RRAS patch not installed

Risk Level: Medium risk vulnerability  Medium

Check or Attack Name: Ntrras
Platforms: Windows NT: 4.0
Description:

The machine has an unpatched version of the Routing and Remote Access Service (RRAS). This patch includes an enhancement to TCP/IP that will improve the performance of TCP-based applications over high latency networks, demand dial filtering to better control dialing interfaces, fragmented IP packet filtering to drop malformed or unauthorized packets, and other security fixes.
Remedy:

Apply the latest Windows NT 4.0 Service Pack, or Windows NT 4.0 Service Pack 3 (SP3) users must apply the post-SP3 rras30-fix patch.

To apply the latest Windows NT Service Pack, follow these steps:

  1. Open a web browser.
  2. Go to http://support.microsoft.com/support/ntserver/Content/ServicePacks and follow the directions to download the appropriate service pack for your computer.
  3. Find the installation program you downloaded to your computer.
  4. Double-click the program icon to start the installation.
  5. Follow the installation directions.

—OR—

Windows NT 4.0 Service Pack 3 (SP3) users must apply the post-SP3 rras30-fix patch available from ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40/hotfixes-postSP3/rras30-fix/.

Note: This patch requires that you already have Routing and Remote Access Service for Windows NT 4.0 Server installed on your system. You must first apply the Windows NT 4.0 PPTP Upgrade before applying RRAS Upgrade 3.0 (it is important not to reboot your machine in-between installations of the Windows NT PPTP upgrade and the RRAS upgrade). For more information, see Microsoft Knowledge Base Article Q189595 "PPTP Performance & Security Upgrade for WinNT 4.0 Release Notes" at http://support.microsoft.com/support/kb/articles/q189/5/95.asp.

References:

Microsoft Knowledge Base Article Q189594, RRAS Upgrade for WinNT Server 4.0 Hotfix Pack 3.0 Release Notes, http://support.microsoft.com/support/kb/articles/q189/5/94.asp

Microsoft Knowledge Base Article Q168469, RRAS Upgrade for WinNT Server 4.0 Hotfix Pack 2.0 Release Notes, ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40/hotfixes-postSP3/archive/rras20-fix/Q168469.TXT

Microsoft Knowledge Base Article Q189594, RRAS Upgrade for WinNT Server 4.0 Hotfix Pack 3.0 Release Notes, ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40/hotfixes-postSP3/rras30-fix/Q189594.TXT
X-Force Logo
Know Your Risks