[dayglored]

Executive Summary:
    Patch Windows Now.
This one is so bad Microsoft released a patch for Windows XP and Server 2003.

The vulnerability affects Windows 7 and earlier, and Windows Server 2008R2 and earlier.

[dayglored]

Critical Patch -- Do It Now ... PING!

You can find all the Windows Ping list threads with FR search: just search on keyword "windowspinglist".

[Paladin2]

Quick, transform to Linux....

[Paladin2]

Should I update my XP VMs?

[dayglored]

Those of us who are still running Windows 7 (or XP) need this patch if the computer is connected to anything else (Internet, other Windows computers, etc.)

Windows 8, 8.1, and 10, and Server 2012, 2016, 2019 are not affected by this worm.

[Innovative]

So, I hope w Win. 10 I am safe from this.

[McGruff]

Why does it say?

Security Vulnerability

Published: 05/14/2019

[thescourged1]

Since 2000, I’ve disabled Remote Desktop Connections after every new installation of Windows. Call me paranoid, lol.

[sauropod]

bkmk

[Inyo-Mono]

Which one do I download for Windows 7, Monthly Rollup or Security only?

[VeniVidiVici]

Great. MS “patched” my Win7 the other day. I turned it on the next morning to find it had bluescreened.

[Attention Surplus Disorder]

Thanks...I think. In the middle of installing 170 updates (!) I didn’t think I was that out of the loop. Last I went through this was APR 2019. What’s that in dog years?

[Chode]

done... and THANK YOU!!! man it must be worse than AIDS for them to patch XP

[Zhang Fei]

If you did the monthly rollup system update for May, you are A-OK.

[Sarcasm Factory]

Thanks to the original poster! I applied the downloadable Microsoft fix to my ancient Windows XP SP3 box and also double-checked that Remote Desktop Services functionality was still disabled.

While we're on the topic of security, I'll mention in passing the Steve Gibson service and utility for reducing general vulnerability by making your Windows box less visible to the Internet.

GRC UnPlug n' Pray

GRC Shields UP!!

I also found the following article, which popped up in a quick Google search for UPnP vulnerabilities, to be reasonably interesting:

UPnP: Vulnerability As a Feature That Just Won’t Die

BTW, Mr. Gibson's website also has a number of other freeware downloads. I kind of like the one for assigning a unique beep, boop, or bong to each key from A through Z. It's not my cup of tea, but the idea of driving nearby lurkers crazy with a random melody has its points. ^^;

[DeathBeforeDishonor1]

Not a chance. I dont windows update anything and refuse to buy into the mass hysteria. My computers run just fine with win 7 , bitchin vpn and security and good old fashion stay away from shitty websites I dont know.

In fact I have special software to block microsoft from even knowing I am running win 7. Nope let the chumps update themselves into ruining the only microsoft product worth having. Windows 10 can go yo hell. It sucks.

[Carriage Hill]

No matter which one I download, Win-7 Pro x64 says “Windows can not open thi sfile”.

What should I do.

I have auto-update ON; am I covered?

[musicman]

BFLR

[vetvetdoug]

FWIW someone accessed my computer last week and took it over. I have a PC in a location where no one else can use it and they got in, got my passwords and had a buying spree at Amazon. My computer was just sitting on and all of a sudden the mouse indicator began to move and use the computer. That was when I first saw the problem. I've closed all the accounts I could, cancelled my CC and accounts that had passwords on the PC, spent hours with Amazon and Mastercard getting this resolved. I have no idea how they got through to me.

[RebelTex]

What about Vista?

[ducttape45]

I downloaded the patches for XP and 7, and will keep them for future installs if needed. I even shared the article with a co-worker.

I also turned off the Remote Service.