Re: MSN Messenger Security Update 838512
From: mae (agrannie_at_notemail.msn.com)
Date: 03/12/04
- Next message: mae: "Re: Microsoft .NET Framework version 1.1"
- Previous message: Martin C: "Re: XP Home keeps shutting down"
- In reply to: Porch Monkey: "MSN Messenger Security Update 838512"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 12 Mar 2004 04:58:26 -0600
You should install it.
As per the bulletin between you and another:
A vulnerability results because of the method used by MSN Messenger to handle a file request between two MSN Messenger accounts.
The update removes the vulnerability by modifying the handling of file requests by MSN Messenger.
A firewall would not have any bearing.
Do you want all your messenger contacts to possibly be able to read your files?
The attacker could access files that the user had read access to.
the attacker would have no way to edit or change the files
If you have all others blocked the attacker's messenger account must be on the user's allow list to exploit the vulnerability.
mae
-----------------------------------------------------------
"Porch Monkey" <prchMnky@webtv.net> wrote in message news:10515-4050144F-160@storefull-3238.bay.webtv.net...
| Just a few questions, trying to figure out if this update is really
| necessary or not.
|
| http://www.microsoft.com/technet/security/bulletin/ms04-010.mspx
|
| Does the user have to give the "attacker"
| permission to start a conversion for the said attacker to exploit this
| flaw? In other words wouldn't you know someone is using the Messenger,
| the attacker could not use the flaw just because you were simply online
| correct?
|
| Will having a good firewall also prevent this attack?
|
| Thanks in advance!!
|
| Monkey
|
- Next message: mae: "Re: Microsoft .NET Framework version 1.1"
- Previous message: Martin C: "Re: XP Home keeps shutting down"
- In reply to: Porch Monkey: "MSN Messenger Security Update 838512"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
