Wednesday, August 19, 2009

MS09-039 actively exploited in Higher Education

Doug Pearson of REN-ISAC just sent an announcement to the public EDUCAUSE security listserv that MS09-039 is actively being exploited in the higher education arena.

The message confirms earlier speculation by the Internet Storm Center that exploits for the WINS vulnerability are live on the Internet and spreading.

On interesting item in the REN-ISAC bulletin in the explicit warning not to just rely on perimeter firewalls for protection as successful WINS server compromises have been seen originating from inside the organization.

Once again: it is time to patch, block, or disable unused services.

No comments:

Post a Comment

Please share your view and opinions on what I wrote. In order to maintain quality, all comments will be moderated for merit. Contributions that call me out on statements that appear unfounded, wrong, or simply with which you disagree are highly appreciated and are even encouraged. Spam and 'me too' answers will be ignored.