[245] in Security FYI
[Security-fyi]
daemon@ATHENA.MIT.EDU (Linda A. LeBlanc)
Fri Apr 23 09:32:45 2004
Mime-Version: 1.0
Message-Id: <p06020401bcaecb001548@[18.18.3.86]>
Date: Fri, 23 Apr 2004 09:31:58 -0400
To: security-fyi@MIT.EDU
From: "Linda A. LeBlanc" <leblancl@MIT.EDU>
Content-Type: text/plain; charset="us-ascii" ; format="flowed"
Errors-To: security-fyi-bounces@MIT.EDU
We are attempting the widest dissemination of this information as possible.
If you receive multiple copies we apologize.
Linda
Begin forwarded message:
>From: Laura May <lauramay@MICROSOFT.COM>
>Date: Thu Apr 22, 2004 11:38:24 PM US/Eastern
>To: MITPSS@MITVMA.MIT.EDU
>Subject: Security Critical - Malicious Activity Relating to MS04-011
>Reply-To: "Messages about MIT's Microsoft PSS agreement"
><MITPSS@MITVMA.MIT.EDU>
>
>What is this alert?
>
>- Microsoft is aware of code available on the Internet that seeks
>to exploit vulnerabilities addressed as part of our April 13th security
>updates. We are investigating the situation to help protect our
>customers. Specifically, the reports detail exploit code that attempts
>to use the IIS PCT/SSL vulnerability on servers running Internet
>Information Services with the Secure Socket Layer authentication
>enabled. This vulnerability is addressed by bulletin MS04-011. If you
>have deployed MS04-011 you are not at risk from this exploit code.
>
>- Microsoft considers these reports credible and serious and
>continues to urge all customers to immediately install the MS4-011
>update as well as the other critical updates provided on April 13th.
>
>- If you are still evaluating and testing MS04-011 you should
>immediately implement the workaround steps detailed for the PCT/SSL
>vulnerability detailed in the MS04-011. In addition, Microsoft has
>published a knowledge base article KB187498 at
>http://support.microsoft.com/default.aspx?scid=kb;en-us;187498 which
>provides additional details on SSL and how to disable PCT without
>applying MS04-011.
>
>- We expect to see additional exploits and proof-of-concept code
>targeting the April 2004 security bulletin release in coming days and
>weeks, potentially including worm or virus examples.
>
>If you have any questions regarding this alert please contact your
>Technical Account Manager or Application Development Consultant.
>
>Thank you,
>Microsoft PSS Security Team
>
>And
>
>Laura May, MCSE, MCDBA
>Technical Account Manager
>Microsoft US Field Support Services
>lauramay@microsoft.com
>980-776-8767 office
>980-722-9511 cell
>
>Very Satisfied customers are my top priority. If you're not, please let
me know immediately and let's talk !!
--
Linda LeBlanc
I/T Security security@mit.edu
_______________________________________________
Security-fyi mailing list
Security-fyi@mit.edu
http://mailman.mit.edu/mailman/listinfo/security-fyi
