Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

RE: RPC DCOM Patches
From: John.Airey () rnib org uk
Date: Fri, 1 Aug 2003 11:01:25 +0100
-----Original Message-----
From: Jasper Blackwell [mailto:jasper599 () hotmail com]
Sent: 01 August 2003 06:53
To: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] RPC DCOM Patches


Hi All,


Are NT 4 Workstations vulnerable too, or just NT 4 Servers?



NT 4.0 WS is bound to be vulnerable. MS did not release a 

patch because the 

product had hit its
official end-of-life before the patch was released. ...

Regards,

Nick FitzGerald



I have an NT4 workstation running SP6a which the patch seems 
to have worked 
fine on. At least it no longer shows up as vulnerable to 
scanners for this 
exploit.

Jasp


Whilst it is correct that support for NT4 workstation is finished
http://support.microsoft.com/default.aspx?scid=fh;en-gb;lifeAn5 the actual
difference between NT4 workstation and NT4 server is two registry keys (I
can't find the original reference to back that up right now).

So it should be possible to keep NT4 workstation "secure" till the end of
2004, but I can't promise it.


- 
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 John.Airey () rnib org uk 

The trouble with postmodernism isn't just that no-one actually believes in
it, but no-one can believe in it.

- 

NOTICE: The information contained in this email and any attachments is 
confidential and may be legally privileged. If you are not the 
intended recipient you are hereby notified that you must not use, 
disclose, distribute, copy, print or rely on this email's content. If 
you are not the intended recipient, please notify the sender 
immediately and then delete the email and any attachments from your 
system.

RNIB has made strenuous efforts to ensure that emails and any 
attachments generated by its staff are free from viruses. However, it 
cannot accept any responsibility for any viruses which are 
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email 
and any attachments are those of the author and do not necessarily 
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk 
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]