RSA Admin

Windows update MS11-020 for RSA enVision

Discussion created by RSA Admin Employee on Apr 19, 2011
Latest reply on May 3, 2011 by RSA Admin

I realize that with this month's massive patch Tuesday release, the testing team at RSA is probably quite busy evaluating all of Windows patches to make sure nothing breaks as a result of installing them.

 

However, can we get a status update on whether we can apply MS11-020, which various security reports are saying could very well become a "wormable" exploit that doesn't require authentication or user interaction?  On Microsoft’s security blog for MS11-020 they evaluate it as “Likely to see reliable exploits developed within next 30 days.”.  Given that it could be exploited through the SMB ports (139,445) I'm worried about how quickly this one could move through a network via a single infected system. (http://blogs.technet.com/b/srd/archive/2011/04/12/assessing-the-risk-of-the-april-security-updates.aspx). 

 

 

See the following links below for more details:

http://isc.sans.edu/diary/MS11-020+KB2508429+Upgrading+from+Critical+to+PATCH+NOW/10714

http://www.microsoft.com/technet/security/Bulletin/MS11-020.mspx

Outcomes