Protect Windows 2003 Server from this WINS flaw

by scottlowemcse in Microsoft

on June 17, 2005, 12:00 AM PDT

Protect Windows 2003 Server from this WINS flaw

Windows Internet Naming Service (WINS) includes a buffer overrun flaw that can leave Windows servers open for attack. Learn more about this flaw in this Windows Server 2003 newsletter reprint.

Many organizations rely on the Windows
Internet Naming Service (WINS) to help manage complex Windows
environments. WINS manages the association of workstation names and
locations with IP addresses, so the administrator doesn’t need to
make each configuration change.

In December of 2004, Microsoft confirmed
previously released information that this service includes a buffer
overrun flaw that can leave Windows servers–all versions,
including Windows NT–open to attack. In order for the attack to be
successful, the WINS service needs to be running.

Rated moderately critical, the flaw would
potentially allow an attacker to take control of a server and run
code of his or her choice. Microsoft recommends that users who don’t use WINS disable this service. If
you do use WINS, disable both TCP port 42 and UDP port 42 at the
perimeter firewall.

For more information about this issue, check
out Microsoft
Knowledge Base article 890710.

Stay on top of the latest WS2K3 tips and tricks with our free Windows Server 2003 newsletter, delivered each Wednesday. Automatically sign up today!

By scottlowemcse

Account Information

Contact scottlowemcse

Your message has been sent
|
See all of scottlowemcse's content

Editor's Picks

Image: Rawpixel/Adobe Stock

TechRepublic Premium
TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.

TechRepublic Staff
Published: March 14, 2023, 9:10 AM EDT Modified: March 15, 2023, 9:16 AM EDT Read More See more TechRepublic Premium
Image: Blue Planet Studio/Adobe Stock

Payroll
The Best Human Resources Payroll Software of 2023

With a lot of choices in the market, we have highlighted the top six HR and payroll software options for 2023.

Ali Azhar
Published: February 28, 2023, 11:11 AM EST Modified: March 20, 2023, 4:45 PM EDT Read More See more Payroll
Image: Microsoft.

Software
Windows 11 update brings Bing Chat into the taskbar

Microsoft's latest Windows 11 allows enterprises to control some of these new features, which also include Notepad, iPhone and Android news.

Mary Branscombe
Published: February 28, 2023, 2:59 PM EST Modified: February 28, 2023, 2:59 PM EST Read More See more Software
Image: tanatat/Adobe Stock

CXO
Tech jobs: No rush back to the office for software developers as salaries reach $180,000

Salaries for remote roles in software development were higher than location-bound jobs in 2022, Hired finds.

Owen Hughes
Published: March 3, 2023, 3:12 PM EST Modified: March 16, 2023, 12:56 PM EDT Read More See more CXO
Image: Nuthawut/Adobe Stock

Software
The 10 best agile project management software for 2023

With so many agile project management software tools available, it can be overwhelming to find the best fit for you. We've compiled a list of 10 tools you can use to take advantage of agile within your organization.

Brenna Miles
Published: December 27, 2022, 11:45 AM EST Modified: March 16, 2023, 2:25 PM EDT Read More See more Software
Image: Song_about_summer/Adobe Stock

Security
1Password is looking to a password-free future. Here’s why

With phishing-based credentials theft on the rise, 1Password CPO Steve Won explains why the endgame is to 'eliminate’ passwords entirely.

Karl Greenberg
Published: March 2, 2023, 3:44 PM EST Modified: March 7, 2023, 4:10 PM EST Read More See more Security

PURPOSE Recruiting a community engagement manager with the right combination of experience and communication skills will require a comprehensive screening process. This hiring kit from TechRepublic Premium provides a flexible framework your business can use to find, recruit and ultimately hire the right person for the job. From the hiring kit: DETERMINING FACTORS, DESIRABLE PERSONALITY ...

PURPOSE Successful chief experience officers combine excellent communications skills with an intimate knowledge of customer expectations, company operations and industry standards. This hiring kit from TechRepublic Premium provides a workable framework you can use to find, recruit and ultimately hire the best candidate for CXO of your organization. From the hiring kit: DUTIES AND RESPONSIBILITIES ...

PURPOSE Recruiting an automation specialist with the right combination of technical expertise and experience will require a comprehensive screening process. This Hiring Kit from TechRepublic Premium provides a flexible framework your business can use to find, recruit and ultimately hire the right person for the job. From the hiring kit: DETERMINING FACTORS, DESIRABLE PERSONALITY TRAITS ...

Protect Windows 2003 Server from this WINS flaw

Protect Windows 2003 Server from this WINS flaw

Editor's Picks

TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

The Best Human Resources Payroll Software of 2023

Windows 11 update brings Bing Chat into the taskbar

Tech jobs: No rush back to the office for software developers as salaries reach $180,000

The 10 best agile project management software for 2023

1Password is looking to a password-free future. Here’s why

Hiring kit: Community engagement manager

Hiring kit: Chief experience officer

Hiring kit: Automation specialist

Hiring kit: Cybersecurity engineer

Account Information

Protect Windows 2003 Server from this WINS flaw

Daily Tech Insider Newsletter

Account Information

Share with Your Friends

Account Information

Contact scottlowemcse

Editor's Picks

Daily Tech Insider Newsletter