Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Batch of XP SP2 Holes

Posted by CowboyNeal on Saturday July 16, 2005 @04:34AM from the yet-again dept.

terap writes "Microsoft has acknowledged that it is working on a patch for a potentially serious security hole in the 'Remote Desktop' feature. It affects fully patched versions of Windows XP Service Pack 2, even with the integration firewall turned on. There is a possibility this could lead to code execution attacks."

3 of 274 comments (clear)

Min score:

Reason:

Sort:

Re:Firewall too? by minus_273 · 2005-07-16 04:41 · Score: 3, Informative

windows firewall opens a port for rdesktop by default

--
The war with islam is a war on the beast
The war on terror is a war for peace
don't use the standard RDC Port by Anonymous Coward · 2005-07-16 04:46 · Score: 5, Informative

I use Remote Desktop quite often, it can be very useful and it's more transparent and efficient than PcAnywhere.

What i do is change the port that RDC uses, from the standard 3389 to a unique port. To do this, go to registry key HKEY_LOCAL_MACHINE\System\CurrentControlSet\Contro l\TerminalServer\WinStations\RDP-Tcp\PortNumber
change the decimal value, and reboot.
DOS-attack by jiushao · 2005-07-16 05:09 · Score: 4, Informative

No need to blow this out of proportion; from the article:
In an advisory posted at SecurityProtocols.com, the researcher described the issue as a remote kernel denial-of-service flaw affecting XP SP2, with the default firewall turned on.

I know Slashdot loves to hold Microsoft to golden standards, but a DOS-attack in a not overly important desktop daemon is hardly huge news. At the very least it happens to a lot of OS's a lot of the time.