Microsoft Security Patches: June 2005
Posted by lardiop on 14 June 2005 - 19:02 · 50 comments & 8878 views
About the Author
Full name: Unknown
Forum name:
lardiop
Contact: via forum PM
Submissions: Normal · Headline
Full name: Unknown
Forum name:
lardiopContact: via forum PM
Submissions: Normal · Headline
Slashdot It!
Submit to reddit
Submit to blinklist
Bookmark on del.icio.us
Add to furl
Share on Facebook
Add to Windows Live
Add to Google- Advertisement
-
-
#1 Posted by Steven on 14 Jun 2005 - 19:03
- all of these are found in our "Security Bulletin, Patches & Updates" forum.
-
#2 Posted by xMorpheousx416 on 14 Jun 2005 - 19:08
- What time do they normally release these during the set launch day? Cuz, as of 2:10pm CST, there is still no notification that they've been released.
-
(1 reply)
#3 Posted by edgrale on 14 Jun 2005 - 19:09
- Found them on Windows Update, clock is 10pm +2 GMT
-
#3.1 Posted by edgrale on 14 Jun 2005 - 19:13
- Security Update for Windows XP (KB89635
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB89642
Cumulative Security Update for Internet Explorer for Windows XP Service Pack 2 (KB883939)
Security Update for Windows XP (KB893066)
Windows Malicious Software Removal Tool - June 2005 (KB890830)
those 7 it wanted to install.
-
(7 replies)
#4 Posted by mysterious_w on 14 Jun 2005 - 19:14
- erk, I hate having to reboot my PC
I'll do it later tonight then -
#4.1 Posted by net-cruizer on 14 Jun 2005 - 20:23
- Yeah that few seconds of downtime must really suck eh?
-
#4.2 Posted by mysterious_w on 14 Jun 2005 - 21:52
- Hahaha, on this crappy PC?
Hohoho, few seconds, that's a good un'. -
#4.3 Posted by tiagosilva29 on 15 Jun 2005 - 00:56
- 2 minutes at least here
-
#4.4 Posted by skinnyjm on 15 Jun 2005 - 01:09
- Even 5 "whole" minutes is not too long when the word "critical" is used.
-
#4.6 Posted by Dazza on 15 Jun 2005 - 03:20
- I think Microsoft is running out of bad-sounding words to stress the importance of a patch. They need something like "Fatal" or "Imminent Doom" or "OMFGWTFBBQ"
-
#4.7 Posted by Darkness2k on 15 Jun 2005 - 08:19
- "Danger! Danger! Hackers Among Us!"
Nah.. that's a bit too far fetched
-
(3 replies)
#5 Posted by [DGS] on 14 Jun 2005 - 19:17
- Paul, can you list which ones are for XP ?
Last edited by 18091 on 15 Jun 2005 - 00:54 -
#5.1 Posted by edgrale on 14 Jun 2005 - 19:19
- Security Update for Windows XP (KB89635
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB89642
Cumulative Security Update for Internet Explorer for Windows XP Service Pack 2 (KB883939)
Security Update for Windows XP (KB893066)
Windows Malicious Software Removal Tool - June 2005 (KB890830) -
#5.2 Posted by lardiop on 14 Jun 2005 - 19:19
- Just run windows update or view the article on MS' site.
I believe a completely patched XP SP2 system will get 7 new items in WU today. (6 Patches and the malicious software removal tool)
Edit: lol, see reply above
-
#6 Posted by bush on 14 Jun 2005 - 19:17
- loading down
-
(10 replies)
#7 Posted by tahoma on 14 Jun 2005 - 19:33
- bah this fcuks up the tcp/ip hack again. anyone got a new patch for it yet?
-
#7.1 Posted by Jugalator on 14 Jun 2005 - 20:09
- Bah, try it out without the hack and see if you notice much of a difference over the course of a week of hardcore P2P'ing or so.
I have no trouble downloading and uploading at over 500 kiloBYTES per second on my connection without the hack, and that's indeed using tons of connections with P2P apps like BT clients. So THAT part is at least seemingly not an issue. -
#7.2 Posted by tahoma on 14 Jun 2005 - 20:18
- well i tried it now and many times before. with some torrents going its near impossible to surf
-
#7.3 Posted by edgrale on 14 Jun 2005 - 20:23
- that might be because your upload stream is choking, limit your upload to 75% of the maximum.
