Re: April 13, 2004 - Today Microsoft released the following Security Bulletins
From: Frank Saunders, MS-MVP IE/OE (franksaunders_at_mvps.org)
Date: 04/14/04
- Next message: J.D.: "Security Catalog files in IE directory"
- Previous message: John: "Cannot save jpgs"
- In reply to: Ivan Bútora: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Next in thread: Hugh Candlin: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 14 Apr 2004 02:15:43 -0500
"Ivan Bútora" <xxx@xxx.xx> wrote in message
news:uxJMuteIEHA.3040@TK2MSFTNGP09.phx.gbl
> I still wonder why they don't just make the download site publicly
> accessible - I don't see the benefits of this strategy. Anyway, I
> will call them tomorrow, more to test this procedure than out of a
> burning desire for the patches themselves.
Q831167 is publically available:
http://support.microsoft.com/?kbid=831167
-- Frank Saunders, MS-MVP, IE/OE Please respond in Newsgroup. Do not send email http://www.fjsmjs.com Protect your PC http://www.microsoft.com/security/protect/ > "Artwilder" <smileArtwilder@unknownspam.net> wrote in message > news:eJbUQseIEHA.964@TK2MSFTNGP10.phx.gbl... > That number should work okay. The way it works is that Microsoft > sends you an e-mail with a link to the patch and your password to > open up the hotfix. > > "Ivan Bútora" <xxx@xxx.xx> wrote in message > news:e4rrIWeIEHA.3144@TK2MSFTNGP10.phx.gbl... > Artwilder, > > the security bulletins, linked to by PA Bear in his post, discuss the > vulnerabilities that are fixed by the respective patches. I believe > the patches are tested if they are listed as available for the given > OS. (Although what exactly regression testing means somewhat > mystifies me.) > As for the MS security hotline, is this to be reached at (800) > 936-5700, or is there some different number? Do they give you a link > to download the given patch? > > Ivan > > > > "Artwilder" <smileArtwilder@unknownspam.net> wrote in message > news:%238D8qMeIEHA.3476@TK2MSFTNGP11.phx.gbl... > Ivan, are these three patches also non-regression patches that > need to be tested? Do you have the web links that explain what they > fix? Finally, in regards to your question, you can call the > Microsoft security hotline and request the non-critical patches > manually. That is how I got the patch to install and test on my > machine. Just tell them what you want and if it is in regards to > security you will get the hotfix for free. > > "Ivan Bútora" <xxx@xxx.xx> wrote in message > news:uHgJSbbIEHA.3224@TK2MSFTNGP09.phx.gbl... > As far as I can tell, 831167 is a post-cumulative update for IE 6 > that patches some issues caused by 832894. It has been available for > download for a while now (although not from Windows Update), and > should be included in the next cumulative security patch for IE. > > As for MS04-011, MS04-012, and MS04-014, there are vulnerabilities > there that *do* affect Windows 98/98SE/Me, but are not considered > critical, and therefore will not be publicly released. Microsoft has > again updated its support policy at > http://support.microsoft.com/default.aspx?pr=LifeAn1. The deal is now > this: MS will release (and put on Windows Update) *critical* security > patches. Non-critical security patches will have to be requested > manually. (Question: Where and how do I do that?) > > Artwilder, the patch that you tested on your machine is now included > in MS04-011. > > Greetings, > > Ivan > > > > "Dapper Dan" <dapperdan@home.com> wrote in message > news:u4MnSNbIEHA.3144@TK2MSFTNGP10.phx.gbl... > I did check them out PA and my reading suggested that only one > applied and that's why I asked for your guidance. I have since visited > the site and it confirms KB 