Re: Microsoft Security Bulletin(s) for November 9, 2004
From: Jim Harrison [MSFT] (jmharr_at_online.microsoft.com)
Date: 11/10/04
- Next message: iwannabfishn: "Allowing port 443 and port 8443"
- Previous message: Saira: "Re: ISA04 and SQL Auth from DMZ to internal"
- In reply to: Jim Harrison [MSFT]: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Next in thread: Sr.: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 10 Nov 2004 12:01:55 -0800
Thanks to all who responded with data; it gave us exactly what we needed.
We have a clear indication of the cause and we're working out the details and a fix.
For now, just do this:
1. Remove the patch
2. Apply the workaround here: http://support.microsoft.com/kb/889189 (or use the script at http://isatools.org/ms04-039.js)
3. Wait for a re-release of the patch.
-- Jim Harrison [ISASE] Read the help, books and articles! This posting is provided "AS IS" with no warranties, and confers no rights. "Jim Harrison [MSFT]" <jmharr@online.microsoft.com> wrote in message news:OeDcTK1xEHA.1452@TK2MSFTNGP11.phx.gbl... Sorry, but the statement "MS doesn't really use ISA on their own networks" is at best, misinformed. Regarding the WUv5 issue, it's not an ISA, but a WUv5 client issue and they're trying to work out a functional resolution. Let's focus here; if you're having issues with this patch, do this: 1. Remove the patch 2. Apply the workaround here: http://support.microsoft.com/kb/889189 (or use the script at http://isatools.org/ms04-039.js) 3. Contact PSS and provide - MPSReports (http://download.microsoft.com/download/b/b/1/bb139fcb-4aac-4fe5-a579-30b0bd915706/MPSRPT_NETWORK.EXE) - ISAInfo (http://isatools.org./isainfo.vbe) -- Jim Harrison [ISASE] Read the help, books and articles! This posting is provided "AS IS" with no warranties, and confers no rights. "JJ" <reply_in@newsgroup.only> wrote in message news:ewU%23DA1xEHA.2540@TK2MSFTNGP09.phx.gbl... More fuel for the fire that MS doesn't really use ISA on their own networks to protect their systems despite their advertising to the contrary. They still haven't fixed the problem with ISA 2000 blocking XP WindowsUpdate. Sheesh, how many months do we have to wait for that one? Maybe they don't use XP internally either. "Dennis Lundtoft Thomsen" <DennisTh@gmail.com> wrote in message news:17f6d210.0411091956.701d9c2c@posting.google.com... > An extract from my blog found at www.msgoodies.com - > > "Just an early warning from me - I've just installed this security fix > in two completely different customer environments (and different OS'es > - Windows 2000 and Windows 2003) and both of them had to be rolled > back. During installation/test there are no problems, but under load > the Web Proxy will repeatedly terminate "unexpectedly" and no in or > outbound web acces will work. The solution was to uninstall the hotfix > on both systems (And one of them actually required me to visit the > customer on-site at 04:30 AM)." > > According to a Google group search it seems that there other having > the same problem - is there a Microsoft solution to this or has anyone > else found a workaround? > > Dennis Lundtoft Thomsen > Managing consultant, MBA, MCSE > > mail my.initials@inceptio.dk > blog www.msgoodies.com > > > "Jerry Bryant [MSFT]" <jbryant@online.microsoft.com> wrote in message news:<uUVrsWoxEHA.1524@TK2MSFTNGP09.phx.gbl>... > > November 9, 2004 > > Today Microsoft released the following Security Bulletin(s). > > > > Note: www.microsoft.com/technet/security and www.microsoft.com/security are > > authoritative in all matters concerning Microsoft Security Bulletins! ANY > > e-mail, web board or newsgroup posting (including this one) should be > > verified by visiting these sites for official information. Microsoft never > > sends security or other updates as attachments. These updates must be > > downloaded from the microsoft.com download center or Windows Update. See the > > individual bulletins for details. > > > > Because some malicious messages attempt to masquerade as official Microsoft > > security notices, it is recommended that you physically type the URLs into > > your web browser and not click on the hyperlinks provided. > > > > Bulletin Summaries: > > > > October Summary > > http://www.microsoft.com/technet/security/Bulletin/ms04-nov.mspx > > > > Important Bulletins: > > > > MS04-039 - Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow > > Internet Content Spoofing (888258) > > http://www.microsoft.com/technet/security/Bulletin/ms04-039.mspx > > > > This represents our regularly scheduled monthly bulletin release (second > > Tuesday of each month). Please note that Microsoft may release bulletins out > > side of this schedule if we determine the need to do so. > > > > If you have any questions regarding the patch or its implementation after > > reading the above listed bulletin you should contact Product Support > > Services in the United States at 1-866-PCSafety (1-866-727-2338). > > International customers should contact their local subsidiary. > > -- > > Regards, > > > > Jerry Bryant - MCSE, MCDBA > > Microsoft IT Communities > > > > Get Secure! www.microsoft.com/security > > > > > > This posting is provided "AS IS" with no warranties, and confers no rights.
- Next message: iwannabfishn: "Allowing port 443 and port 8443"
- Previous message: Saira: "Re: ISA04 and SQL Auth from DMZ to internal"
- In reply to: Jim Harrison [MSFT]: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Next in thread: Sr.: "Re: Microsoft Security Bulletin(s) for November 9, 2004"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
Loading
