Revised: Microsoft Security Bulletin - MS00-084

From: Russ (Russ.Cooper@RC.ON.CA)
Date: 04/10/03

  • Next message: Rickard Berglind: "NTBUGTRAQ: AD Schema and Configuration could be overtaken" 
    Date:         Thu, 10 Apr 2003 12:23:19 -0400
From: Russ <Russ.Cooper@RC.ON.CA>
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    Patch Available for 'Indexing Services Cross Site Scripting' Vulnerability

    Originally posted: November 02, 2000
    Updated: February 28, 2003
    Updated: April 9, 2003

    This bulletin has been revised.
    V1.0 (November 02, 2000): Bulletin Created.
    V1.1 (February 28, 2003): Updated links in Frequently Asked Questions section.
    V2.0 (April 9, 2003): Bulletin updated to reflect an available fix for the version of the Indexing Service which shipped with the NT 4.0 Option Pack. It is not installed or enabled by default.

    Full bulletin details available at;
    http://www.microsoft.com/technet/security/bulletin/MS00-084.asp

    Cheers,
    Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
    Have you discovered a security vulnerability related to Windows or a
    commercial product which runs on Windows?

    Need assistance crafting the format or translating your advisory to English?

    Need to verify it, or having problems contacting the Vendor?

    Contact mailto:Advisories@NTBugtraq.com

    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo

  • Next message: Rickard Berglind: "NTBUGTRAQ: AD Schema and Configuration could be overtaken"

    Relevant Pages

    • Alert: Microsoft Security Bulletin MS05-018 - Vulnerabilities in Windows Kernel Could Allow Elevatio
      ... Microsoft Security Bulletin MS05-018: ... Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service ... Font Vulnerability - CAN-2005-0060: A privilege elevation vulnerability exists in the way that Windows process certain fonts. ...
      (NT-Bugtraq)
    • Alert: Microsoft Security Bulletin - MS02-070
      ... Who should read this bulletin: System administrators using Microsoft® Windows® XP or Windows 2000, the latter especially in a domain controller role. ... Administrators whose Windows 2000 or Windows XP Gold systems are configured to use SMB Signing should install the patch immediately. ... Exploiting the vulnerability would require the attacker to have significant network access already. ...
      (NT-Bugtraq)
    • Re: NT4 patch for MS00-084??
      ... I've read the bulletin too. ... > 'Indexing Services Cross Site Scripting' Vulnerability ...
      (microsoft.public.security)
    • Alert: Microsoft Security Bulletin MS04-044 - Vulnerabilities in Windows Kernel and LSASS Could Allo
      ... Microsoft Security Bulletin MS04-044: ... Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege ... Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6 ... Windows Kernel Vulnerability - CAN-2004-0893: A privilege elevation vulnerability exists in the way that the Windows Kernel launches applications. ...
      (NT-Bugtraq)
    • SecurityFocus Microsoft Newsletter #163
      ... MICROSOFT VULNERABILITY SUMMARY ... Bugzilla Javascript Buglists Remote Information Disclosure V... ... Microsoft Internet Explorer DHTML Drag and Drop Local File S... ... Microsoft Windows Workstation Service Remote Buffer Overflow... ...
      (Focus-Microsoft)