"For this issue, our teams are working on developing and testing 133 separate updates: one in every language for every currently supported version of Windows servers. Each of these has to be tested to ensure they effectively protect against the vulnerability. Because DNS is a critical part of the networking infrastructure, they also have to be tested to ensure that changes introduced by the updates don’t pose a greater risk than the security issue we’re addressing."That's right 133 separate updates to be tested, with new findings needing to be retested!
The most recent update is the release of Knowledge Base Article 936263, linked below. KB 936263 is a repackaged version of Jesper's instructions for disabling RPC management on DNS when this needs to be performed on a large number of DCs or DNS servers. Microsoft added some error handling to the package.
Please see the references below for complete information.
References:
- Jesper's Blog (13Apr07)
- MSRC Blog (20Apr07)
- MSRC Blog (19Apr07)
- MSRC Blog (17Apr07)
- MSRC Blog (16Apr07)
- MSRC Blog (15Apr07)
- MSRC Blog (14Apr07)
- MSRC Blog (13Apr07)
- MSRC Blog (12Apr07)
- Security Advisory 935964
- Security Advisory 936263
No comments:
Post a Comment