Zotob worm - Is the patch REALLY necessary?

Discussion in 'Virus Information' started by t.cruise, Aug 18, 2005.

  1. t.cruise

    t.cruise Guest

    I know that many in this group support downloading Windows XP updates. Personally, I
    download and install ONLY what is absolutely necessary, which for me has avoided problems
    with smooth running systems. There has been much media attention the past couple of days
    about the Zotob worm, I.E., PnP and compromised Windows security. I know that there is a
    patch available for download at the Microsoft web site
    WindowsXP-KB899588-x86-ENU.exe

    But, there has been mass media hysteria in the past about viruses and worms, none of which
    have made their way to any of my systems with broadband internet connections, without my
    having to download and install the plethora of security patches at the Windows Update. My
    question is, if I have a decent firewall am I already protected, or do I really need to
    install this patch?
     
    t.cruise, Aug 18, 2005
    #1
    1. Advertisements

  2. From: "t.cruise" <t__cruise@[NoSpam]hotmail.com>

    | I know that many in this group support downloading Windows XP updates. Personally, I
    | download and install ONLY what is absolutely necessary, which for me has avoided problems
    | with smooth running systems. There has been much media attention the past couple of days
    | about the Zotob worm, I.E., PnP and compromised Windows security. I know that there is a
    | patch available for download at the Microsoft web site
    | WindowsXP-KB899588-x86-ENU.exe
    |
    | But, there has been mass media hysteria in the past about viruses and worms, none of which
    | have made their way to any of my systems with broadband internet connections, without my
    | having to download and install the plethora of security patches at the Windows Update. My
    | question is, if I have a decent firewall am I already protected, or do I really need to
    | install this patch?
    | --
    |
    | T.C.
    | t__cruise@[NoSpam]hotmail.com
    | Remove [NoSpam] to reply
    |

    If you have a Cable/DSL Router, such as the Linksys BEFSR41, and block TCP and UDP ports 135
    ~ 139 and 445 on the Router, then no. The worm(s) that exploit this vulnerability will not
    get past teh Router.
     
    David H. Lipman, Aug 18, 2005
    #2
    1. Advertisements

  3. The people who kept their computers up to date had no issues with this worm.
    The computers that caught the worm need to have an IT department do
    something differently.
    Instead some chose to do nothing and this is yet another example what
    happens to those who are inadequate in their computer security.

    Normally I suggest installing all Critical Updates, and that is exactly what
    many need to do.
    An exception to those that know how to carefully protect their systems.
    They also need a full understanding of exactly what a patch does and
    possible consequences of not installing a patch.
     
    Jupiter Jones [MVP], Aug 18, 2005
    #3
  4. On Thu, 18 Aug 2005 09:17:20 -1000, "t.cruise"
    That was my approach too, until the RPC vs. Lovesan debacle. Since
    then I'd prefer to get patches, watch for a while, and if no problems
    then install them. When Sasser halved the time to exploit, I stopped
    watching quite as long before applying patches; in fact on XP, I
    "dogfood" them on my own PC fairly early.
    Are you behind NAT? If so, then the pressure's less. Remember the
    lesson of Witty (which attacked a flaw in Black Ice Defender, and from
    there could trash even NTFS volumes from within Windows); sometimes
    the flaw can be in the fiewall itself.

    My current approach is to download patches automatically (so I have
    the material available for offline installation as soon as possible)
    but then to apply the patches manually, usually quite soon after.

    Else you may find that should a patch be crucual, you may be unable to
    get it through a hostile 'net teeming with attacks.

    Something else worth noting: I've been applying patches fairly
    promptly, and so far (touch wood) I haven't been bitten by any bad
    side effects - or even mild side-effects, for that matter. I've read
    about others who have, yes, but so far so good, on my systems.

    "Why do I keep open buckets of petrol next to all the
    ashtrays in the lounge, when I don't even have a car?"
     
    cquirke (MVP Windows shell/user), Aug 19, 2005
    #4
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.