-
#7.4 Posted by tahoma on 14 Jun 2005 - 20:29
- i know what im doing. it is at about 75% already, as i know setting it to high causes trouble. its all about the tcp/ip hack. dont u people notice the ridicolous slowdown in your surfing without a patched tcp/ip ? its particularly bad when starting a new torrent of course, due to all the new connections being made, it does get better, but nowhere near as good as with a patched tcp/ip. this happened last time ms 'fixed' the tcp/ip too. as soon as its patched all is good again. thats how it is on my system anyway, and ther must be a reason these patched exist
ironically its fedora core4 dvd that microsofts latest updates are slowing down -
#7.5 Posted by thenay on 14 Jun 2005 - 21:19
- Download this..
SP2 TCP Slowdown Fix
http://home.comcast.net/~optimizexp/Files/EvID4226Patch223d-en.zip
Got it from http://mywebpages.comcast.net/SupportCD/OptimizeXP.html
Works for me. I'm sure a new version will be out soon tho.
Also XP Antispy should have a new version to fix the TCP issue. -
#7.6 Posted by vacantmind on 15 Jun 2005 - 04:04
- tahoma, you're full of ****. You have no idea what you're talking about. In rare cases it does make a difference but the majority of the time it doesn't. The ONLY time it would rear it's head is when you first start a torrent but within a minute everything should be sorted out. Furthermore, your use of "u" to represent "you" makes you even more stupid.
-
#7.7 Posted by rseiler on 15 Jun 2005 - 06:39
- Which of these MS patches replaces tcpip.sys? Just with a cursory glance through the obvious suspects, I don't see which one it is.
vacantmind: Yet the Event Viewer continues to fill up with 4226 messages with heavy torrent activity on a system in which the file hasn't been tweaked. That's indicative of something. -
#7.8 Posted by Darkness2k on 15 Jun 2005 - 08:10
- I'm guessing: "http://www.microsoft.com/technet/security/Bulletin/MS05-019.mspx" Is the one that updates TCPIP.SYS
Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066) -
#7.9 Posted by rseiler on 15 Jun 2005 - 16:27
- Ah OK. The reason I didn't see it then is because 893066 isn't on the above list for some reason.
-
#7.10 Posted by Darkness2k on 15 Jun 2005 - 23:33
- Good point... I had that instead of the "MS05-031: Vulnerability in Microsoft Windows Interactive Training Could Allow Remote Code Execution (89845" update. Most likely as I don't have Interactive Training installed.
Granted I downloaded the 898458 hotfix manually anyway
-
#8 Posted by kirk26 on 14 Jun 2005 - 20:05
- Cool thanks!
-
#9 Posted by Jugalator on 14 Jun 2005 - 20:08
- OMG, all those critical holes were scary! :o
Thanks for the heads up anyway.
-
(4 replies)
#10 Posted by thenay on 14 Jun 2005 - 20:14
- After installing these updates, I go to Microsoft Update and while it scans my computer it crashes and reboots my pc
Anyone else getting this? -
#10.1 Posted by ThunderRiver on 14 Jun 2005 - 20:18
- If you had such problem, you should have told me. becuase Microsoft Update Beta has pretty much ended by now
-
#10.2 Posted by thenay on 14 Jun 2005 - 21:08
- I was a Microsoft Update Beta tester. It never happened until these updates were applied.
And who do you think you are telling me to tell you this before hand... lol..
If I want to tell anyone i'll make a bug report. -
#10.3 Posted by rseiler on 15 Jun 2005 - 06:57
- Not that the MS Update beta tested these updates. That's one of the giant flaws of that beta: they're more interested in testing the mechanism of generic updates and upgrades to the update site itself rather than the actual updates that will be affecting millions of people each month. They shouldn't wonder too hard why there are serious problem reports all over the boards practically any month there's more than one or two updates to be made.
-
#10.4 Posted by Darkness2k on 15 Jun 2005 - 08:17
- Any idea what its crashing on?
I've downloaded and installed the 7 updates (8 if you include the Office 2003 mail filter) on two seperate systems and MU still works afterwards.
-
#11 Posted by Meehowski on 14 Jun 2005 - 20:30
- Thanks................
