Re: <+> Patch for MS04-007 Today!!!!<+>

From: Merv Porter [SBS-MVP] (mwport_at_hotmail.com_no_spam)
Date: 02/16/04 

Date: Mon, 16 Feb 2004 10:20:45 -0500

Thanks Jeff. This should help get the ball rolling for those who came late
to the party. :-)

Merv

"Jeff Middleton [SBS-MVP]" <jeff@cfisolutions.com> wrote in message
news:esFmcfJ9DHA.1596@TK2MSFTNGP10.phx.gbl...
> Do NOT DELAY!!
>
> I've prepared a sample email you can use to forward to customer, family
and
> friends to notify them to obtain and install this patch. I know all of us
> need something like to send people, so I'm sharing the one I wrote for my
> needs.
>
> Feb 15, 2004
>
> An ~extremely~ critical security software update was made available last
> week by Microsoft. Every Windows 2000/XP/NT computer has a design flaw
> vulnerability which Microsoft acknowledged by releasing this patch. Though
> there is no virus/worm known currently in circulation yet to attack this
> flaw, don't panic but you should protect your computer by installing the
> update in the next day or so. Go to WindowsUpdate if you are familiar with
> that method of update and install all currently offered "Critical Updates
> and Security Packs". Issue 828028 is the item involved in this matter.
>
> The balance of this message expands more detailed information than stated
> above, so if the first paragraph made sense to you, you don't really need
to
> read the rest of this unless you are curious.
> If you want a news story, this one covers it:
>
> http://www.cnn.com/2004/TECH/biztech/02/10/microsoft.flaw.reut/index.html
>
> * * * * * * * * * * * *
>
> The nature of the vulnerability could be exploited to potentially gain
full
> control of a system remotely, a firewall would not provide protection to
> certain exploit methods, nor would anti-virus provide protection in such
> cases. Installing this patch is the only appropriate defense because it
> corrects the flaw itself. It's very important to understand that this is a
> simple preventative step to take now while there is no virus/worm yet in
> circulation attacking this flaw.
>
> This is a very unusual flaw of the most serious nature, arguably ranks in
a
> top 5 flaws in Windows history. What you need to do about it is pretty
> simple, takes just a minute or two if your computer has high-speed web
> access and is periodically being updated at WindowsUpdate.
>
> WindowsUpdate will provide the patch if you are familiar with that method
of
> updating. The patch is Q828028, aka: MS04-007 depending upon what resource
> reference is being indicated. Your concern should be most specifically
first
> about protecting your home computer, or personal laptop. Tell your friends
> to take these steps as well.
>
> For your business computers, check with whomever maintains them to
determine
> if you need to take any action to protect it, or if they will act on your
> behalf.
>
> ** You should go to Microsoft's website to directly obtain and install
this
> patch. Never open an email claiming to be a patch from Microsoft because
> Microsoft NEVER emails patch files or updates. **
>
> You can reach WindowsUpdate at www.microsoft.com/windowsupdate.
>
> Follow the screen prompt instructions to "Scan for Updates" on your system
> for missing patches, then accept and install all "Critical Updates and
> Security Packs" patches offered. If none are offered to you, then you
likely
> have the patch already installed by an automatic update method configured
on
> your computer. If you visit WindowsUpdate frequently, you should find this
> patch to be small and install in a minute or two, then require a reboot.
If
> you do not frequently update your computer, you may find it takes an hour
or
> more to obtain the patches over high-speed connection.
>
>

Relevant Pages

  • Re: <+> Patch for MS04-007 Today!!!!<+>
    ... > vulnerability which Microsoft acknowledged by releasing this patch. ... > that method of update and install all currently offered "Critical Updates ... > access and is periodically being updated at WindowsUpdate. ... > if you need to take any action to protect it, or if they will act on your ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: <+> Patch for MS04-007 Today!!!!<+>
    ... > vulnerability which Microsoft acknowledged by releasing this patch. ... > that method of update and install all currently offered "Critical Updates ... > access and is periodically being updated at WindowsUpdate. ... > if you need to take any action to protect it, or if they will act on your ...
    (microsoft.public.windows.server.sbs)
  • <+> Patch for MS04-007 Today!!!!<+>
    ... vulnerability which Microsoft acknowledged by releasing this patch. ... that method of update and install all currently offered "Critical Updates ... access and is periodically being updated at WindowsUpdate. ... if you need to take any action to protect it, or if they will act on your ...
    (microsoft.public.backoffice.smallbiz)
  • <+> Patch for MS04-007 Today!!!!<+>
    ... vulnerability which Microsoft acknowledged by releasing this patch. ... that method of update and install all currently offered "Critical Updates ... access and is periodically being updated at WindowsUpdate. ... if you need to take any action to protect it, or if they will act on your ...
    (microsoft.public.backoffice.smallbiz2000)
  • <+> Patch for MS04-007 Today!!!!<+>
    ... vulnerability which Microsoft acknowledged by releasing this patch. ... that method of update and install all currently offered "Critical Updates ... access and is periodically being updated at WindowsUpdate. ... if you need to take any action to protect it, or if they will act on your ...
    (microsoft.public.windows.server.sbs)