Friday, April 15, 2011 11:25 AM cmosby

MS11-020 (KB2508429) Upgrading from Critical to PATCH NOW - SANS Internet Storm Center

MS11-020 (KB2508429) Upgrading from Critical to PATCH NOW

MS11-020 (KB2508429) Upgrading from Critical to PATCH NOW
Share |
Published: 2011-04-15,
Last Updated: 2011-04-15 12:22:18 UTC
by Kevin Liston (Version: 2)
1 comment(s)

Based on notifications received from Microsoft we are upgrading the rating of MS11-020 (KB 2508429, CVE-2011-0661) from Critical to PATCH NOW. See: http://isc.sans.edu/diary.html?storyid=10693 for the full table.

The Remote Code Exploit is possible without authentication, so this presents a serious risk to internal networks. Think Downadup/Conficker, or think lateral movement if that will help motivate patching.

Also note that this patch requires a reboot of your system.

Please submit any reports of weponization/exploits, or impacts from applying the patch.

Sorry.

-KL
Keywords: MS11020
Filed under: , , , , , ,

Comments

No Comments