Re: <<< SECURITY BULLETINS THIS MONTH>>>

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Kevin Weilbacher [SBS-MVP] (kweilbacMVP_at_gte.net)
Date: 10/13/04 

Date: Tue, 12 Oct 2004 22:40:41 -0400

Susan's comments are equally true of many of us:
- DO install the WU critical updates
- DON'T install the other WU recommended updates
- Definitely DON'T install the WU reconmmend driver updates

- DO check these newsgroups regularly after a published critical patch is
released
- DON'T assume that WU will report all critical patches - it doesn't

- DO use alternate solutions for determining required updates (HFNetChkPro,
SUS, MBSA, etc.)
- DON'T think that because you don't check for updates that you are
protected -- you're not! 

-- 
Kevin Weilbacher [SBS-MVP]
"The days pass by so quickly now, the nights are seldom long"
"Adam" <Adam@discussions.microsoft.com> wrote in message 
news:D0F10595-1282-45AB-89AC-ADC439DD70B4@microsoft.com...
> Do most of you apply the critical updates from Microsoft on your SBS 2003? 
> I
> have been a little apprehensive, thinking they may break some component.
>
> "Susan Bradley, CPA aka Ebitz - SBS Rocks" wrote:
>
>> October Summary
>> http://www.microsoft.com/technet/security/Bulletin/ms04-oct.mspx
>>
>> Critical Bulletins:
>>
>> MS04-032 - Security Update for Microsoft Windows (840987)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-032.mspx
>>
>> MS04-033 - Vulnerability in Microsoft Excel Could Allow Code Execution
>> (886836)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-033.mspx
>>
>> MS04-034 - Vulnerability in Compressed (zipped) Folders Could Allow Code
>> Execution (873376)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-034.mspx
>>
>> MS04-035 - Vulnerability in SMTP Could Allow Remote Code Execution
>> (885881)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-035.mspx
>>
>> MS04-036 - Vulnerability in NNTP Could Allow Code Execution (883935)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-036.mspx
>>
>> MS04-037 - Vulnerability in Windows Shell Could Allow Remote Code
>> Execution (841356)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-037.mspx
>>
>> MS04-038 - Cumulative Security Update for Internet Explorer (834707)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-038.mspx
>>
>>
>> Important Bulletins:
>>
>> MS04-029 - Vulnerability in RPC Runtime Library Could Allow Information
>> Disclosure and Denial of Service (873350)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-029.mspx
>>
>> MS04-030 - Bulletin Title Vulnerability in WebDAV XML Message Handler
>> Could Lead to a Denial of Service (824151)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-030.mspx
>>
>> MS04-031 - Vulnerability in NetDDE Could Allow Remote Code Execution
>> (841533)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-031.mspx
>>
>> Re-Released Bulletins:
>>
>> MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow Code
>> Execution (833987)
>> http://www.microsoft.com/technet/security/Bulletin/ms04-028.mspx
>>
>> This represents our regularly scheduled monthly bulletin release (second
>> Tuesday of each month). Please note that Microsoft may release bulletins
>> out side of this schedule if we determine the need to do so.
>> -- 
>> http://www.sbslinks.com/really.htm
>> http://www.msmvps.com/bradley
>> http://www.threatcode.com
>> [let's get vendors to step up to the plate too]
>> https://www.ecora.com/ecora/jump/pm99.asp
>>
>>

Relevant Pages

  • Re: <<< SECURITY BULLETINS THIS MONTH>>>
    ... DON'T install the other WU recommended updates ... >> MS04-033 - Vulnerability in Microsoft Excel Could Allow Code Execution ... >> Important Bulletins: ...
    (microsoft.public.windows.server.sbs)
  • Re: <<< SECURITY BULLETINS THIS MONTH>>>
    ... DON'T install the other WU recommended updates ... >> MS04-033 - Vulnerability in Microsoft Excel Could Allow Code Execution ... >> Important Bulletins: ...
    (microsoft.public.backoffice.smallbiz2000)
  • Web Anonymous User
    ... Vulnerability in Windows Shell could allow remote code ... execution, KB840315-Vulnerability in html help could allow ... Concurrent with these updates, Users were ... that made any changes to web anonymous user or ADDED web ...
    (microsoft.public.isa.configuration)
  • Critical Updates
    ... Vulnerability in Windows Shell could allow remote code ... execution, KB840315-Vulnerability in html help could allow ... Concurrent with these updates, Users were ... that made any changes to anonymous user or ADDED anonymous ...
    (microsoft.public.inetserver.iis.security)
  • Re: Microsoft Security Bulletin(s) for July 2005
    ... Microsoft update has 4 new updates today. ... > are authoritative in all matters concerning Microsoft Security Bulletins! ... > Vulnerability in Microsoft Color Management Module Could Allow Remote Code ...
    (microsoft.public.security)