Re: Microsoft Security Bulletin MS02-052

From: Torgeir Bakken (Torgeir.Bakken-spam@hydro.com)
Date: 09/27/02 

From: Torgeir Bakken <Torgeir.Bakken-spam@hydro.com>
Date: Fri, 27 Sep 2002 00:02:46 +0200

Bill Sanderson wrote:

> Well--this critter is on the XP SP1 CD which anyone can order, and which
> works behind corp firewalls. You'd need to extract the files and find the
> critter, but I don't think it is too deeply buried--nope: msjavx86.exe in
> the root of the distribution--hmm, and running it doesn't even blow away the
> MS02-052 patch, at least on the evidence of the registry key--I wonder if I
> should trust that evidence??

Well, I did an InCtrl on a 3805 install on top of a existing 3807 install, and a
lot happens in the folder structure %windir%\Java\Packages and also their
pointers in registry. I would not trust this is all good.

> I agree that this isn't the way things ought to be--but I am sure that the
> technical support staff feel their hands are tied by the legal folks.
>
> I should say that I'm testing this on XP--OK--I've also tested the same
> distribution file on a WinMe machine--no problem.

It will work on all MS OS versions except Win2k. For Win2k, SP3 will upgrade JVM
to 3805. 

--
torgeir

Relevant Pages

  • Re: Microsoft Security Bulletin MS02-052
    ... You'd need to extract the files and find the ... > the root of the distribution--hmm, and running it doesn't even blow away the ... Well, I did an InCtrl on a 3805 install on top of a existing 3807 install, and a ... I would not trust this is all good. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Which certificate do I have to deploy ? Root CA or Subordinate CA certificate ?
    ... I have understood too that if I install the Root CA cert, I will trust ... every subordinate CA even if I dont have their certificates installed. ... But my question is "why does Microsoft recommend to install the root CA ...
    (microsoft.public.windows.server.security)
  • Re: Microsoft Security Bulletin MS02-052
    ... You'd need to extract the files and find the ... > the root of the distribution--hmm, and running it doesn't even blow away the ... Well, I did an InCtrl on a 3805 install on top of a existing 3807 install, and a ... I would not trust this is all good. ...
    (microsoft.public.security)
  • RE: CA-SSL in IIS
    ... You need to install the root CA certificate (generate this from the CA ... > There is a concept involved here of a "chain of trust". ...
    (Focus-Microsoft)
  • Re: Connection to a SAMBA Active Directory
    ... Currently, we can't get the 2-way trust going, so there's no connection ... I would then install Outlook 2003 on each desktop (which is on a computer in ... When the user initally launches Outlook, Exchange would ... I am able to define a 2 way Realm trust using the Active Directory ...
    (microsoft.public.exchange.connectivity)