Re: New worm targets Windows Update

However, you can find the patch on the security section of microsoft.com, so
windowsupdate is not required.

Direct link: http://www.microsoft.com/security/incident/blast.asp

The patches are near the bottom of the page and they're .exe installers, so
you can just use those to patch your whole network rather than running a
dozen windows updates at once.

--
Jeff Umbach
"Lord Shaolin" <abuse@127.0.0.1> wrote in message
news:...
> "donut" <> wrote in message
> news:Xns93D5A26FA27Adonut@216.102.43.227...
> > Just saw this on CNN, and while they didn't go into much detail, Windows
> > Update was mentioned, and that the worm's purpose is to launch a DDoS
> > attack against microsoft.com.
> >
> > I don't know how you could possibly download a worm at WU, but until
more
> > details come out, I'd stay away from there.
>
> The Windows site allready got DoSed last night with the amount of people
> going to it
>
> I went and it gave me "HTTP 1.1 Site Unavailable" or something.
>
> And LovSan/Mblaster is going to hit windowsupdate.com on the 16th. Well it
> would if the worm was half decently written.
>
> So none of the machine infected will be up then to do anything.
>
> --
>
> -+ Shaolin +-
> Discard what is useless, absorb what is not and
> add what is uniquely your own.
>
> .: http://www.security-forums.com :.
>
>

Jeff Umbach

On Thu, 14 Aug 2003 23:54:23 GMT, Jeff Umbach wrote:
> However, you can find the patch on the security section of microsoft.com, so
> windowsupdate is not required.
>
> Direct link: http://www.microsoft.com/security/incident/blast.asp
>
> The patches are near the bottom of the page and they're .exe installers, so
> you can just use those to patch your whole network rather than running a
> dozen windows updates at once.

Great, help them bypass the other patches for exploits MS has not
told us about.

Bit Twister