Play.it Usa Forum

shilton wrote:Di nuovo attacco:

OS Attack:MS Windows Server Service NetAPI CVE 2006-3439.
il traffico di rete da 10.187.60.57 corrisponde alla firma di un attacco noto. L'attacco proveniva da SYSTEM.

Che roba è? mi dice azione consigliata "nessuna"

Dai, ditemi se è colpa di youporn

che sistema usi?

Paperone wrote:che sistema usi?

sistema?

shilton wrote:

Paperone wrote:che sistema usi?

sistema?

Che windows usi...

Ho realizzato dopo, Windows 7

Severity: HighThis attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.DescriptionThis signature detects attempts to exploit a buffer overflow vulnerability in the Server Service.Additional InformationMicrosoft Windows Server Service facilitates the sharing of local resources (including RPC support, files, printers, and named pipes) over the network.

Microsoft Windows Server Service is prone to a remote buffer-overflow vulnerability. This issue arises because the application fails to perform boundary checks before copying user-supplied data into sensitive process buffers.

Specifically, the vulnerability arises when the service processes a malicious message in RPC communications. A remote unauthenticated attacker can send a large message containing arbitrary code to overflow a finite-sized buffer and corrupt process memory.

A successful attack may result in arbitrary code execution with SYSTEM privileges leading to a full compromise. Attack attempts may result in denial-of-service conditions as well.

Microsoft has reported that this issue is being exploited in the wild.n nUpdate (August 14, 2006): A worm named 'W32.Wargbot' that exploits this issue to spread is currently in the wild.

Ma a proposito, di quel buco nel sistema di Internet Explorer si sa nulla?

Bonaz wrote:Severity: HighThis attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.DescriptionThis signature detects attempts to exploit a buffer overflow vulnerability in the Server Service.Additional InformationMicrosoft Windows Server Service facilitates the sharing of local resources (including RPC support, files, printers, and named pipes) over the network.

Microsoft Windows Server Service is prone to a remote buffer-overflow vulnerability. This issue arises because the application fails to perform boundary checks before copying user-supplied data into sensitive process buffers.

Specifically, the vulnerability arises when the service processes a malicious message in RPC communications. A remote unauthenticated attacker can send a large message containing arbitrary code to overflow a finite-sized buffer and corrupt process memory.

A successful attack may result in arbitrary code execution with SYSTEM privileges leading to a full compromise. Attack attempts may result in denial-of-service conditions as well.

Microsoft has reported that this issue is being exploited in the wild.n nUpdate (August 14, 2006): A worm named 'W32.Wargbot' that exploits this issue to spread is currently in the wild.

per i comuni mortali?

Bonaz wrote:Ma a proposito, di quel buco nel sistema di Internet Explorer si sa nulla?

Dovrebbe uscire la patch domani

shilton wrote:

Bonaz wrote:Severity: HighThis attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.DescriptionThis signature detects attempts to exploit a buffer overflow vulnerability in the Server Service.Additional InformationMicrosoft Windows Server Service facilitates the sharing of local resources (including RPC support, files, printers, and named pipes) over the network.

Microsoft Windows Server Service is prone to a remote buffer-overflow vulnerability. This issue arises because the application fails to perform boundary checks before copying user-supplied data into sensitive process buffers.

Specifically, the vulnerability arises when the service processes a malicious message in RPC communications. A remote unauthenticated attacker can send a large message containing arbitrary code to overflow a finite-sized buffer and corrupt process memory.

A successful attack may result in arbitrary code execution with SYSTEM privileges leading to a full compromise. Attack attempts may result in denial-of-service conditions as well.

Microsoft has reported that this issue is being exploited in the wild.n nUpdate (August 14, 2006): A worm named 'W32.Wargbot' that exploits this issue to spread is currently in the wild.

per i comuni mortali?

Sono comune e mortale anche io

Comunque penso tu sia poco protetto e aperto a possibili attacchi. Dovresti cercare un verme chiamato W32.Wargbot

Le scansioni del norton mi dicono tutto Ok.

shilton wrote:Le scansioni del norton mi dicono tutto Ok.

Anche in modalita' provvisoria?

Modalità provvisoria mai provato.
Va beh, se Norton blocca ogni volta meglio no?
Si romperà i coglioni questo verme

Oppure, se sai quando lo hai preso, prova a ripristinare sistema qualche giorno prima del fattaccio. Tante volte funziona

Ho un problema con il mio hard disk esterno. Quando lo inserisco tramite porta USB nel computer, in basso, mi compare una scritta "La periferica può funzionare più velocemente", e l'hard disk non viene riconosciuto dal computer.

Sapete dirmi come risolvere il problema?