Re: Bogus or real?

From: Alessandro Perilli (peris_at_tiscali.it)
Date: 07/30/03 

Date: Wed, 30 Jul 2003 19:38:30 +0200

On Wed, 30 Jul 2003 10:25:53 -0700, Louis Davidson wrote:

>
>
>
> Microsoft Customer
>
> this is the latest version of security update, the
> "July 2003, Cumulative Patch" update which eliminates all
> known security vulnerabilities affecting Internet Explorer,
> Outlook and Outlook Express as well as five newly
> discovered
> vulnerabilities. Install now to protect your computer from
> these
> vulnerabilities, the most serious of which could allow an
> attacker to
> run executable on your system. This update includes the
> functionality
> of all previously released patches.
>
> System requirements:
> Win 9x/Me/2000/NT/XP
>
> This update applies to:
> Microsoft Internet Explorer, version 4.01 and later
> Microsoft Outlook, version 8.00 and later
> Microsoft Outlook Express, version 4.01 and later
>
> Recommendation:
> Customers should install the patch at the earliest
> opportunity.
>
> How to install:
> Run attached file. Click Yes on displayed dialog box.
>
> How to use:
> You don't need to do anything after installing this item.
>
> Microsoft Technical Support is available at
> http://support.microsoft.com/
>
> For security-related information about Microsoft products,
> please visit the Microsoft Security Advisor web site at
> http://www.microsoft.com/security
>
> Contact us at
> http://www.microsoft.com/isapi/goregwiz.asp?
> target=/contactus/contactus.asp
>
>
> Please do not reply to this message. It was sent from an
> unmonitored
> e-mail address and we are unable to respond to any replies.
>
> Thank you for using Microsoft products.
> Best wishes from
> Microsoft Internet Technical Support
> ________________________________________
> ©2003 Microsoft Corporation. All rights reserved. The
> names of the actual companies
> and products mentioned herein may be the trademarks of
> their respective owners.

Louis,
it's a fake. Microsoft doesn't work in this way for system updates
delivery.
Never trust someone asking you to run attachments. 

-- 
Alessandro Perilli
Security Consultant / Trainer
MCT - MCSE 2000 SECURITY - LINUX+
CCSI - CCSE 2000 - CCSE+ NG
CCNA - CIWP - CIWSA - CCA XP
SECURITY+

Relevant Pages

  • [NT] Vulnerability in JView Profiler Could Allow Remote Code Execution (MS05-037)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... through Internet Explorer, this update sets the kill bit for the JView ... * Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service ...
    (Securiteam)
  • Re: Security warning zone?
    ... Service presented in Internet Explorer Enhanced Security. ... you may removed Internet Explorer Enhanced ... Click Close and reboot the server. ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • RE: Security warning zone?
    ... Service presented in Internet Explorer Enhanced Security. ... you may removed Internet Explorer Enhanced ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • Security Alert: W32/Braid@mm
    ... PSS Security Response Team Alert - New Virus:W32/Braid@mm ... Microsoft Outlook, Microsoft Outlook Express, and ... Network Share Infection ...
    (microsoft.public.security)
  • Re: [News] IE7 Botched
    ... | Microsoft didn't do anything with IE until they were recently forced to ... Wake up and smell the IE7! ... Ferris released details of a potential | security flaw in IE 7. ... Internet Explorer 7 or Firefox 2.0? ...
    (comp.sys.mac.advocacy)