Microsoft's July Security Bulletin Run Down

main

Microsoft's July Security Bulletin Run Down

xStainDx on 13 July 2004 - 19:35 · 38 comments & 2704 views

Advertisement (Why?)

Today Microsoft delivered a slew of Security Bulletins for its Microsoft Windows Operating System totaling seven in all. According to Microsoft many components of Windows have been affected.

You are advised to visit Windows Update and install the associated patches onto your system.

The list of Security Bulletins for your review are as follows:

View: Microsoft Technet Web Site

View: Microsoft Windows Update Web Site

News source: In-House

About the Author

Full name: Unknown
User name: xStainDx
Contact: via forum PM
Submissions: View All
More: View Profile

Post a comment · Send to friend Comments · There are 38 additional comments

(5 replies) #1 Jason on 13 Jul 2004 - 19:36

Not applicable to SP2 users.

#1.1 aristotle-dude on 13 Jul 2004 - 23:06

You're right but there are 4 new IE vulnerabilities which are applicable only to SP2 users. BTW. Why are you using a pre-release SP in a production environment? Isn't that irresponsible?

#1.2 Colonel_Angus on 14 Jul 2004 - 01:02

1. Microsoft - the only company who's service packs introduce brand new security flaws. (I bet they patent that)

2. The parent post never mentioned anything about a production environment.

#1.3 ubugmetoo on 14 Jul 2004 - 06:38

Mail

Agenda

Planner

QUOTE (#1.1)

Isn't that irresponsible?

I run beta browser, windows and drivers. I almost never have problems. why would it be irresponsible? Not like my computer controls nukes.

#1.4 krzystealth on 14 Jul 2004 - 07:07

QUOTE (#1.3)

I run beta browser, windows and drivers. I almost never have problems. why would it be irresponsible? Not like my computer controls nukes

When running betas, your chances of an being compromised by an exploit are actually reduced. So it might not be the fastest or most stable code, the script kiddies probably won't go after it. Sounds like a wise decision to me.

#1.5 Jason on 14 Jul 2004 - 08:16

QUOTE (#1.1)

You're right but there are 4 new IE vulnerabilities which are applicable only to SP2 users. BTW. Why are you using a pre-release SP in a production environment? Isn't that irresponsible?

Who said anything about production enviroment ?

(1 reply) #2 Hurmoth on 13 Jul 2004 - 19:38

Thanks for the info xStainDx!

#2.1 rogerroger on 14 Jul 2004 - 04:07

Can you paraphase the article xStainDx. The list of holes takes too much of my time to read! heheh

#3 xStainDx on 13 Jul 2004 - 19:43

Anytime just here looking out for you guys

#4 kitteny_berk on 13 Jul 2004 - 19:47

oooh, it's like an orgy of security holes

of course, what this does mean is that the OS gets securer and securerer, which is a good thing

#5 12Iceman on 13 Jul 2004 - 19:49

Dont download KB839645 (MS04-024 Vulnerability in Windows Shell Could Allow Remote Code Execution) if the filesize is greater than 3.9MB (currently its 91MB on windows update v5)

See this thread for details:
http://www.neowin.net/forum/index.php?show...0&#entry2479301

Link to correct patch
http://www.microsoft.com/downloads/details...&displaylang=en

(4 replies) #6 sumeet on 13 Jul 2004 - 19:54

StainD is a newsposter/???S?!?!?!??!

#6.1 xStainDx on 13 Jul 2004 - 19:57

No. I just contributed this by using the "Submit News" Link. Anybody can

#6.2 SHoTTa35 on 13 Jul 2004 - 19:58

"Contributed by xStainDx " he only submitted but good credit goes to him tho..

#6.3 xStainDx on 13 Jul 2004 - 20:02

Actually I did write the story myself. It's all original.

#6.4 sumeet on 13 Jul 2004 - 20:53

Go STD!!! lol, that will be your new nick name

(2 replies) #7 chacho on 13 Jul 2004 - 19:54

so there are seven bulletins, but only 5 fixes? or are some merged in the same update?

#7.1 xStainDx on 13 Jul 2004 - 19:57

Some of the bulletins probably share the files associated with each other.

#7.2 OptiPlex on 13 Jul 2004 - 20:50

And some of them are Win2k-specific

#8 paulhaskew on 13 Jul 2004 - 20:46

well thats good to know... Thanks for the info!

(2 replies) #9 OptiPlex on 13 Jul 2004 - 20:49

Annoying OE bug creating a file named ~ is FIXED!!!!!!!!!!11111eleven

#9.1 Mean Mr Mustard on 14 Jul 2004 - 00:33

Well...that only took 15 months to fix!

But I'm not complaining, that damn magical "~" file creation used to drive me nuts!

#9.2 denzilla on 14 Jul 2004 - 04:50

LOL...Always wondered what the hell that file was.

#10 cheesegoduk on 13 Jul 2004 - 21:41

Sigh, Time to warm up the SUS server again for another massive patching spree before the summer hoilday's(School Enviroment)

#11 kiddingguy on 13 Jul 2004 - 22:41

Kinda a lot 5 critical updates, but than again... if it makes XP more safe who am I to complain about that?

Hoping that SP2 will be a lot safer and requires a few less patches... ah well... I have cable anyhow.

(2 replies) #12 empty on 13 Jul 2004 - 22:55

one of them appearts to be 91mb, anyone else seeing thus?

#12.1 xStainDx on 13 Jul 2004 - 22:58

we think its a bug in WUv5 , use WUv4.

v4.windowsupdate.microsoft.com

#12.2 shao on 13 Jul 2004 - 23:01

yeah, response number 5 did.. ;-)

(1 reply) #13 olegator on 13 Jul 2004 - 23:38

#13.1 neufuse on 14 Jul 2004 - 01:28

it's called don't use beta software for updateing... that is an error, the file listed is corrupted and doesn't work right to start with, the real file is under 4MB

#14 gdub2611 on 14 Jul 2004 - 00:10

Well, i'm happy because after about a month of the BITS update not working it is on v4 and works for me! The downside? I went on v5 of Windows Update and apparently my CD Key is invalid. I must admit, I can't even remember myself if it's valid or not. I know I have a legit version of windows lying around somewhere

#15 Mister Lamar on 14 Jul 2004 - 00:49

Windows Updates

#16 chronikdork on 14 Jul 2004 - 01:19

Not another hole in IIS 4...I wonder if MS realizes that no NT servers are running IIS 4. Mine runs Apache. IIS 4 itself is hole in the NT 4 OS.

(2 replies) #17 jefexp on 14 Jul 2004 - 01:27

I show no updates? Is it because I am running sp2? I assume many people on the board here are, but it seems most are getting these updates.

#17.1 neufuse on 14 Jul 2004 - 01:30

yes, SP2 already takes care of these.. so you should see nothing

#17.2 jefexp on 14 Jul 2004 - 02:37

silly question then...why did it take so long to come out with these patches / fixes if MS already knew about them (enough to incorporate them in SP2)????

#18 rogerroger on 14 Jul 2004 - 04:10

LOL. 91mb patch. The boys at MS are laughing all the way home for the suckers who downloaded that! HARHARHAR.

#19 R-Style on 14 Jul 2004 - 09:46

It's time for a new IE Browser!!!!!!!

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)