Re: Microsoft Security Advisory MS 03-007 - Problems

From: Joseph Durnal (josephdurnal@yahoo.com)
Date: 03/18/03

  • Next message: Turner, Keith (Contractor): "RE: Microsoft Security Advisory MS 03-007 - Problems" 
    Date: Tue, 18 Mar 2003 09:46:17 -0800 (PST)
From: Joseph Durnal <josephdurnal@yahoo.com>
To: focus-ms@securityfocus.com

    Here is the exact text of the message - I'm not sure
    if I'm allowed to include any infomation about the
    sender, so, I'm not. The best advice is to install
    the patch on a test box and test all required
    functionality before installing it in a production
    environment. My first install on a freslhly built W2K
    server did not indicate that there were any problems.
    I will try to update the group if I get more
    information.

    **Message Text**
    Subject: RE: Premier - Product Support Services -
    Microsoft Security Bulletin - MS03-007
    Importance: High

    Hi Folks,

    We may have identified an issue with applying the
    patch for this security issue. We currently have
    folks in Redmond working on it. Please hold off on
    applying any further patches, until further notice.

    As soon as I have more details, I will let you know.

    **End Message Text**

    Joseph M. Durnal
    josephdurnal@yahoo.com

    --- Joseph Durnal <josephdurnal@yahoo.com> wrote:
    > I just heard through Microsoft Premier Support that
    > customers have had problems after installing the
    > patch
    > for MS 03-007 (Q815021_W2K_sp4.exe). It has been
    > recommended to us to hold off on patching until
    > further notice.
    >
    > Joseph M. Durnal
    > josephdurnal@yahoo.com
    >
    >
    >
    > __________________________________________________
    > Do you Yahoo!?
    > Yahoo! Platinum - Watch CBS' NCAA March Madness,
    > live on your desktop!
    > http://platinum.yahoo.com
    >

    __________________________________________________
    Do you Yahoo!?
    Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop!
    http://platinum.yahoo.com

    ----------------------------------------------------------------------
    ALERT: How a Hacker Uses SQL Injection to Steal Your SQL Data!
    It's as simple as placing additional SQL commands into a Web Form input
    box giving hackers complete access to all your backend systems!
    http://www.spidynamics.com/mktg/sqlinjection33

  • Next message: Turner, Keith (Contractor): "RE: Microsoft Security Advisory MS 03-007 - Problems"

    Relevant Pages

    • Re: MicroMonopoly aids Terrorism?
      ... > It appears your reference to sqlmag is to support the supposition ... > that the SQL patch which covered the Slammer vulnerability ... > also difficult to install). ... Microsoft also changed patch development for SQL ...
      (microsoft.public.security)
    • RE: Microsoft Security Advisory MS 03-007 - Problems
      ... We are currently researching a very specific issue with the patch. ... My first install on a freslhly built W2K ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ... box giving hackers complete access to all your backend systems! ...
      (Focus-Microsoft)
    • Confusion about versions
      ... MS02-061 patch is: 2000.80.679.0. ... Q317748 was a SQL hotfix that was not a security bulletin. ... after the first SQL patch that corrected the vulnerability Slammer ... make it easier to install. ...
      (NT-Bugtraq)
    • Re: Verifying that a security patch has done its thing...
      ... of open source software at it's finest! ... > Either you applied the patch, recompiled, and reinstalled, or you ... >> install. ... Do You Yahoo!? ...
      (FreeBSD-Security)
    • Re: Patches and Updates
      ... I'm having the exact same problem, I am also running Dual CPU. ... let me install it. ... > dual CPU setup (look at the description of the patch requirement). ... >> server it says there is a patch missing for SQL but it won't load it. ...
      (microsoft.public.windows.server.sbs)