RE: Microsoft Security Advisory MS 03-007 - Problems

• Previous message: Turner, Keith (Contractor): "RE: Microsoft Security Advisory MS 03-007 - Problems"
• Maybe in reply to: Joseph Durnal: "Microsoft Security Advisory MS 03-007 - Problems"
• Next in thread: Kolde, Jennifer E.: "RE: Microsoft Security Advisory MS 03-007 - Problems"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 18 Mar 2003 13:32:38 -0500
From: "Watson, Michael" <watsonmj@wharton.upenn.edu>
To: "Turner, Keith (Contractor)" <Keith.Turner@tea.army.mil>, "Mike Heitz" <mikeheitz@upshotmail.com>, "Jonathan Grotegut" <jgrotegut@directpointe.com>, <josephdurnal@cablespeed.com>, <focus-ms@securityfocus.com>

Our premier support provider said the following:

Microsoft is not aware of a problem with MS03-007 and is still
recommending that the patch be installed. If you install the patch and
encounter a problem you should contact Premier immediately for
assistance. It is inevitable in the law of averages that some people
would have a problem installing this patch, which unfortunately has lead
to this rumor. As always it is recommended that patches be installed
and tested in a test environment before applying to production.

Granted this could mean that he hasn't been informed however this is
what was relayed.

Mike

-----Original Message-----
From: Turner, Keith (Contractor) [mailto:Keith.Turner@tea.army.mil]
Sent: Tuesday, March 18, 2003 1:00 PM
To: 'Mike Heitz'; Jonathan Grotegut; josephdurnal@cablespeed.com;
focus-ms@securityfocus.com
Subject: RE: Microsoft Security Advisory MS 03-007 - Problems

  I saw on another list where someone had it fail on two servers, both
of
which were running coldfusion. That could be 2 out of 2 or it could be 2
out
of 1000, I'm not sure.

Keith

-----Original Message-----
From: Mike Heitz [mailto:mikeheitz@upshotmail.com]
Sent: Tuesday, March 18, 2003 11:49 AM
To: Jonathan Grotegut; josephdurnal@cablespeed.com;
focus-ms@securityfocus.com
Subject: RE: Microsoft Security Advisory MS 03-007 - Problems

I'm curious too. We've only got 1 OWA server we were planning to patch
tonight. I haven't been able to find any info on specific problems
people are having.

Any info would be greatly appreciated.

mike heitz ** sr it manager ** UPSHOT
312-943-0900 x5190

-----Original Message-----
From: Jonathan Grotegut [mailto:jgrotegut@directpointe.com]
Sent: Tuesday, March 18, 2003 10:29 AM
To: josephdurnal@cablespeed.com; focus-ms@securityfocus.com
Subject: RE: Microsoft Security Advisory MS 03-007 - Problems

Joseph,

What kind of problems are people experiencing. I have updated over 16
servers so far with the patch, (most of which are only running OWA), and
I have not seen any problems. Insight into this would be good.

Jonathan Grotegut
DirectPointe

-----Original Message-----
From: Joseph Durnal [mailto:josephdurnal@yahoo.com]
Sent: Tuesday, March 18, 2003 8:20 AM
To: focus-ms@securityfocus.com
Subject: Microsoft Security Advisory MS 03-007 - Problems

I just heard through Microsoft Premier Support that
customers have had problems after installing the patch
for MS 03-007 (Q815021_W2K_sp4.exe). It has been
recommended to us to hold off on patching until
further notice.

Joseph M. Durnal
josephdurnal@yahoo.com

__________________________________________________
Do you Yahoo!?
Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop!
http://platinum.yahoo.com

----------------------------------------------------------------------
ALERT: How a Hacker Uses SQL Injection to Steal Your SQL Data! It's as
simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems!
http://www.spidynamics.com/mktg/sqlinjection33

----------------------------------------------------------------------
ALERT: How a Hacker Uses SQL Injection to Steal Your SQL Data!
It's as simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems!
http://www.spidynamics.com/mktg/sqlinjection33

----------------------------------------------------------------------
ALERT: How a Hacker Uses SQL Injection to Steal Your SQL Data!
It's as simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems!
http://www.spidynamics.com/mktg/sqlinjection33

----------------------------------------------------------------------
ALERT: How a Hacker Uses SQL Injection to Steal Your SQL Data!
It's as simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems!
http://www.spidynamics.com/mktg/sqlinjection33

----------------------------------------------------------------------
ALERT: How a Hacker Uses SQL Injection to Steal Your SQL Data!
It's as simple as placing additional SQL commands into a Web Form input
box giving hackers complete access to all your backend systems!
http://www.spidynamics.com/mktg/sqlinjection33

• Previous message: Turner, Keith (Contractor): "RE: Microsoft Security Advisory MS 03-007 - Problems"
• Maybe in reply to: Joseph Durnal: "Microsoft Security Advisory MS 03-007 - Problems"
• Next in thread: Kolde, Jennifer E.: "RE: Microsoft Security Advisory MS 03-007 - Problems"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: Microsoft Security Advisory MS 03-007 - Problems ... We are currently researching a very specific issue with the patch. ... My first install on a freslhly built W2K ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ... box giving hackers complete access to all your backend systems! ... (Focus-Microsoft) RE: Microsoft Security Advisory MS 03-007 - Problems ... I had one person report problems installing the patch on a server running ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ... box giving hackers complete access to all your backend systems! ... It's as simple as placing additional SQL commands into a Web Form input ... (Focus-Microsoft) RE: Microsoft Security Advisory MS 03-007 - Problems ... I think that one of the most important things to remember about this patch ... MS has released buggy patches in the past. ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ... box giving hackers complete access to all your backend systems! ... (Focus-Microsoft) RE: Microsoft Security Advisory MS 03-007 - Problems ... We've only got 1 OWA server we were planning to patch ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ... box giving hackers complete access to all your backend systems! ... (Focus-Microsoft) Cant install MSDE 2000 - Help (Error 1304) ... I am having problems installing MSDE 2000 on to a computer. ... Server\MSSQL$TELELITE\Binn\sqlimage.dll; To be installed; Won't patch; No existing file ... Files\Microsoft SQL Server\MSSQL$TELELITE\Binn\sqlimage.dll ... (microsoft.public.sqlserver.msde)