Solved

Windows server 2008 R2 vulnerability CWDIllegalInDllSearch registry modification

Posted on 2016-08-22
3
167 Views
Last Modified: 2016-09-20
I have this vulnerability, and I do know I have to modify the registry in the server, but specifically I don't know how  do I need to reference the TCP port 445 on the DWORD value:
So please can anybody help me to achieve this modification please?
 
"ntdll.dll has been upgraded by KB2264107 or a related, subsequent update, but the following registry entry has not been set : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\CWDIllegalInDllSearch Port: cifs (445/tcp)"
0
Comment
Question by:Apolo Victores
3 Comments
 
LVL 79

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points
ID: 41766330
Microsoft has a fixit and an explanation @ https://support.microsoft.com/en-ca/kb/2264107
This was fixed in an optional update https://support.microsoft.com/en-us/kb/2533623
This is an ancient vulnerability that was resolved in 2010
0
 

Author Comment

by:Apolo Victores
ID: 41766879
Thanks Mr. Johnson!, I wonder  if applying the update (KB2533623) on the server will fix this vulnerability for the 445 tcp port?¡
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 41806177
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Accept: David Johnson CD MVP (https:#a41766330)

If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

seth2740
Experts-Exchange Cleanup Volunteer
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Provide an easy one stop to quickly get the relevant information on common asked question on Ransomware in Expert Exchange.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question