Revised: Microsoft Security Bulletin - MS02-071

From: Russ (Russ.Cooper@RC.ON.CA)
Date: 02/03/03

  • Next message: GreyMagic Software: "Opera's Security Model is Highly Vulnerable (GM#002-OP)" 
    Date:         Mon, 3 Feb 2003 15:00:41 -0500
From: Russ <Russ.Cooper@RC.ON.CA>
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation (328310)

    Originally posted: December 11, 2002
    Updated: February 03, 2003

    This bulletin has been revised.
    V1.0 (December 11, 2002): Bulletin Created.
    V1.1 (December 17, 2002): Updated information in Additional information section.
    V1.2 (February 03, 2003): Subsequent to the release of this bulletin it was determined that the patch for Microsoft Windows NT 4.0 machines introduced an error that may, under certain configurations, cause NT 4.0 to fail. The bulletin has been updated to remove the download links for the NT 4.0 patch and will be revised again once the updated package is available.

    Full bulletin details available at;
    http://www.microsoft.com/technet/security/bulletin/MS02-071.asp

    Cheers,
    Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
    Delivery co-sponsored by TruSecure Corporation
    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
    TICSA - Anniversary Special - Limited Time

    Become TICSA certified for just $221.25 US when you register before 3/31/03
    with PROMO "TS0103" at www.2test.com. NO membership fees, certification
    good for 2 years. Price for international delivery just $296.25 US, with
    this offer. Offer cannot be combined with any other special and expires
    3/31/03. Visit www.trusecure.com/ticsa for full details.

    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo