Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security NTBugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Updates incl in 2003 SP1

from [Jay Sudowski - Handy Networks LLC] Network Security [Permanent Link]
Subject: Re: Updates incl in 2003 SP1
Date: Sun, 8 May 2005 19:16:33 -0600 
Are there any other "hidden" list of fixes included in SP1?
http://support.microsoft.com/kb/824721 indicates that both 830381 and
838306 are NOT included, but both will not install under 03 SP1.

830381 indicates that dns.exe will have a file version of 5.2.3790.90,
and the version that ships with 03 SP1 is 5.2.3790.1830.  Am I to assume
that .90 is greater than .1830 or that version "1830" is greater than
version "90".

838306 indicates bersion 4.0.8704.0 or greater, and 03 SP1 includes
4.0.9025.0, but one the couple of machines I'm running SP1 on, I have
issues the are very similar to the issues we had with 03 before 838306
was installed.  Further confusing the issue, when I try to run this
updater under 03 SP1, it indicates that 837001 is required, but this
hotfix is already included with SP1 per
http://www.microsoft.com/technet/security/prodtech/windowsserver2003/sp1
.mspx.

I have been on hold for about 40 minutes trying to reach PSS and was
told by the operator that no one was in the queue ahead of me - right.
Grr ...

Let me re-iterate my initial question: Are there any other "hidden" list
of fixes included in SP1?  The mis-information provided by MS is making
me nuts.

-Jay

-----Original Message-----
From: Windows NTBugtraq Mailing List
[mailto:NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM] On Behalf Of Craig Williams
Sent: Wednesday, April 06, 2005 3:13 PM
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: Updates incl in 2003 SP1

I was surprised when I reviewed the "Windows Server 2003 Service Pack 1
list of updates" @ http://support.microsoft.com/kb/824721 and found
nearly
all of the security hotfixes we've deployed in the past 2 years were
missing.

Thanks to my Microsoft TAM who pointed out there is another page for
only
the security related hotfixes that are included with SP1.
http://www.microsoft.com/technet/security/prodtech/windowsserver2003/sp1
.mspx

I could not find any links to this page from either the SP1 home or the
Server 2003 home.

--
NTBugtraq Editor's Note:

Most viruses these days use spoofed email addresses. As such, using an
Anti-Virus product which automatically notifies the perceived sender of
a message it believes is infected may well cause more harm than good.
Someone who did not actually send you a virus may receive the
notification and scramble their support staff to find an infection which
never existed in the first place. Suggest such notifications be disabled
by whomever is responsible for your AV, or at least that the idea is
considered.
--

--
NTBugtraq Editor's Note:

Most viruses these days use spoofed email addresses. As such, using an 
Anti-Virus product which automatically notifies the perceived sender of a 
message it believes is infected may well cause more harm than good. Someone who 
did not actually send you a virus may receive the notification and scramble 
their support staff to find an infection which never existed in the first 
place. Suggest such notifications be disabled by whomever is responsible for 
your AV, or at least that the idea is considered.
--
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: Updates incl in 2003 SP1, Jay Sudowski - Handy Networks LLC <=
Previous by Date:  Windows (XP, 2k3, Longhorn) is vulnerable to IpV6 Land attack., Konrad Malewski
Next by Date:  Announcement: The Web Security Mailing List, contact
Previous by Thread:  Windows (XP, 2k3, Longhorn) is vulnerable to IpV6 Land attack., Konrad Malewski
Next by Thread:  Announcement: The Web Security Mailing List, contact
Indexes:  [Date] [Thread] [Top] [All Lists]