Re: Alert: Microsoft Security Bulletin - MS03-010

From: Robert Heinig (heinig_at_KUK-DATENTECHNIK.DE)
Date: 05/09/03

  • Next message: Jakob Balle: "Secunia Research: Opera browser filename extension buffer overflows"
    Date:         Fri, 9 May 2003 13:28:56 +0200

    Hello again,

    My rant about the two lsasrv.dll's was, of yource, premature. Oh well if
    need be, we can still comdemn the use of identical version resources for
    different binaries, and we can still hate past US governments for creating
    that blasted 56-bit-encryption-only issue in the first place.

    As Jerry Heidtke [] (quick thinker!) pointed out in private
    mail to me:
    -----Original Message-----
    Just wanted to point out that MS patches often have multiple versions of the
    same file. This sometimes is because there are differences in single- vs.
    multi- processor versions, different language versions, or, in this case,
    different encryption strengths supported.

    The file listing could be improved to make this clearer in some cases. I
    believe, in this case, after your post they changed the web page to indicate
    that the second version was 56-bit. That information wasn't there this

    Apparently someone at Microsoft actually reads Ntbugtraq!
    > -----End Quote-----

    He's absolutely right.

    let's all try to forget all this for the weekend!
            Robert Heinig

    Have you discovered a security vulnerability related to Windows or a
    commercial product which runs on Windows?

    Need assistance crafting the format or translating your advisory to English?

    Need to verify it, or having problems contacting the Vendor?



  • Next message: Jakob Balle: "Secunia Research: Opera browser filename extension buffer overflows"

    Relevant Pages

    • Re: Applications "buying" resources
      ... experience with less-than-perfectly-behaved Windows 3.x programs has ... developers, then the potential for co-executing applications ... if you open the product up to other applications, ... of resources and *hoping* they will relinquish the resources ...
    • Re: Device Mgr. mistakes wireless card for PCI device
      ... Resources tab. ... Windows 2000 attempts to flag the associated device that is ... Although multithreading helps to alleviate this problem, it may not resolve ... Windows 2000 device driver for the ISA device. ...
    • Re: Event ID 1500 and 1508 - user cannot login
      ... It's not common in my experience. ... Resource cleanup with Windows 2003 TS should only become a factor due to specific misbehaving applications, drivers, etc and should be addressed at the level. ... reboot the server pretty consistently to clean up resources. ... Profile> Do not ...
    • Re: listing to a file
      ... batch file but I cannot remember where I found it. ... To create the entry in the context menu it's necessary to first create a ... Save the file in your WINDOWS folder as shown in, ... File Listing will probably be most useful, but you can name yours something ...
    • Re: Boots up in safe mode-graphics card message.
      ... Brian A. Wrote:- ... Why can't it find enough resources and exactly which other ... How to manage devices in Windows XP ... graphic drivers for your device or the Standard VGA drivers. ...