Security News > 2011 > May > Microsoft downplays Server bug threat, say researchers

http://www.computerworld.com/s/article/9216602/Microsoft_downplays_Server_bug_threat_say_researchers By Gregg Keizer Computerworld May 10, 2011 Microsoft is downplaying the threat posed by one of the three bugs the company patched today, said security researchers. The update in question, MS11-035, patches a single vulnerability in WINS (Windows Internet Name Service), a component in every supported edition of Windows Server, including Server 2003, 2008 and the newest, Server 2008 R2. Attackers could exploit the WINS bug by crafting a malicious data packet, then shooting it at a vulnerable Windows Server box. What irked researchers is that although Microsoft rated the bug as "critical," the company's highest threat ranking, it also pointed out that WINS is not installed by default, citing that as a mitigation factor. [...] ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/

News URL

http://www.computerworld.com/s/article/9216602/Microsoft_downplays_Server_bug_threat_say_researchers