Attackers Probing For Vulnerable WINS Systems

Internet security monitoring firms such as the SANS Institute's Internet Storm Center have noted a marked increase in scans for Windows server systems using WINS. Microsoft issued Security Bulletin MS04-045 in December to address the vulnerability in WINS, but many WINS servers probably have not yet had the patch applied. Exploit code was posted to a web site on December 31st which has raised concerns. The exploit code combined with the increased port scans searching for WINS systems has lead security experts to recommend that organizations that haven't yet applied the WINS patch expedite implementing it. For more information see this Network World Magazine article: Attacks on Microsoft WINS hole raise alarms