Friday, September 17, 2004

US-CERT advisory TA04-260A was just released this morning. Apparently this is the "pending critical vulnerability from Microsoft" that SANS has been warning us about this past week. Cory Altheide, the SANS Internet Storm Center (ISC) Handler-on-Duty yesterday, had a great little commentary on the vulnerability posted here. The text of the technical alert can be found here: http://www.us-cert.gov/cas/techalerts/TA04-260A.html And for the non-believers, here's the light reading version: http://www.us-cert.gov/cas/alerts/SA04-258A.html