Hit an interesting problem at work this morning. It appears that one of the July Microsoft patches may remove the Windows registry setting that can be used to restrict the range of RPC ports that Windows uses for communications. This is very bad if you have host or network firewalls that depend on those port ranges. Unfortunately we have not isolated exactly which patch caused the problem. There have been some reports of issues with MS07-040, but I don't have any idea if that one was the culprit in this case.
Edit: There's a small reference to this problem at the end of this SecurityFocus mailing list post. However, the patch is described as an RPC patch, and there were none in July.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment