[Dshield] QHOSTS-1 - DNS/Hosts file issues

Richard Roy RoyR at justicetrax.com
Thu Oct 2 16:01:43 GMT 2003


Does anyone have the URL's and/or IP's to block for this?  I'd like to
kill it at my border if possible.  Just in case.

-----Original Message-----
From: list-bounces at dshield.org [mailto:list-bounces at dshield.org] On
Behalf Of wbeckham
Sent: Thursday, October 02, 2003 7:35 AM
To: list at dshield.org
Subject: [Dshield] QHOSTS-1 - DNS/Hosts file issues


I got the following from Trusecure this morning.  

- WB

---------------------------------
TruSecure Radar Notice

PROBLEM: Unpatched IE Vulnerability is being exploited

PLATFORM: Windows ME, Windows NT, Windows 2000, Windows XP (tested),
Windows 9x (probably), Windows Server 2003 (not tested)

DAMAGE: DNS Server settings are modified, possible information leakage,
client browsing disruptions, future use.

SOLUTION:   See mitigators

VULNERABILITY ASSESSMENT: Important


S<SNIP>




More information about the list mailing list