Mike
-
(1 reply)
#12 Posted by bastawhiz on 14 Jun 2005 - 21:25
- "severe" is spelled as "sever"
-
(1 reply)
#13 Posted by eilegz on 14 Jun 2005 - 21:31
- i still dont know why i have to upgrade outlook for office 2003 if i dont have outlook installed i find this weird indeed
-
#13.1 Posted by Darkness2k on 15 Jun 2005 - 08:23
- It must think you still have part of Office 2003 installed still... I assume you have nothing in X
rogram FilesMicrosoft OfficeOFFICE11 (At least, no OUTLOOK.EXE) (X Being the drive you installed Office 2003 on)
-
#14 Posted by thollian on 14 Jun 2005 - 21:54
- can't access Windows Update...keeps coming up with some error...
-
#15 Posted by [bear] on 14 Jun 2005 - 22:06
- thanks!
-
#16 Posted by andsmith on 14 Jun 2005 - 22:17
- Microsoft releases updates on the second Tuesday of every month at 9am PST.
-
#17 Posted by Xenomorph on 15 Jun 2005 - 06:16
- the TCP/IP fix is a joke as far as i know. the change introduced in SP2 will only FIX more problems than it would cause.
leave the TCP/IP stack alone. i do tons of stuff with BT. sometimes w/20 active torrents. 500 connection limit. XP SP2 doesnt hurt that at all.
you may be comprimising your system stability by hacking/patching DLL files.
-
#18 Posted by Staind on 15 Jun 2005 - 07:10
- I turn on the auto update, but thanks all the same.
-
#19 Posted by Beast_4thHM on 15 Jun 2005 - 09:59
- Bah! the TCP/IP patch does work, just check your event viewer to see if you max your tcp/ip connections allowed
-
#20 Posted by tahoma on 15 Jun 2005 - 12:29
- for those interested, the xp-antispy tcpip patcher isnt working, but lvllords does. main site is down but mirrored here http://mitglied.lycos.de/lvllord/download-mirror.htm
for those not interested: this doesent apply to u, so no need to comment
-
#21 Posted by cool_guy6_06 on 15 Jun 2005 - 19:30
- any get a BSOD after a reboot? everytime i download and install the updates i get the BSOD then i have to reinstal windows again.
-
(1 reply)
#22 Posted by Cardinal on 18 Jun 2005 - 05:19
- These updates screwed up GTA SA on my pc. I removed them and voila, it works again. Just thought I'd share that in case someone else experiences the same.
-
#22.1 Posted by IntelliMoo on 17 Feb 2006 - 10:53
- lol
MS05-025: Cumulative Security Update for Internet Explorer (883939) Critical
Vulnerabilities exist in Internet Explorer, the most severe of these could allow an attacker to take complete control of an affected system.
MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution (896358) Critical
A vulnerability exists in HTML Help that could allow an attacker to take complete control of an affected system.
MS05-027: Vulnerability in SMB Could Allow Remote Code Execution (896422) Critical
A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. An attacker needs to authenticate to be able to exploit this vulnerability.
MS05-028: Vulnerability in Web Client Service May Allow Remote Code Execution (896426) Important
A vulnerability exists in the Windows Web Client Service that could allow an attacker to take complete control of an affected system.
MS05-029: Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179) Important
A cross-site scripting vulnerability exists in Outlook Web Access for Microsoft Exchange that could allow an attacker to run a malicious script in Outlook Web Access.
MS05-030: Cumulative Security Update for Outlook Express (897715) Important
A vulnerability exists in Outlook Express that could allow an attacker to take complete control of an affected system.
MS05-031: Vulnerability in Microsoft Windows Interactive Training Could Allow Remote Code Execution (898458) Important
A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. Microsoft Windows Interactive Training is not installed by default.
Moderate Threat
MS05-032: Vulnerability in Microsoft Agent Could Allow Spoofing (890046) Important
A vulnerability exists in Microsoft Agent that could enable an attacker to spoof trusted Internet content. An attacker first have to persuade a user to visit the attacker’s site to attempt to exploit this vulnerability.
MS05-033: Vulnerability in Telnet Client Could Allow Information Disclosure (896428) Important
A vulnerability exists in the Windows Telnet Client that could enable an attacker to retrieve unpredictable information from a system.
MS05-034: Cumulative Security Update for ISA Server 2000 (899753) Important
Vulnerabilities exist in Microsoft ISA Server 2000 that could allow circumvention of a packet filter and enable an attacker to retrieve unpredictable information from an ISA Server’s cache or from a system behind the ISA server .