From crawdad@fnal.gov Thu Aug 21 12:48:53 2003
Date: Wed, 19 Mar 2003 13:18:44 -0600
From: Matt Crawford <crawdad@fnal.gov>
To: Registered Sysadmins <cppm_reg_sysadmins@fnal.gov>, pc-manager@fnal.gov
Subject: IIS 5 / NTDLL vulnerability declared "critical"

The IIS 5 / WEBDAV / NTDLL.DLL vulnerability is now declared
"critical". Any IIS5 servers which are not reported patched by 15:00
Thursday, March 20, may be completely denied access to the Fermilab
network. (Since all remaining such systems are dialup or unregistered
DHCP clients, I will ask Networking to either blacklist them in the
DHCP server or blackhole their MAC addresses, and disable the dialup
accounts.)