Hosting Provided By

RE: Handling new vulnerabilities like WebDav - SUMMARY

From: <Robert_Huber(at)bankone.com>
Date: Tue Mar 25 2003 - 13:12:24 EST

Minus the vendor plugs, here is a summary of the information I received on this thread in no particular order:

Maintain an accurate inventory of your assets to include, OS, platform, applications, patch levels, services etc.. This can then be used to quickly identify your risk in relation to a new vulnerability. As mentioned by several folks, this is extremely difficult and time consuming.
Use a preventative IDS solution to prevent the attack and then patch at your leisure.
Run an immediate scan of your environment to determine your risk. Then patch, or implement mitigating controls based on the results. Possibly use your ticketing system to create accountability, or send emails to those accountable.

Bob

Original Message ----- From: <Robert_Huber@bankone.com> To: <focus-ih@securityfocus.com> Sent: Thursday, March 20, 2003 9:49 AM Subject: Handling new vulnerabilities like WebDav

> I am curious as to how people in large organizations are handling new
vulnerabilities like the WebDAV recently released. Specifically, I'm trying to gauge how people are determining their exposure, or risk level. Upon learning of a new vulnerability are folks scanning their entire environment to look for the vulnerability? Or are folks going through their inventory to look for IIS web servers and having folks manually check them?
>
> Just looking for input. Please reply directly to me and I will sum up and
post.
>
> Thanks,
>
> Bob
>
>
> **********************************************************************
and/or exempt from disclosure under applicable law. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is STRICTLY PROHIBITED. If you received this transmission in error, please immediately contact the sender and destroy the material in its entirety, whether in electronic or hard copy format. Thank you
> **********************************************************************
>
>
Received on Tue Mar 25 13:30:37 2003

This message: [ Message body ]
Next message: Harlan Carvey: "RE: Handling new vulnerabilities like WebDav - SUMMARY"
Previous message: Jose Nazario: "Re: Handling new vulnerabilities like WebDav"
In reply to Robert_Huber(at)bankone.com: "Handling new vulnerabilities like WebDav"
Next in thread: Harlan Carvey: "RE: Handling new vulnerabilities like WebDav - SUMMARY"
Reply: Harlan Carvey: "RE: Handling new vulnerabilities like WebDav - SUMMARY"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:18 EDT