Multiple security updates October 2003 > Forums

Unanswered

Active Topics

Forums

Forums > Viruswarning Forum > Viruswarning archive

Subject: Multiple security updates October 2003

Email me when someone replies to this thread.

You are not authorized to post a reply.

Author

Messages

Lee Drake
Posts:238

10/18/2003 10:40 PM
What is it Microsoft has released a monthly patch set as of Wednesday 10/15 for multiple vulnerabilities in a variety of products. It appears that for the most part there is no negative affect from installing these patches. The most important ones to home users are: MS03-041 Vulnerability in Authenticode (Affects XP, 2000, NT, and 2003 Server (Does NOT affect Windows ME or 9X)) MS03-042 Buffer overflow vulnerability in Windows Troubleshooter ActiveX Control (Affects Windows 2000 users only) MS03-043 Buffer overrun in Windows Message Service (NOT Windows Messenger) could allow code execution (Affects NT, XP, 2000 and 2003 (Does not affect Windows ME or 9x) MS03-044 Buffer overrun in Windows help and support center (Affects Windows ME/9X, NT4, 2000, XP and Server 2003) MS03-045 Buffer overrun in listbox and combobox controls (Affects NT, 2000, XP, Server 2003 (Does NOT Affect Windows ME/9X) A couple of patches only affect system administrators that run Microsoft Exchange Server 2000 or 5.5: MS03-046 Vulnerability in SMTP port could allow arbitrary code execution (Exchange Server 2000 and Exchange server 5.5) MS03-047 Vulnerability in Exchange 5.5 outlook web access (Exchange server 5.5 only) Note that many of these vulnerabilities can be exploited remotely (IE through a user probing ports, sending emails to a target machine, or tempting a target machine into visiting a web page). Every single one of these is an important vulnerability and needs to be updated. What should you do For home users, run the critical updates at http://windowsupdate.microsoft.com or accept the critical updates when they appear in your system tray and prompt you to install them. If you for some reason you cannot load the update, check the individual download locations below. If you are running the Messenger Service you can shut it off by following the instructions I previously posted here (you should also patch just in case, but shutting it off completely removes the chance of any further problems). For Exchange administrators download the patch from the location below and install it according to the instructions. Because the SMTP vulnerability and the OWA vulnerability are allow an attacker to compromise your machine remotely it's especially important that these critical updates be applied as soon as possible. Exchange boxes are prime candidates for compromise because spammers can and will take control of them and use them to forward spam. Note that some sites have reported installing the Web Access patch has deactivated their web access and it can only be reinstated by rolling back the patch. Be sure you have a good backup and you test thoroughly after applying. Additional references For home users: http://www.microsoft.com/technet/security/bulletin/MS03-040.asp http://www.microsoft.com/technet/security/bulletin/MS03-042.asp http://www.microsoft.com/technet/security/bulletin/MS03-043.asp http://www.microsoft.com/technet/security/bulletin/MS03-044.asp http://www.microsoft.com/technet/security/bulletin/MS03-045.asp For Exchange 5.5 admins: http://www.microsoft.com/technet/security/bulletin/MS03-046.asp http://www.microsoft.com/technet/security/bulletin/MS03-047.asp For Exchange 2000 admins http://www.microsoft.com/technet/security/bulletin/MS03-046.asp This concludes this viruswarning announcement Lee Drake Aztek Computer Solutions, Inc. 274 N. Goodman St Suite B269 Rochester, NY 14607 the human side of computing Email: ldrake@azcomputer.net Web: www.azcomputer.net Office Phone: 585-242-2060 Fax number: 585-242-9441

You are not authorized to post a reply.

Forums > Viruswarning Forum > Viruswarning archive > Multiple security updates October 2003

ActiveForums 3.6