Re: April 13, 2004 - Today Microsoft released the following Security Bulletins
From: Ivan Bútora (xxx_at_xxx.xx)
Date: 04/14/04
- Next message: Hugh Candlin: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Previous message: Artwilder: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- In reply to: Artwilder: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Next in thread: Frank Saunders, MS-MVP IE/OE: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Reply: Frank Saunders, MS-MVP IE/OE: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 14 Apr 2004 02:41:06 -0400
I still wonder why they don't just make the download site publicly accessible - I don't see the benefits of this strategy. Anyway, I will call them tomorrow, more to test this procedure than out of a burning desire for the patches themselves.
"Artwilder" <smileArtwilder@unknownspam.net> wrote in message news:eJbUQseIEHA.964@TK2MSFTNGP10.phx.gbl...
That number should work okay. The way it works is that Microsoft sends you an e-mail with a link to the patch and your password to open up the hotfix.
"Ivan Bútora" <xxx@xxx.xx> wrote in message news:e4rrIWeIEHA.3144@TK2MSFTNGP10.phx.gbl...
Artwilder,
the security bulletins, linked to by PA Bear in his post, discuss the vulnerabilities that are fixed by the respective patches. I believe the patches are tested if they are listed as available for the given OS. (Although what exactly regression testing means somewhat mystifies me.)
As for the MS security hotline, is this to be reached at (800) 936-5700, or is there some different number? Do they give you a link to download the given patch?
Ivan
"Artwilder" <smileArtwilder@unknownspam.net> wrote in message news:%238D8qMeIEHA.3476@TK2MSFTNGP11.phx.gbl...
Ivan, are these three patches also non-regression patches that need to be tested? Do you have the web links that explain what they fix? Finally, in regards to your question, you can call the Microsoft security hotline and request the non-critical patches manually. That is how I got the patch to install and test on my machine. Just tell them what you want and if it is in regards to security you will get the hotfix for free.
"Ivan Bútora" <xxx@xxx.xx> wrote in message news:uHgJSbbIEHA.3224@TK2MSFTNGP09.phx.gbl...
As far as I can tell, 831167 is a post-cumulative update for IE 6 that patches some issues caused by 832894. It has been available for download for a while now (although not from Windows Update), and should be included in the next cumulative security patch for IE.
As for MS04-011, MS04-012, and MS04-014, there are vulnerabilities there that *do* affect Windows 98/98SE/Me, but are not considered critical, and therefore will not be publicly released. Microsoft has again updated its support policy at http://support.microsoft.com/default.aspx?pr=LifeAn1. The deal is now this: MS will release (and put on Windows Update) *critical* security patches. Non-critical security patches will have to be requested manually. (Question: Where and how do I do that?)
Artwilder, the patch that you tested on your machine is now included in MS04-011.
Greetings,
Ivan
"Dapper Dan" <dapperdan@home.com> wrote in message news:u4MnSNbIEHA.3144@TK2MSFTNGP10.phx.gbl...
I did check them out PA and my reading suggested that only one
applied and that's why I asked for your guidance. I have since visited
the site and it confirms KB 837009 for Win 98, however it also
includes KB 831167 which wasn't on the list.
Thanks
"PA Bear" <PABear@mvps.org> wrote in message
news:%23d9aCpaIEHA.1048@TK2MSFTNGP12.phx.gbl...
> Check 'em out.
>
> No, don't, just go to Windows Update and see what's offered you.
> --
> ~PA Bear
>
> Dapper Dan wrote:
> > Thanks for providing Microsoft's Security Bulletins, PA Bear.
Unless I
> > am misreading these summaries, only MS04-013 (# 837009) seems to
apply
> > to Win 98 and/or Me. Or have I misread yet again ??
> >
> > Dan
> >
> > "PA Bear" <PABear@mvps.org> wrote in message
> > news:u7kCr7ZIEHA.3556@TK2MSFTNGP10.phx.gbl...
> >> April 13, 2004
> >> Today Microsoft released the following Security Bulletins.
> >>
> >> Note: www.microsoft.com/technet/security and
www.microsoft.com/security
> >> are authoritative in all matters concerning Microsoft Security
> >> Bulletins! ANY e-mail, web board or newsgroup posting (including
this
> >> one) should be verified by visiting these sites for official
> >> information. Microsoft never sends security or other updates as
> >> attachments. These updates must be downloaded from the
microsoft.com
> >> download center or Windows Update. See the individual bulletins
for
> >> details.
> >>
> >> Because some malicious messages attempt to masquerade as official
> >> Microsoft security notices, it is recommended that you physically
type
> >> the URLs into your web browser and not click on the hyperlinks
provided.
> >>
> >> Bulletin Summaries:
> >>
> >> Windows:
> > http://www.microsoft.com/technet/security/Bulletin/winapr04.mspx
> >>
> >> Critical Bulletins:
> >>
> >> MS04-011 - Security Update for Microsoft Windows (835732
> >> http://www.microsoft.com/technet/security/Bulletin/MS04-011.mspx
> >>
> >> MS04-012 - Cumulative Update for Microsoft RPC/DCOM (828741)
> >> http://www.microsoft.com/technet/security/Bulletin/MS04-012.mspx
> >>
> >> MS04-013 - Cumulative Security Update for Outlook Express
(837009)
> >> http://www.microsoft.com/technet/security/Bulletin/MS04-013.mspx
> >>
> >> Important Bulletins:
> >>
> >> MS04-014 - Vulnerability in the Microsoft Jet Database Engine
Could Allow
> >> Code Execution (837001)
> >> http://www.microsoft.com/technet/security/Bulletin/MS04-014.mspx
> >>
> >> Re-Released Bulletins: The following bulletins have been
re-released to
> >> advise of the availability of updates for various versions of
Microsoft
> >> Exchange Server. Please see the bottom of each bulletin for
revision
> >> information.
> >>
> >> MS00-082 - Patch Available for 'Malformed MIME Header'
Vulnerability
> >> http://www.microsoft.com/technet/security/Bulletin/MS00-082.mspx
> >>
> >> MS01-041 - Malformed RPC Request Can Cause Service Failure
> >> http://www.microsoft.com/technet/security/Bulletin/MS01-041.mspx
> >>
> >> MS02-011 - Authentication Flaw Could Allow Unauthorized Users To
> >> Authenticate To SMTP Service
> >> http://www.microsoft.com/technet/security/Bulletin/MS02-011.mspx
> >>
> >> MS03-046 - Vulnerability in Exchange Server Could Allow Arbitrary
Code
> >> Execution (829436)
> >> http://www.microsoft.com/technet/security/Bulletin/MS03-046.mspx
> >> --
> >> HTH - Please Reply to This Thread
> >>
> >> ~Robear Dyer (PA Bear)
> >> MS MVP-Windows (IE/OE), AH-VSOP
> >>
> >> AumHa Forums
> >> http://forum.aumha.org
>
- Next message: Hugh Candlin: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Previous message: Artwilder: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- In reply to: Artwilder: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Next in thread: Frank Saunders, MS-MVP IE/OE: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Reply: Frank Saunders, MS-MVP IE/OE: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
