Re: Yet another extremely serious OE bug

From: Shannon Jacobs (shanen@my-deja.com)
Date: 10/13/02

• Next message: D. Small Gilligan: "Re: Help Me Clean up a Hacker's Mess!"
• Previous message: Henry Voight [MS]: "Re: Win2k & 802.1x (EAP)"
• In reply to: Torgeir Bakken (MVP): "Re: Yet another extremely serious OE bug"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: shanen@my-deja.com (Shannon Jacobs)
Date: 12 Oct 2002 19:06:39 -0700

"Torgeir Bakken (MVP)" <Torgeir.Bakken-spam@hydro.com> wrote in message news:<3DA762B2.C25E8764@hydro.com>...
> Shannon Jacobs wrote:
>
<snip>
> I guess you have IE 6.0 Service Pack 1 installed. It will not install on IE
> 6.0 SP1 because it is already installed there.
>
> From http://www.microsoft.com/technet/security/bulletin/MS02-058.asp
>
> <qoute>
> Notes:
> The fix for this issue was included in Windows XP Service Pack 1, and in
> Internet Explorer 6.0 Service Pack 1.
> </qoute>

Yep, that must be the problem. So when will the Microsoft people learn
to write clear security bulletins and/or provide useful error/status
messages in their programs?

While part of the problem is my own failure to read carefully enough,
it's certainly more than a little bit confusing to read what seems to
be a description of a new and very serious vulnerability, whereas the
reality is different. In reality, the 'new' vulnerability had already
been cured. One possibility is that the description that made it sound
like a new vulnerability was incorrect, confusing, or misleading. The
other case seems to be that there really was a new vulnerability that
was only just discovered, but which had already been accidentally
cured by a non-related patch that had already been distributed.

In either case, I don't need the frustration.

Microsoft gets their money up front, usually in the form of OEM
payments made before I ever see or use the software. In the process,
their license agreements officially disavow any liability for any
problems their programs cause. If Microsoft actually had to guarantee
their software products the way honest companies normally do, I think
they'd be bankrupt in 24 hours.

• Next message: D. Small Gilligan: "Re: Help Me Clean up a Hacker's Mess!"
• Previous message: Henry Voight [MS]: "Re: Win2k & 802.1x (EAP)"
• In reply to: Torgeir Bakken (MVP): "Re: Yet another extremely serious OE bug"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: RRAS Wizard failure ... With the first part of your reply that I applied Windows Server 2003 SP! ... SBS server 2003 SP1 are you saying that the Microsoft Update service would ... To successfully install SBS 2003 SP1, ... Service Pack 1 for the Windows Server 2003 operating system ... (microsoft.public.windows.server.sbs) Office 2004 Service Pack - Read Me ... Microsoft Corporation, 2004. ... relevant to Microsoft Office 2004 for Mac Service Pack 1 and is ... Microsoft Word, PowerPoint, Excel, and Entourage for Office 2004, ... Before you install the service pack, ... (microsoft.public.mac.office) Re: Windows Server 2003 Service Pack 1 will not install ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... <Subject: Re: Windows Server 2003 Service Pack 1 will not install ... (microsoft.public.windows.server.sbs) RE: SBS sp1 upgrade failed ... MSDE 2000 Service Pack 4 did not install and fax configuration. ... Please use the following method to check the service pack level. ... Download MSDE SP4 from Microsoft Download, ... This newsgroup only focuses on SBS technical issues. ... (microsoft.public.windows.server.sbs) [NT] Buffer Overrun in JPEG Processing (GDI+) Allows Code Execution (MS04-028) ... privately reported vulnerability. ... * Microsoft Windows XP and Microsoft Windows XP Service Pack 1 ... (Securiteam)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint