-=PCTechTalk=- Re: does anyone know ???

• From: "Faythe & Al" <rem41mag@xxxxxxxxxx>
• To: <PCTechTalk@xxxxxxxxxxxxx>
• Date: Thu, 21 Aug 2003 11:17:18 -0500

Okay, now I am confused !
I think I remember seeing them on this list, but I also got them directly. I 
think I signed up for MS security emails, too ...
what's a poor girl to do ????
Faythe
----- Original Message ----- 
From: Grant Karpik 
To: pctechtalk@xxxxxxxxxxxxx 
Sent: Thursday, August 21, 2003 2:46 AM
Subject: -=PCTechTalk=- Re: does anyone know ???


If they were the messages that I forwarded to the list they came to me from 
Microsoft as 
I'm on a Microsoft Security email list and I forwarded them to the list. They 
are legit.

as for needing the patches, the messages list what software is affected and the 
severity 
of the problem discussed.

Also, I've noticed that sometimes I receive these messages before the patches 
are 
placed on the Windows update site (and sometimes they are *not* placed on the 
update 
site at all) but they always have a link to the appropriate Microsoft site 
which has links to 
a direct download of the patch in question.


On 20 Aug 2003 at 20:59, Faythe & Al wrote:

> I received both these 'critical updates & revised editions' today ... I
> went to the MS update site & neither of these were listed. ( see below)
> My question is, because of the spoofing ( if correct term) of email
> addys, are these really from microsoft & do I need to install them? I
> currently run OS M.E. ( and get enough grief from that, I don't want to
> invite more) and I am not in a position to get a new computer. thanks in
> advance, Faythe
> 
> - ----------------------------------------------------------------------
> Title:      Unchecked Buffer in DirectX Could Enable System
>             Compromise (819696)
> Released:   23 July 2003
> Revised:    20 August 2003 (version 2.0)
> 
> Software:   Microsoft DirectX(r) 5.2 on Windows 98
>             Microsoft DirectX 6.1 on Windows 98 SE
>             Microsoft DirectX 7.1 on Windows Millennium Edition
>             Microsoft DirectX 7.0 on Windows 2000
>             Microsoft DirectX 8.0, 8.0a, 8.1, 8.1a, and 8.1b when
>              installed on Windows 98, Windows 98 SE, Windows
>             Millennium Edition or Windows 2000
>             Microsoft DirectX 8.1 on Windows XP or
>              Windows Server 2003
>             Microsoft DirectX 9.0a when installed on Windows 98,
>              Windows 98 SE, Windows Millennium Edition (Windows Me),
>              Windows 2000, Windows XP, or Windows Server 2003
>             Microsoft Windows NT 4.0 Server with either Windows
>              Media Player 6.4 or Internet Explorer 6 Service Pack 1
>              installed.
>             Microsoft Windows NT 4.0, Terminal Server Edition with
>              either Windows Media Player 6.4 or Internet Explorer 6
>              Service Pack 1 installed.
> 
> Impact:     Allow an attacker to execute code on a user's system
> Max Risk:   Critical
> Bulletin:   MS03-030
> ........................................................................
> .... ............................. Title: Unchecked Buffer in MDAC
> Function Could Enable System
>        Compromise (Q326573)
> Released:   31 July 2003
> Revised:    20 August 2003 (version 2.0)
> Software:   Microsoft Data Access Components 2.5
>             Microsoft Data Access Components 2.6
>             Microsoft Data Access Components 2.7
> Impact:     Run code of the attacker's choice.
> Max Risk:   Critical
> 
> Bulletin:   MS02-040
> 
> Microsoft encourages customers to review the Security Bulletin at:
> http://www.microsoft.com/technet/security/bulletin/MS02-040.asp
> http://www.microsoft.com/security/security_bulletins/MS02-040.asp


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

"A good end cannot sanctify evil means; nor must we ever do evil that good 
may come of it"

...William Penn, 1683

Grant Karpik
gkarpik@xxxxxxxxx

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


To unsub or change your email settings:
//www.freelists.org/webpage/pctechtalk

To access our Archives:
http://groups.yahoo.com/group/PCTechTalk/messages/
//www.freelists.org/archives/pctechtalk/

For more info:
//www.freelists.org/cgi-bin/list?list_id=pctechtalk




---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.512 / Virus Database: 309 - Release Date: 8/19/2003

To unsub or change your email settings:
//www.freelists.org/webpage/pctechtalk

To access our Archives:
http://groups.yahoo.com/group/PCTechTalk/messages/
//www.freelists.org/archives/pctechtalk/

For more info:
//www.freelists.org/cgi-bin/list?list_id=pctechtalk

• Follow-Ups:
  • -=PCTechTalk=- Re: does anyone know ???
    • From: kg6ocz
  • -=PCTechTalk=- Re: does anyone know ???
    • From: Grant Karpik

Other related posts:

• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???
• » -=PCTechTalk=- Re: does anyone know ???

1. Home
2. pctechtalk
3. Archive
4. 08-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---