
�^)۱Yb���d휙nV@)
3/�&U@�Er'˫Pvx�m< ^|:y-�E{"��fu�ݎ2J�`mR>EK
]f'[٦2�й=-{�/���i[�;�]u�,ϱ�{ �Q�Fb�f�C�q-E6<]܈x~[ݺF�g�
��k�Odx.Xݫ8mہQ#hݰ3a[:*��n�۲u�yӷmT�\7mȰ-my�c�Q1V1?Hl}}MX�,ٰ���q�WA� wVǰ�BO7sSo�30RO
+$|[P�<7±=)>�-�#ǽgqo#x�^��O!�gW�
Y�-�1!Dt9)yrd&vP?8�a�#ٔ M(�_B,B�Y��דWv![�Zq#�|撟�元>�WNyNE=�Sf}'s)SL_џ�]#ړ+��3+��Sq�K.ɛ�By=Kͳ}R7�V��v�vQ"�+ReɜK�BU+$�Z/gfLN$ƇZʾ �wm&l2)v}m-c6�]-�;�WC)��
|
Network Security & Hardware 
