Forums Últimos mensajes - Powered by IBM
 
Tags Palabras claves

(OT) several security flaws in products that use VoIP and text messaging

17/01/2004 - 10:45 por Rodolfo Parrado Gutiérrez | Informe spam
Ayuda Hacer una pregunta
www.news.com



The corporate world returned to work en masse after long holiday breaks, only to be welcomed by news of several security flaws in products that use VoIP and text messaging.

The flaws affect software and hardware that support the real-time multimedia communications and processing standard, known as International Telecommunications Union (ITU) H.323. The flaws can cause products to crash or, in the case of a Microsoft security server product, allow an attacker to take control of the system.

Several other companies also produce products that may be affected, but as of midday Tuesday, only Cisco Systems and Microsoft had issued advisories and patches. The flaws were found by the United Kingdom's Internet security watchdog, the National Infrastructure Security Coordination Centre, which had been testing a variety of products used in the U.K.'s critical communications infrastructure.

Microsoft released a patch for the flaw, which affects Microsoft's Internet Security and Acceleration Server 2000--part of the Small Business Server 2000 and 2003 editions. The company also released patches for vulnerability in the Microsoft Data Access Component software in Windows 2000 and XP, along with Microsoft's SQL Server 2000 and Windows Server 2003. The flaw could allow an attacker to take over a vulnerable system--only after successfully disguising the attacking computer as an SQL server.

The patches came almost two years to the day after Bill Gates launched a program called "Trustworthy Computing," designed to focus Microsoft employees on building better security into products and on improving customer response. Although the company is beginning to make progress, according to customers, much remains to be done.

Some Microsoft customers that CNET News.com contacted agree that the latest products show signs of improvement. But they note that the changes haven't been fully extended to products the software giant launched before the initiative, which make up the bulk of installations.


-
Rodolfo Parrado Gutiérrez
MCT, MCSE, MCSA, MCP+I
MFAM, MSWAT
Bogotá - Colombia
-
Este mensaje se proporciona "como está" sin garantías de ninguna índole, y no otorga ningún derecho.
-
Asegúrese de buscar desde el enlace sobre lo que esta preguntando, ya que muchas veces la pregunta ya fue respondida más de una vez
http://groups.google.com/groups?hl=....public.es
-
email Siga el debateRespuesta 4 respuestasRespuesta Tengo una respuesta
DRAGON AGE™: INQUISITION – Matadragones
 

Leer las respuestas

#1 Javier Inglés [MS MVP]
17/01/2004 - 11:01 | Informe spam
GRacias por todos socio!!!

Salu2!!!

Javier Inglés
MS-MVP

:
<<<QUITAR "NOSPAM" PARA MANDAR MAIL>>>

Este mensaje se proporciona "como está" sin garantías de ninguna clase, y no otorga ningún derecho


"Rodolfo Parrado Gutiérrez" escribió en el mensaje news:
www.news.com



The corporate world returned to work en masse after long holiday breaks, only to be welcomed by news of several security flaws in products that use VoIP and text messaging.

The flaws affect software and hardware that support the real-time multimedia communications and processing standard, known as International Telecommunications Union (ITU) H.323. The flaws can cause products to crash or, in the case of a Microsoft security server product, allow an attacker to take control of the system.

Several other companies also produce products that may be affected, but as of midday Tuesday, only Cisco Systems and Microsoft had issued advisories and patches. The flaws were found by the United Kingdom's Internet security watchdog, the National Infrastructure Security Coordination Centre, which had been testing a variety of products used in the U.K.'s critical communications infrastructure.

Microsoft released a patch for the flaw, which affects Microsoft's Internet Security and Acceleration Server 2000--part of the Small Business Server 2000 and 2003 editions. The company also released patches for vulnerability in the Microsoft Data Access Component software in Windows 2000 and XP, along with Microsoft's SQL Server 2000 and Windows Server 2003. The flaw could allow an attacker to take over a vulnerable system--only after successfully disguising the attacking computer as an SQL server.

The patches came almost two years to the day after Bill Gates launched a program called "Trustworthy Computing," designed to focus Microsoft employees on building better security into products and on improving customer response. Although the company is beginning to make progress, according to customers, much remains to be done.

Some Microsoft customers that CNET News.com contacted agree that the latest products show signs of improvement. But they note that the changes haven't been fully extended to products the software giant launched before the initiative, which make up the bulk of installations.


-
Rodolfo Parrado Gutiérrez
MCT, MCSE, MCSA, MCP+I
MFAM, MSWAT
Bogotá - Colombia
-
Este mensaje se proporciona "como está" sin garantías de ninguna índole, y no otorga ningún derecho.
-
Asegúrese de buscar desde el enlace sobre lo que esta preguntando, ya que muchas veces la pregunta ya fue respondida más de una vez
http://groups.google.com/groups?hl=....public.es
-

Preguntas similares

 

Busqueda sugerida :