Re: Homeland security

Beth,

If you're running XP SP1, Windows 2000, or Windows 2000 SP1, then download the update from the links on this web page :
http://www.microsoft.com/technet/security/Bulletin/MS06-040.mspx
Save it. Close the browser and install it.

More information on the exploitation of this vulnerability can be read here : http://blogs.technet.com/msrc/archive/2006/08/11/446078.aspx

MowGreen [MVP 2003-2006]
===============
*-343-* FDNY
Never Forgotten
===============


Beth wrote:

Can anyone help with the below issue. I can't seem to download what I need to.

thanks,


The following information was released by the Dept. of Homeland Security on Wednesday:



For Immediate Release Office of the Press Secretary Contact: 202-282-8010 August 9, 2006



The Department of Homeland Security (DHS) is recommending that Windows Operating Systems users apply Microsoft security patch MS06-040 as quickly as possible. This security patch is designed to protect against a vulnerability that, if exploited, could enable an attacker to remotely take control of an affected system and install programs, view, change, or delete data, and create new accounts with full user rights.



Windows Operating Systems users are encouraged to avoid delay in applying this security patch. Attempts to exploit vulnerabilities in operating systems routinely occur within 24 hours of the release of a security patch. This vulnerability could impact government systems, private industry and critical infrastructure, as well as individual and home users.



The flaw addressed in MS06-040 could let an anonymous attacker remotely commandeer a Windows PC without any user interaction. The flaw has some similarities to the Windows bug that enabled the notorious MSBlaster worm to spread in 2003. Both security vulnerabilities are related to a Windows component called "remote procedure call," which provides support for networking features such as file sharing and printer sharing.



Here is additional information on this security patch:



The patch applies to XP Home, XP Pro, Windows 2000, and Windows 2003 Server.



Users can obtain the Microsoft MS06-040 security patch at http://www.microsoft.com/technet/security/bulletin/ms06-040.mspx. It is recommend that home users go to Windows Update at http://update.microsoft.com and select “express” to install all critical security updates, including the MS06-040 security patch.



If you check the Add/Remove Programs list in Control Panel, and have the Show Updates box checked, this security patch shows up as “Security Update for Windows XP (KB921883)” on XP systems (once installed).



.

Relevant Pages

  • Re: Computer appears to be controlled by someone else
    ... a new way to increase your exposure to malware... ... install TWO ... > I suggest installing linux alongside windows just in case windows gets ...
    (microsoft.public.security.virus)
  • Re: Ping Grinder
    ... Change the caption on one of those items, so that you can tell which one your picking from the boot menu. ... Most of the install are in the respective WINDOWS and WINDOWS.0 folders, but there are a few files at the root of the partition. ...
    (alt.os.windows-xp)
  • Re: Ping Grinder
    ... virtual memory scratch file and would be unique to each os install. ...
    (alt.os.windows-xp)
  • IE6 Will not Install
    ... >>The software you are installing has not passed Windows ... >>822798 You Cannot Install Some Updates or Programs ... >>After the security patch is removed, ... >>the Windows Update Web site, ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: Installing Multiple OS
    ... > I need to install both Windows XP and Windows 98 on my ... would be to partition your driveroughly as follows: ... When you subsequently install WinXP, ... of the operating systems on the Primary Master hard drive, ...
    (microsoft.public.windowsxp.setup_deployment)