Hi - I have a bit of a confounding problem. I run CIS on my laptop (XP SP3), which runs my wifi through a hotspot for web access. I have my new desktop pc (a windows 8 machine) networked through it (as per another forum user’s thread on here, though I don’t have the link). I noticed when I woke up this morning that I was having SERIOUS problems on the laptop and McAfee (OEM) reports an intrusion attempt, meaning the attempt got through my firewall on the laptop and the desktop picked it up and reported it to me. I’ve already googled around a bit but couldn’t find any comodo forum threads regarding the CVE-2008-4835 exploit. PLEASE tell me how to properly mitigate this with the firewall included in CIS! I did block the two ports mentioned in the microsoft support article (TCP IN 139, 445), but I want to nail this problem and nail it for good. Whoever the attacker is, they proxied through a twitter server (ip reported my McAfee was 126.96.36.199). I could not find a link to the update on the following microsoft page and I’m at a loss here https://technet.microsoft.com/en-us/library/security/ms09-001.aspx
Thank you in advance for your help. I have my forum account here setup so that users can email me directly and would prefer to be contacted by that method if possible.