Reading up on patches today?

Busy writing up Patch Watch for www.windowssecrets.com and didn’t have a chance to blog last night.


Meanwhile I hope you read


http://isc.sans.edu/diary/Microsoft+November+2011+Black+Tuesday+Overview/11971 and http://blogs.technet.com/b/srd/archive/2011/11/08/assessing-the-exploitability-of-ms11-083.aspx


And then keep an eye on this:  MS11-083 Analysis | h4x0r.co.uk: http://www.h4x0r.co.uk/2011/11/09/ms11-083-analysis/

So far the fun update of the month is MS11-083 that I’m still trying to get my head around.  It’s an issue on CLOSED udp ports not open ones, so grab your head around that.


 

One Thought on “Reading up on patches today?

  1. “Workarounds for Reference Counter Overflow Vulnerability – CVE-2011-2013

    Block unused UDP ports at the perimeter firewall
    Blocking unused (closed) UDP ports at the perimeter firewall helps protect systems that are behind that firewall from attempts to exploit this vulnerability. For more information about ports, see the TechNet article, TCP and UDP Port Assignments.”

    If the vulnerability works on closed ports then I guess your firewall better be based on an OS that’s not Server 2008.

    I wish they would explain this better.

Post Navigation