|
 |
|
 |
| Tuesday, February 07, 2012
|
| Register Login |
 |
|
|
|
|
Users currently online
|
 |
|
|
|
 |
Membership: |
 |
Latest:
kevin |
 |
New Today:
0 |
 |
New Yesterday:
0 |
 |
Overall:
56 |
 |
People Online: |
 |
Visitors:
3 |
 |
Members:
0 |
 |
Total:
3 |
Online Now:
|
|
|
|
|
|
|
|
|
|
Welcome to the Viruswarning forums. All your original content has been ported to the new forums as well as new content and additional opportunities to interact with the authors of Viruswarn.com. You can always access old content at www.leedrake.com/forum . You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....
But at least it's all here.
Enjoy!
|
|
|
|
|
|
Viruswarn Forums
|
|
|
|
|
| You are not authorized to post a reply.
|
|
| Author |
Messages |
|
Lee Drake
Posts:238
 |
| 08/09/2005 10:12 PM |
|
| What It Is
It's the monthly "Tuesday update" from Microsoft featuring more fun and goodness from Bill. There are two key critical windows/IE updates this month one in the JView control and one in Windows XP's built in Color Management software. In addition there is the usual update for Outlook's spam filter and the "malicious software removal tool" that runs when you download updates. The vulnerabilities that are patched are:
MS05-037 - a vulnerability in a Javascript control that could allow a malicious user to execute code on your machine when browsing to a website, email or other html based item that invokes the control. The update makes this control inaccessible from Internet Explorer. This affects all versions of Windows including NT, 2000, 2003, and Windows 9X.
Update rollup for Windows 2000 SP4 - this is a collection of all hotfixes for Windows 2000 SP4 in one place. If you have Windows 2000 we highly recommend applying these patches to ensure you have the best possible patches applied.
MS05-036 - A vulnerability in how color management information files are processed by Windows XP, 2000, 2003, and Windows 9X/ME could allow a malicious website or other html based source to execute code remotely on your machine, gaining access to it.
MS05-035 - A vulnerability in MS Word could allow a carefully crafted word file to install software on your machine. This only affects Office versions 2000, XP, and Microsoft Works. Office 2003 is not affected by this vulnerability.
What should you do (NOTE: Instructions have changed READ CAREFULLY!)
If you are using Windows versions other than XP you should do a windows update as usual at http://windowsupdate.microsoft.com Choose the "Custom install" and be sure all critical patches are selected, and review the non-critical and driver patches to see if any are applicable to your system. We don't advise updateing to the new update.microsoft.com site until it's been more thoroughly explored in these alternate operating systems. If you are on one of these systems you should be planning to move to an XP system sometime in the next year, as support will be running out for these older OS's. To receive the word update you should visit (Separately) http://officeupdate.microsoft.com and install the office updates indicated there.
If you are using Windows XP we would advise that you move from the windowsupdate.microsoft.com site to the new http://update.microsoft.com site. This site will install a new activeX control on your system and will update Windows, IE and Office all from one site. It integrates the two update processes together. Note that this means you may need to have your OFFICE XP/2000/2003 installation disk ready if you have office installed on your system - some office updates require you to insert the installation CD. Follow the installation prompts, being aware that you may need to approve new ActiveX controls from the yellow notification bar at the top of your screen on first use of the http://update.microsoft.com site.
Further References
Microsoft Windowsupdate site: http://windowsupdate.microsoft.com
Microsoft Update site (new): http://update.microsoft.com
Microsoft security notices: http://www.microsoft.com/security
MS05-035 - Word vulnerability - http://www.microsoft.com/technet/security/Bulletin/MS05-035.mspx
MS05-036 - Color Management - http://www.microsoft.com/technet/security/Bulletin/MS05-036.mspx
MS05-037 - JView control vulnerability - http://www.microsoft.com/technet/security/Bulletin/MS05-037.mspx
This concluded this viruswarning notice.
Lee Drake
Aztek Computer Solutions, Inc.
274 Goodman Street North Suite B269
Rochester, NY 14607
www.azcomputer.net
ldrake@azcomputer.net Phone: 585-242-2060
Fax: 585-242-9441
Cell: 585-509-0284
|
|
|
|
|
|
| You are not authorized to post a reply. |
|
|
|
ActiveForums 3.6
|
|
|
|
|
|
|
|
|
|
|
|