dadkins
Can you do Blu?
Premium,MVM
join:2003-09-26
Hercules, CA | Ok...
Got it/them yesterday, also downloaded the Windows Updates v5 yesterday... eh, it's different.
--
Nuke 'em all, let God sort 'em out. |
|
antiphishing
Phishing Scam Terminator
Premium
join:2004-06-09
Wilkes Barre, PA
| New Internet Explorer Patches
Thanks BBR for posting this important information.
Also, CERT is also warning people yet again on using Internet Explorer and Microsoft software.
Critical Vulnerabilities in Microsoft Windows
Original release date: July 30, 2004
Source: US-CERT
These vulnerabilities affect the following versions of Microsoft Internet Explorer:
* Microsoft Internet Explorer 5.01 Service Pack 2
* Microsoft Internet Explorer 5.01 Service Pack 3
* Microsoft Internet Explorer 5.01 Service Pack 4
* Microsoft Internet Explorer 5.5 Service Pack 2
* Microsoft Internet Explorer 6
* Microsoft Internet Explorer 6 Service Pack 1
* Microsoft Internet Explorer 6 Service Pack 1 (64-Bit Edition)
* Microsoft Internet Explorer 6 for Windows Server 2003
* Microsoft Internet Explorer 6 for Windows Server 2003 (64-Bit Edition)
These vulnerabilities affect the following versions of the Microsoft
Windows operating system:
* Microsoft Windows NT Workstation 4.0 Service Pack 6a
* Microsoft Windows NT Server 4.0 Service Pack 6a
* Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6
* Microsoft Windows 2000 Service Pack 2, Microsoft Windows 2000
Service Pack 3, Microsoft Windows 2000 Service Pack 4
* Microsoft Windows XP and Microsoft Windows XP Service pack 1
* Microsoft Windows XP 64-Bit Edition Service Pack 1
* Microsoft Windows XP 64-Bit Edition Version 2003
* Microsoft Windows Server 2003
* Microsoft Windows Server 2003 64-Bit Edition
* Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE), and Microsoft Windows Millennium Edition (Me)
Microsoft Internet Explorer contains three vulnerabilities that may allow arbitrary code to be executed. The privileges gained by a remote attacker depend on the software component being attacked. For example, a user browsing to an unsafe web page using Internet Explorer could have code executed with the same privilege as the user. These vulnerabilities have been reported to be relatively straightforward to exploit; even vigilant users visiting a malicious website, viewing a malformed image, or reading an HTML-rendered email message may be affected.
»www.us-cert.gov/cas/techalerts/T···63A.html
»www.us-cert.gov/cas/alerts/SA04-212A.html
»www.kb.cert.org/vuls/id/266926
»www.kb.cert.org/vuls/id/685364
»www.kb.cert.org/vuls/id/713878
--
Dslreports.com Forum No-Spin zone starts here.
»www.antihotmail.com
spammers_are_scumbags@antihotmail.com |
|
lilhurricane
Crunchin' For Cures
Premium,Mod
join:2003-01-11
Purple Zone
clubs: 
 ·Comcast
Host:
TV over IP
Software
RCN
Inside Insight
Team Discovery
| said by antiphishing  :
Thanks BBR for posting this important information.
Always my first stop  |
|
Corvus
Flaming Tards Since 2003
Premium,VIP
join:2003-11-26
| A new BBR section?
Let's create a "Bug of the month" section in BBR! We see these MS holes and patches every week in headnews, so often that it's not news anymore, it's just something you read at the end of a newspaper like the daily horoscope or weather. 
--
Jesus saves, but only Buddha makes incremental backups. |
|
antiphishing
Phishing Scam Terminator
Premium
join:2004-06-09
Wilkes Barre, PA
| Let the Firefox revolution begin !
"The flaw was so publicized that millions of users began to seek other browser options such a Mozilla Firefox and Opera".
Quote from a Washington Dispatch online article
»www.washingtondispatch.com/cultu···448.html
--
Dslreports.com Forum No-Spin zone starts here.
»www.antihotmail.com
spammers_are_scumbags@antihotmail.com |
|
sean151
Class 2008
Premium
join:2003-12-04
Auburn, WA
clubs: | Win XP SP2 RC2
It seems I cannot receive this update because I'm running Win XP SP2 RC2. |
|
dadkins
Can you do Blu?
Premium,MVM
join:2003-09-26
Hercules, CA | reply to antiphishing
Re: Let the Firefox revolution begin !
No thanks. |
|
Logan 5
Some people go WAY over the top
Premium,MVM
join:2001-05-25
The WasteLAN |  Yet again....
Aren't ALL updates for Internet Exploder Critical ones....?  |
|
Anonymous
Premium
join:2004-06-01
IA | ??
Funny thing is I had to install those twice.
Yesterday by using V5 update and today with automatic update service.
