Software vulnerability announcements must be taken seriously since attackers can use them to gain access to hosts on the network. System administrators should move quickly to install software patches, or adjust firewall rules to mitigate exploitation until the patches can be installed properly. For Navy computer systems, vulnerability announcements come in radio messages called IAVAs and IAVBs (Inforamtion Assurance Vulnerability Announcement/Bulletin).
For this exercise, the WKSTA host is running Microsoft Windows XP SP1 and the WWW host is running Microsoft Windows Server 2003 SP0. Both versions are out of date and have known flaws that allowed you to gain privileged access during the attack lab. Let's patch our Windows hosts!