Re: MS04-028 Running WindowsXP SP3

I took the same steps you followed downloading the both patches; the 1st
simply appeared as a Modify\Repair\uninstall for Office. When I ran the
client downlad I got the same message as you got.

I ran the scan again, the only info provided is 1 Vulnerbility Found and it
shows MS04-028...I wish there was more but there is Not.

This is what I was referring to when I wrote, Microsoft does not make it
easy.......

"Gary S. Terhune" wrote:

What problem? All you have given us is that PCCillin claims that some
unnamed part of your system is (potentially?) vulnerable to the "High Risk"
described in MS04-028. Is that the most detail you can provide? If you run
the scan again, do you get the notice again? If so, please post the message
here EXACTLY word for word. Because at this moment, the high-rollers are
placing their bets on the system and any affected applications having
already been patched, whether directly or as part of some other Update or as
part of a Service Pack.

In any case, I can't give you more advice than I already have, particularly
in yesterday's post of 11:44 AM (Pacific Daylight Time). Either accept that
if you needed the patch it would be offered, or go through MS04-028 line by
line and identify each and every item that is listed as potentially
vulnerable, then download the patch listed for that app (using the consumer
version) and run it. It will either install or it will tell you that it has
already been installed.

--
Gary S. Terhune
MS-MVP Shell/User
http://grystmill.com

"denmarfl" <denmarfl@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:EC8CC67E-5A33-4D81-90A6-79B3CE388B7E@xxxxxxxxxxxxxxxx
I ran Windows Update and Microsoft Update...I went to Microsoft Office and
ran the update as well at that site....all came back showing my updates
were
current.

Does Mirosoft make anything that is easy? I downloaded and ran the
gdidettool, it showed

"The Software tool has detected that you are running Microsoft software
that may contain a security vulnerability. There are security updates
available from Microsoft that fix rhis security vulnerability.
Would you like to learn more about the security vulnerability as well as
the
necessary security updates that address it?...."


The Word doscument that opens that I thought was going to point me to the
needed security updates was not of much help. It basically advised to run
the Windows\Microsoft\Office Updates.

The Word Document did read "How to update your computer with the JPEG
processing (GDI+) security update".

I really don't know to do next? I was hoping Specific Security Updates
would be shown that if downloaded and installed would fix the
problem....MS04-028

Will appreciate any assistance you can provide


"PA Bear [MS MVP]" wrote:

It all depends on where this supposed vulnerability was detected (e.g.,
in
System Volume Information; in an email).

denmarfl wrote:
I am using PcCillin Internet Security....and I totally understand your
response. However, I use this same AV Software on other PC's and over
the
years this vulnerability Scan\Alert on other PC's has proven itself
reliable
every time it has reported a vulnerability. Speaking with the techs at
PcCillin they advise this part of their AV Software is actually
designed
and
built using Microsoft vulnerability specs. It is unfortunate that
when
a
vulnerability is discovered that they are unable to assist because it
is a
Microsoft issue.

"Anteaus" wrote:

Might also add that virus scanner wouldn't normally report a
vulnerability
in the OS, its job is to find malware. This might be the case with
'security suite' apps I guess.

"denmarfl" wrote:

My Virus Scan reports a Microsoft High Risks Vulnerability and
reports
it
as MS04-028. I have done a seach at Microsoft.com for MS04-028...and
to
be honest, I have not determined what it is I must do to resolve this
risks. I don't see a Security download, etc.

What must I do to resolve this Risks?





.

Relevant Pages