837009 for Win 98, however it also > includes KB 831167 which wasn't on the list. > Thanks > > > "PA Bear" <PABear@mvps.org> wrote in message > news:%23d9aCpaIEHA.1048@TK2MSFTNGP12.phx.gbl... >> Check 'em out. >> >> No, don't, just go to Windows Update and see what's offered you. >> -- >> ~PA Bear >> >> Dapper Dan wrote: >>> Thanks for providing Microsoft's Security Bulletins, PA Bear. > Unless I >>> am misreading these summaries, only MS04-013 (# 837009) seems to > apply >>> to Win 98 and/or Me. Or have I misread yet again ?? >>> >>> Dan >>> >>> "PA Bear" <PABear@mvps.org> wrote in message >>> news:u7kCr7ZIEHA.3556@TK2MSFTNGP10.phx.gbl... >>>> April 13, 2004 >>>> Today Microsoft released the following Security Bulletins. >>>> >>>> Note: www.microsoft.com/technet/security and > www.microsoft.com/security >>>> are authoritative in all matters concerning Microsoft Security >>>> Bulletins! ANY e-mail, web board or newsgroup posting (including > this >>>> one) should be verified by visiting these sites for official >>>> information. Microsoft never sends security or other updates as >>>> attachments. These updates must be downloaded from the > microsoft.com >>>> download center or Windows Update. See the individual bulletins > for >>>> details. >>>> >>>> Because some malicious messages attempt to masquerade as official >>>> Microsoft security notices, it is recommended that you physically > type >>>> the URLs into your web browser and not click on the hyperlinks > provided. >>>> >>>> Bulletin Summaries: >>>> >>>> Windows: >>> http://www.microsoft.com/technet/security/Bulletin/winapr04.mspx >>>> >>>> Critical Bulletins: >>>> >>>> MS04-011 - Security Update for Microsoft Windows (835732 >>>> http://www.microsoft.com/technet/security/Bulletin/MS04-011.mspx >>>> >>>> MS04-012 - Cumulative Update for Microsoft RPC/DCOM (828741) >>>> http://www.microsoft.com/technet/security/Bulletin/MS04-012.mspx >>>> >>>> MS04-013 - Cumulative Security Update for Outlook Express > (837009) >>>> http://www.microsoft.com/technet/security/Bulletin/MS04-013.mspx >>>> >>>> Important Bulletins: >>>> >>>> MS04-014 - Vulnerability in the Microsoft Jet Database Engine > Could Allow >>>> Code Execution (837001) >>>> http://www.microsoft.com/technet/security/Bulletin/MS04-014.mspx >>>> >>>> Re-Released Bulletins: The following bulletins have been > re-released to >>>> advise of the availability of updates for various versions of > Microsoft >>>> Exchange Server. Please see the bottom of each bulletin for > revision >>>> information. >>>> >>>> MS00-082 - Patch Available for 'Malformed MIME Header' > Vulnerability >>>> http://www.microsoft.com/technet/security/Bulletin/MS00-082.mspx >>>> >>>> MS01-041 - Malformed RPC Request Can Cause Service Failure >>>> http://www.microsoft.com/technet/security/Bulletin/MS01-041.mspx >>>> >>>> MS02-011 - Authentication Flaw Could Allow Unauthorized Users To >>>> Authenticate To SMTP Service >>>> http://www.microsoft.com/technet/security/Bulletin/MS02-011.mspx >>>> >>>> MS03-046 - Vulnerability in Exchange Server Could Allow Arbitrary > Code >>>> Execution (829436) >>>> http://www.microsoft.com/technet/security/Bulletin/MS03-046.mspx >>>> -- >>>> HTH - Please Reply to This Thread >>>> >>>> ~Robear Dyer (PA Bear) >>>> MS MVP-Windows (IE/OE), AH-VSOP >>>> >>>> AumHa Forums >>>> http://forum.aumha.org
- Next message: J.D.: "Security Catalog files in IE directory"
- Previous message: John: "Cannot save jpgs"
- In reply to: Ivan Bútora: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Next in thread: Hugh Candlin: "Re: April 13, 2004 - Today Microsoft released the following Security Bulletins"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
