Re: Microsoft IIS ASP Remote Code Execution Vulnerability

---

• From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
• Date: Fri, 21 Jul 2006 07:48:26 -0700

---

"imhotep" <imhotep@xxxxxxxxxx> wrote in message
news:HeKdnSRK88IysF3ZnZ2dnUVZ_tudnZ2d@xxxxxxxxxxxxxxx

Roger Abell [MVP] wrote:

"imhotep" <imhotep@xxxxxxxxxx> wrote in message
news:dM6dnff4Ws1pdCPZnZ2dnUVZ_s2dnZ2d@xxxxxxxxxxxxxxx

Roger Abell [MVP] wrote:

Are you just having fun posting links to third-party pages about the
vulnerabilities addressed in the July security patch releases ??

No. I am trying to inform people who might not have patched. Someone
needs to do something about all those millions of 'botted MS machines.
What are you doing? Bitching to me? Now that makes a difference...

You are missing the real message here, i.e. that the patch ms06-034
can fail to install correctly on W2k3 SP1 if done via Windows Update
http://support.microsoft.com/?kbid=917537

a situation that does not seem to be mentioned on the SecurityFocus
pages despite the fact that the info page shows it was updated 7/18

Why don't you do something positive for a change: inform Security Focus

You are illustrating your impecably respectable attitudes :)

...just trying to help you be useful.

Well, do not expect to see me adopting your style,
the expectation of which is what perhaps prevents
you from seeing what is.
--
ra


.

---

• References:
  • Re: Microsoft IIS ASP Remote Code Execution Vulnerability
    • From: Roger Abell [MVP]
  • Re: Microsoft IIS ASP Remote Code Execution Vulnerability
    • From: imhotep
  • Re: Microsoft IIS ASP Remote Code Execution Vulnerability
    • From: Roger Abell [MVP]
  • Re: Microsoft IIS ASP Remote Code Execution Vulnerability
    • From: imhotep

• Prev by Date: Re: How is dangerous connect to server over internet with remote d
• Next by Date: Re: How is dangerous connect to server over internet with remote d
• Previous by thread: Re: Microsoft IIS ASP Remote Code Execution Vulnerability
• Next by thread: Re: Windows Vista still Rife with Insecure Code
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Installing 816093 (VM) Give Error 80072EFD ... Are you running Win2000 and is the machine otherwise fully patched at Windows Update? ... Windows 2000 Security Patch: Security Update for Microsoft Virtual Machine ... (microsoft.public.windowsupdate) SSRT3622 rev. 2 Bind v920 ... SECURITY BULLETIN: HPSBUX0310-290 ... The information in the following Security Bulletin should be ... Rev.01 added web upgrade for B.11.11 ... The HP-UX Security Patch Matrix, updated daily, categorizes ... (comp.sys.hp.hpux) SSRT3622 rev. 2 Bind v920 ... SECURITY BULLETIN: HPSBUX0310-290 ... The information in the following Security Bulletin should be ... Rev.01 added web upgrade for B.11.11 ... The HP-UX Security Patch Matrix, updated daily, categorizes ... (comp.security.misc) SSRT3622 rev. 2 Bind v920 ... SECURITY BULLETIN: HPSBUX0310-290 ... The information in the following Security Bulletin should be ... Rev.01 added web upgrade for B.11.11 ... The HP-UX Security Patch Matrix, updated daily, categorizes ... (comp.security.misc) SSRT3622 rev. 2 Bind v920 ... SECURITY BULLETIN: HPSBUX0310-290 ... The information in the following Security Bulletin should be ... Rev.01 added web upgrade for B.11.11 ... The HP-UX Security Patch Matrix, updated daily, categorizes ... (comp.security.unix)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(14)