--
Stealing software since 2002 |
|
Logan 5
Some people go WAY over the top
Premium,MVM
join:2001-05-25
The WasteLAN
 ·Pacific Bell - SBC
| reply to sean151
Re: Win XP SP2 RC2
said by sean151 :
It seems I cannot receive this update because I'm running Win XP SP2 RC2.
This is why you NEVER...NEVER...EVER install 'beta' level software on production machines. Even Microsoft warned you before installing it on their website that this was beta code and you were on your own with no regular support in case problems happen, which it looks like they did for you.
And, since you can't uninstall the Service Pack, it maybe time to use something OTHER than IE anyway, so who knows, perhaps this was a good thing to happen to you after all....
--
I'm a Social Engineering Specialist - "Because there's no patch for Human Stupidity" |
|
dadkins
Can you do Blu?
Premium,MVM
join:2003-09-26
Hercules, CA
·Comcast
| "This is why you NEVER...NEVER...EVER install 'beta' level software on production machines."
I couldn't agree more!
--
Nuke 'em all, let God sort 'em out. |
|
BeaverHunter
join:2001-01-03
Palmdale, CA | reply to sean151
if i recall correctly winxp sp2 rc2 didn't need these patches because it was already fixed in sp2. If you do a search for it here on this forum you'll find the thread i'm talking about. |
|
BoomerSooner
Premium
join:2004-02-11
·Pioneer Telephone ..
·Pioneer Internet
| reply to Logan 5
I don't believe the vulnerability affects users running SP2. That is most likely why you don't see the update available.
As far as I can tell from both Microsoft's and CERT's website, PC's with SP2 installed are NOT affected.
--
I'll take "Things Only I Would Know" for $10,000 Alex. |
|
Grail Knight
Who Dares Wins
Premium
join:2003-05-31
·Verizon Online DSL
| reply to Anonymous
IE is faster yet is it safe!?
General Observations:
Seems to me that patch did more than a security fix. IE6 SP1 is a hell of a lot faster than before yesterdays patch. Nice of them to patch and tweak.
If only MS would let the end user really know what they are installing without having to hunt for it.
To little to late.
I only keep it patched as part of my update routine for my OS.
I will stick with my Firefox and Thunderbird. Mozilla is headed in the right direction with these two Internet Clients, but the choice is yours to make as to which browser you want to use.
More power to you.
|
|
Mike
Premium,Mod
join:2000-09-17
Pittsburgh, PA
clubs: | virus to follow
in about 2 weeks to cripple every IE machine to follow |
|
sean151
Class 2008
Premium
join:2003-12-04
Auburn, WA
clubs:
| reply to dadkins
Re: Win XP SP2 RC2
I know beta level software is bad if it is on a production machine, but where did I say it was a production machine?
I love updating my software. Why else would I be using Microsoft still? Besides my school mandates Microsoft must be on my laptop for school. I'll still put a PPC linux distro on it through PearPC.
--
I wish Comcast would upgrade their upload speeds for free. Thanks to broadband I now can have my own internet radio station: »24.18.33.156:8000 |
|
mrham
Premium
join:2002-05-14
Seneca, MO
·Embarq
| It Ain't Wort The Problems
Well, I installed the new updater yesterday, and ever since, it tells me it can't validate the number.
This is absolutely absurd, as I have the book, and the hologram thingy. Plus it was preinstalled when I bought it new.
Now, to find a way to uninstall this disaster.
Anyone have a clue as how to get rid of this junk?? |
|
Logan 5
Some people go WAY over the top
Premium,MVM
join:2001-05-25
The WasteLAN
·Pacific Bell - SBC
| reply to sean151
Re: Win XP SP2 RC2
Well, any machine that you use on a regular basis could fall under the term 'production machine' so I guess if you aren't worried about that then more power to 'ya.....:D
Looks like you're a *.nix user as well, so I guess then it really doesn't matter much about to the Widows stuff now does it.... 
--
I'm a Social Engineering Specialist - "Because there's no patch for Human Stupidity" |
|
Jeff_B
Premium
join:2000-09-24
Brick, NJ | reply to mrham
Re: It Ain't Wort The Problems
Someone posted how to remove it in this thread
»New Version of Windows update
and it worked for me. |
|
stridr69
join:2003-05-19
San Luis Obispo, CA
| Bulletin MS04-025,
Well...I updated on 7/31/2004.
So far...So Good..
But, I'm using Firefox 0.9.2 as my main browser and I.E. as needed, so I can't comment on the update good or bad. I used I.E. after I updated using known sites(currently using »cad.chp.ca.gov/..tracking the CA Highway Patrol in my neck of the woods..So far...So Good...
..now I'm waiting for the MAJOR(80Mb upgrade) due this month.
I'll set up a restore point BEFORE I download...just in case..
|
|
