Issues with MS04-039 patch for ISA 2000
From: Jim Harrison [MSFT] (jmharr_at_online.microsoft.com)
Date: 11/10/04
- Previous message: Jim Harrison [MSFT]: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- In reply to: Jim Harrison [MSFT]: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Next in thread: Dennis Lundtoft Thomsen: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 10 Nov 2004 08:49:39 -0800
If you are having ANY problems at all with this patch, please do three things right now:
1. Remove the patch
2. Apply the workaround here: http://support.microsoft.com/kb/889189 (or use the script at http://isatools.org/ms04-039.js)
3. Contact PSS and provide
- MPSReports (http://download.microsoft.com/download/b/b/1/bb139fcb-4aac-4fe5-a579-30b0bd915706/MPSRPT_NETWORK.EXE)
- ISAInfo (http://isatools.org./isainfo.vbe)
-- Jim Harrison [ISASE] Read the help, books and articles! This posting is provided "AS IS" with no warranties, and confers no rights. "Jim Harrison [MSFT]" <jmharr@online.microsoft.com> wrote in message news:e9q0lM0xEHA.3376@TK2MSFTNGP12.phx.gbl... The best thing to do is contact PSS right now. They'll want three things from you: - MPSReports (http://download.microsoft.com/download/b/b/1/bb139fcb-4aac-4fe5-a579-30b0bd915706/MPSRPT_NETWORK.EXE) - ISAInfo( http://isatools.org/isainfo.vbe) - your latest ISA Server logs. We're investigating this, but PSS is the first, best point of complaint since they will contact us if they need to. -- Jim Harrison [ISASE] Read the help, books and articles! This posting is provided "AS IS" with no warranties, and confers no rights. "Dennis Lundtoft Thomsen" <DennisTh@gmail.com> wrote in message news:17f6d210.0411091956.701d9c2c@posting.google.com... An extract from my blog found at www.msgoodies.com - "Just an early warning from me - I've just installed this security fix in two completely different customer environments (and different OS'es - Windows 2000 and Windows 2003) and both of them had to be rolled back. During installation/test there are no problems, but under load the Web Proxy will repeatedly terminate "unexpectedly" and no in or outbound web acces will work. The solution was to uninstall the hotfix on both systems (And one of them actually required me to visit the customer on-site at 04:30 AM)." According to a Google group search it seems that there other having the same problem - is there a Microsoft solution to this or has anyone else found a workaround? Dennis Lundtoft Thomsen Managing consultant, MBA, MCSE mail my.initials@inceptio.dk blog www.msgoodies.com "Jerry Bryant [MSFT]" <jbryant@online.microsoft.com> wrote in message news:<uUVrsWoxEHA.1524@TK2MSFTNGP09.phx.gbl>... > November 9, 2004 > Today Microsoft released the following Security Bulletin(s). > > Note: www.microsoft.com/technet/security and www.microsoft.com/security are > authoritative in all matters concerning Microsoft Security Bulletins! ANY > e-mail, web board or newsgroup posting (including this one) should be > verified by visiting these sites for official information. Microsoft never > sends security or other updates as attachments. These updates must be > downloaded from the microsoft.com download center or Windows Update. See the > individual bulletins for details. > > Because some malicious messages attempt to masquerade as official Microsoft > security notices, it is recommended that you physically type the URLs into > your web browser and not click on the hyperlinks provided. > > Bulletin Summaries: > > October Summary > http://www.microsoft.com/technet/security/Bulletin/ms04-nov.mspx > > Important Bulletins: > > MS04-039 - Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow > Internet Content Spoofing (888258) > http://www.microsoft.com/technet/security/Bulletin/ms04-039.mspx > > This represents our regularly scheduled monthly bulletin release (second > Tuesday of each month). Please note that Microsoft may release bulletins out > side of this schedule if we determine the need to do so. > > If you have any questions regarding the patch or its implementation after > reading the above listed bulletin you should contact Product Support > Services in the United States at 1-866-PCSafety (1-866-727-2338). > International customers should contact their local subsidiary. > -- > Regards, > > Jerry Bryant - MCSE, MCDBA > Microsoft IT Communities > > Get Secure! www.microsoft.com/security > > > This posting is provided "AS IS" with no warranties, and confers no rights.
- Previous message: Jim Harrison [MSFT]: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- In reply to: Jim Harrison [MSFT]: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Next in thread: Dennis Lundtoft Thomsen: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
