this is inside a component that is on nearly every Microsoft machine worldwide. this includes all versions of xp, vista, 7 and the server versions. There is no Windows Update yet. Please use the fixit for me link for a hotfix. This is a patch for this issue but it may cause issues since it’s not been fully validated. However this problem allows remote system takeover via IE AND Office.
The link to the fixit is here.
Update your machines now. If you are running a server with rdp exposed first firewall it off the internet then use another actual secure vpn to get to that server and update. I would then never allow rdp direct access to the net again.
Microsoft has plugged a critical hole in all supported versions of Windows that allows attackers to hit high-value computers with self-replicating attacks that install malicious code with no user interaction required.The vulnerability in the Remote Desktop Protocol is of particular concern to system administrators in government and corporate settings because they often use the feature to remotely trouble-shoot e-mail servers, point-of-sale terminals and other machines when they experience problems. RDP is also the default way to manage Windows machines that connect to Amazons EC2 and other cloud services. That means potentially millions of endpoints are at risk of being hit by a powerful computer worm that spreads exponentially, similarly to the way exploits known as Nimda and Code Red did in 2001.”This type of vulnerability is where no user intervention or user action is required and an attacker can just send some specially crafted packets or requests, and because of which he or she can take complete control of the target machine,” Amol Sarwate, director of Qualys vulnerability research lab, said in an interview. While RPD is not enabled by default, he said the number of machines that have it turned on is a “big concern” because it is so widely used in large organizations and business settings.The bug affects Windows XP and all versions of Windows released since, including the developer preview of Windows 8. It was privately reported by Luigi Auriemma, an Italian security researcher who frequently focuses on vulnerabilities in industrial control systems and SCADA, or supervisory control and data acquisition, systems used to control dams, gasoline refineries, and power plants. Microsoft said theres no indication the vulnerability is being used in the public to attack Windows users at the moment, but the company predicts that could change.”Due to the attractiveness of this vulnerability to attackers, we anticipate that an exploit for code execution will be developed in the next 30 days,” Suha Can and Jonathan Ness, of Microsoft Security Response Center Engineering, wrote in an advisory published Tuesday.
via Critical Windows bug could make worm meat of millions of high-value machines.
Short Answer: No.
Why do I say this? If you are already running SBS2008 there is no compelling reason to upgrade. SBS2011 is based upon Server 2008R2. This version of Windows server goes out of primary support in 2014. This means the newest SBS server software is based upon what is soon to be an outdated server platform. Why do I say this? Server 2008R2 goes out of primary support in June of 2013. I’m not keen on spending large amounts of money on what is soon to be outdated software. Sure it has Exchange 2010 and SharePoint 2010..but that’s really it. All of that doesn’t matter since the base foundation software goes outside of primary support in 2013. Sure there’s “extended support” but that’s security updates only. No bugfixes, no non-security updates..etc etc. I can’t recommend this package in any of it’s flavors right now especially with server 8 on it way for a likely release in 2012.
What does ECC recommend? A server running ESXI with one vm running server 2008(or server 8 when it comes out) and in anther vm Zimbra. Zimbra handles many of the functions of SharePoint/Exchange for an unbeatable price. Zero.
Are unreal. minimum is 8 gigs and they say they really want 10. I can say that if you want to deploy the system and have room for usage without having to upgrade the ram very quickly start with 16 gigs of ram. Hard disk space is very large. I can tell you right now in term of storage. SBS 2k8 barely runs well on 7200 RPM SATA in RAID1. Do not deploy this software on anything less than 10K RPM SATA/SAS in real hardware RAID 1. CPU is Minimum 2.0 ghz quad. I’m going to say you really want 3.0 ghz quad to leave room for other things that will get installed on that box to support business operations.
