Flawed NT 4 Security Patch Rereleased
- By Scott Bekker
- August 13, 2003
Microsoft on Wednesday replaced a faulty patch for the file system flaw in Windows NT 4.0 Server that could open the operating system to denial of service attacks.
The original patch, released July 23, fixed the security vulnerability, but administrators who had the Routing and Remote Access Service running found that RRAS would fail after the patch was applied.
Microsoft acknowledged the RRAS issue in a bulletin update on July 29 and promised to post a replacement patch as soon as it had been adequately tested.
The reason for the original patch was a denial-of-service vulnerability in a Windows NT 4.0 file management function. Microsoft originally gave the problem a "moderate" severity rating.
The security bulletin and patch are available here.
Scott Bekker is editor in chief of Redmond Channel Partner magazine.