Azo-999
October 16th, 2002, 03:28 AM
Hello Again and Good securities for all...
Go to http://grc.com/UnPnP/UnPnP.htm , and get a good solution :
UPNP ("Un Plug & Pray") for WinAll users (especially XP), it will disable the Window's unsecure UPNP-feature and does some other small tricks for Your Windows too.
No need to understand it completely, it just for me did a good job (1 month ago) for Kazaa and especially for e2k apps as eDonkey / Overnet saying I'm not firewalled at my own PC anymore (Open) and begun to show me much bigger list of Users / Files at e2k and more sources at Kazaa...
AND THE BEST - More security for all Windows users using that feature !!! The article(s) are quite old (dec 2001), leads U further to CNet's coluns and MS-Knowledgebase , but it still does it's job after MicroSofts 20+ vulnerative-fixes...
Some point from the main page :
"The FBI has Strongly Recommended that
All Users Immediately Disable Windows'
Universal Plug n' Play Support !"
"Our 22 Kbyte "UnPlug n' Pray" utility makes that very
easy to do . . . and if ever needed to, later undo it :
It's now compatible with ALL Versions of Windows!"
"What is all the fuss about?
On Thursday, December 20, 2001 Microsoft revealed that the hackers at eEye had discovered multiple critical security flaws in all versions of Windows using Universal Plug and Play: "
Quoting from eEye's press release:
"eEye has discovered three vulnerabilities within Microsoft's UPnP implementation: a remotely exploitable buffer overflow that allows an attacker gain SYSTEM level access to any default installation of Windows XP, a Denial of Service (DoS) attack, and a Distributed Denial of Service (DDoS) attack. eEye would like to stress the extreme seriousness of this vulnerability. Network administrators are urged to immediately install the patch released by Microsoft at http://www.microsoft.com/technet/security/bulletin/MS01-059.asp"
"The most serious of the three Windows XP vulnerabilities is the remotely exploitable buffer overflow. It is possible for an attacker to write custom exploit code that will allow them to execute commands with SYSTEM level access, the highest level of access within Windows XP."
"The other two vulnerabilities are types of denial of service attacks. The first is a fairly straightforward denial of service attack, which allows an attacker to remotely crash any Windows XP system. The crash will require Windows XP users to physically power down their machines and start them up again before the system will function. The second denial of service attack is a distributed denial of service attack. This vulnerability allows attackers to remotely command many Windows XP systems at once in an effort to make them flood/attack a single host."
Translating eEye's and Microsoft's statements into consequences, this means that without the security update patch, and with the Universal Plug and Play (UPnP) system in its default "enabled" state, any of the many millions of Internet-connected UPnP-equipped Windows systems could be remotely commandeered and forced to download and run any malicious code of a hacker's design. This includes using the machine to launch potent Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks.
This means that extremely damaging CodeRed and Nimda-style worms can now be written for millions of Windows machines. Whereas the Microsoft IIS server worms of 2001 found and infested 'only' several hundred thousand IIS servers, a Windows "Universal Plug and Play" worm would have more than ten million XP systems, in addition to many more Windows 98/ME systems, upon which to prey today.
The highly respected Gartner Group has said that they expect hackers to incorporate the UPnP vulnerabilities into their attack tools by the end of the first quarter of 2002. Here's Gartner's Commentary. http://news.cnet.com/news/0-1003-201-8254545-0.html?tag=prntfr
Comment are taken awards : Did it something / nothing for Your PC? Did U lose Your Op.system? :wings
Peace and no need to understand it all !
:sw :sw :sw :sw
Go to http://grc.com/UnPnP/UnPnP.htm , and get a good solution :
UPNP ("Un Plug & Pray") for WinAll users (especially XP), it will disable the Window's unsecure UPNP-feature and does some other small tricks for Your Windows too.
No need to understand it completely, it just for me did a good job (1 month ago) for Kazaa and especially for e2k apps as eDonkey / Overnet saying I'm not firewalled at my own PC anymore (Open) and begun to show me much bigger list of Users / Files at e2k and more sources at Kazaa...
AND THE BEST - More security for all Windows users using that feature !!! The article(s) are quite old (dec 2001), leads U further to CNet's coluns and MS-Knowledgebase , but it still does it's job after MicroSofts 20+ vulnerative-fixes...
Some point from the main page :
"The FBI has Strongly Recommended that
All Users Immediately Disable Windows'
Universal Plug n' Play Support !"
"Our 22 Kbyte "UnPlug n' Pray" utility makes that very
easy to do . . . and if ever needed to, later undo it :
It's now compatible with ALL Versions of Windows!"
"What is all the fuss about?
On Thursday, December 20, 2001 Microsoft revealed that the hackers at eEye had discovered multiple critical security flaws in all versions of Windows using Universal Plug and Play: "
Quoting from eEye's press release:
"eEye has discovered three vulnerabilities within Microsoft's UPnP implementation: a remotely exploitable buffer overflow that allows an attacker gain SYSTEM level access to any default installation of Windows XP, a Denial of Service (DoS) attack, and a Distributed Denial of Service (DDoS) attack. eEye would like to stress the extreme seriousness of this vulnerability. Network administrators are urged to immediately install the patch released by Microsoft at http://www.microsoft.com/technet/security/bulletin/MS01-059.asp"
"The most serious of the three Windows XP vulnerabilities is the remotely exploitable buffer overflow. It is possible for an attacker to write custom exploit code that will allow them to execute commands with SYSTEM level access, the highest level of access within Windows XP."
"The other two vulnerabilities are types of denial of service attacks. The first is a fairly straightforward denial of service attack, which allows an attacker to remotely crash any Windows XP system. The crash will require Windows XP users to physically power down their machines and start them up again before the system will function. The second denial of service attack is a distributed denial of service attack. This vulnerability allows attackers to remotely command many Windows XP systems at once in an effort to make them flood/attack a single host."
Translating eEye's and Microsoft's statements into consequences, this means that without the security update patch, and with the Universal Plug and Play (UPnP) system in its default "enabled" state, any of the many millions of Internet-connected UPnP-equipped Windows systems could be remotely commandeered and forced to download and run any malicious code of a hacker's design. This includes using the machine to launch potent Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks.
This means that extremely damaging CodeRed and Nimda-style worms can now be written for millions of Windows machines. Whereas the Microsoft IIS server worms of 2001 found and infested 'only' several hundred thousand IIS servers, a Windows "Universal Plug and Play" worm would have more than ten million XP systems, in addition to many more Windows 98/ME systems, upon which to prey today.
The highly respected Gartner Group has said that they expect hackers to incorporate the UPnP vulnerabilities into their attack tools by the end of the first quarter of 2002. Here's Gartner's Commentary. http://news.cnet.com/news/0-1003-201-8254545-0.html?tag=prntfr
Comment are taken awards : Did it something / nothing for Your PC? Did U lose Your Op.system? :wings
Peace and no need to understand it all !
:sw :sw :sw :sw