Web Sites Running On Windows NT At Risk
Thousands of those hostnames, said Netcraft, are on SSL-enabled sites which may be conducting e-commerce, and thus particularly attractive to hackers.
"If your organization is unlucky enough to still have Windows NT 4.0 systems (most do) and you're not able to pay for extended support then you do not have a whole lot of options," wrote Marc Maiffret, the chief hacking officer at eEye Digital Security, in a message to the Bugtraq security mailing list.
Maiffret suggested a workaround that might mitigate some potential attacks. "...enable SMB signing. This does not truly mitigate the attack but instead it creates change in the SMB protocol that most attack tools I have seen do not support. Therefore it breaks them from being able to successfully exploit remote systems."
The link for this article located at securitypipeline.com is no longer available.