eEye releases Free MS06040 Scanner


On August 8, 2006 Microsoft released Security Bulletin MS06040 which addressed a critical issue in the Server Service that allows for remote code execution on vulnerable systems. The vulnerable service listens on TCP ports 135 and 445, and is enabled by default on all Windows systems. eEye Digital Security has created a standalone vulnerability scanner to help identify systems vulnerable to this flaw. This scanner will identify the vulnerability on all systems with the exception of Windows NT.

This vulnerability was being exploited in the wild as a "zero day" attack previous to Microsoft's patch release. Due to this existing threat, and also because of the potential for remote compromise of most Windows operating systems, eEye has created a free tool to scan machines for this critical vulnerability. The sooner that vulnerable machines are identified and patched, the smaller the possibility will be of a successful Internet worm attack. Network Security | IT Security | Vulnerability Assessment | Intrusion Prevention

Linked by shanmuga Thursday, 10th August 2006 3:10AM