Solved

Windows server 2008 R2 vulnerability CWDIllegalInDllSearch registry modification

Posted on 2016-08-22
3
61 Views
Last Modified: 2016-09-20
I have this vulnerability, and I do know I have to modify the registry in the server, but specifically I don't know how  do I need to reference the TCP port 445 on the DWORD value:
So please can anybody help me to achieve this modification please?
 
"ntdll.dll has been upgraded by KB2264107 or a related, subsequent update, but the following registry entry has not been set : HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\CWDIllegalInDllSearch Port: cifs (445/tcp)"
0
Comment
Question by:Apolo Victores
3 Comments
 
LVL 78

Accepted Solution

by:
David Johnson, CD, MVP earned 500 total points
ID: 41766330
Microsoft has a fixit and an explanation @ https://support.microsoft.com/en-ca/kb/2264107
This was fixed in an optional update https://support.microsoft.com/en-us/kb/2533623
This is an ancient vulnerability that was resolved in 2010
0
 

Author Comment

by:Apolo Victores
ID: 41766879
Thanks Mr. Johnson!, I wonder  if applying the update (KB2533623) on the server will fix this vulnerability for the 445 tcp port?¡
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 41806177
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Accept: David Johnson CD MVP (https:#a41766330)

If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

seth2740
Experts-Exchange Cleanup Volunteer
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Cybersecurity has become the buzzword of recent years and years to come. The inventions of cloud infrastructure and the Internet of Things has made us question our online safety. Let us explore how cloud- enabled cybersecurity can help us with our b…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now