September 12, 2003 — (WEB HOST INDUSTRY REVIEW) — Microsoft (microsoft.com) published a bulletin this week detailing a “critical” security issue that affects the Windows Server 2003 operating system as well as the Windows XP, 2000 and NT 4.0 platforms. According to Microsoft Security Bulletin MS03-039, the vulnerability could allow an attacker to remotely compromise a computer running these systems and gain complete control.
r
r
The latest security issue encompasses three vulnerabilities. Two of the vulnerabilities are remotely exploitable buffer overflows that may allow an attacker to execute arbitrary code with local system privileges. The third vulnerability potentially allows a remote attacker to cause a denial of service.
r
r
Users are advised to apply a patch available for download on the Microsoft Web site.
r
r
This most recent vulnerability is the latest to affect the Windows Server 2003 operating system launched in April of this year. Billed as the most secure Microsoft product to date, the most recent discovery would be the sixth to affect the Windows Server 2003 operating system.
r
r
Netcraft reported yesterday that the number of sites running Windows Server 2003 has doubled since July.
