|
Microsoft Issues Another Critical Update
by Arie Slob
Hello Windows users,
Microsoft issued a patch for several versions of Microsoft Windows, because they contain a flaw in the Remote Procedure Call (RPC) protocol. There are three identified vulnerabilities in the part of RPCSS Service that deals with RPC messages for DCOM activation— two that could allow arbitrary code execution and one that could result in a denial of service.
This is an update to (and supersedes) the Buffer Overrun In RPC Interface Could Allow Code Execution fix issued last July, the flaw that was exploited by the MSBlaster worm.
Now, I would strongly urge you to install this update as soon as possible. A new worm using the holes patched by this latest update will come calling on us pretty soon. According to some reports, code sniplets exploiting the vulnerability are already being shared on the Internet, so it is just a matter of time till some unscrupulous individual incorporates the code into a worm.
More details on the update below.
You have been warned!
Microsoft Security
Buffer Overrun In RPCSS Service Could Allow Code Execution
Microsoft issued a patch for several versions of Microsoft Windows, because they contain a flaw in the Remote Procedure Call (RPC) protocol. There are three identified vulnerabilities in the part of RPCSS Service that deals with RPC messages for DCOM activation— two that could allow arbitrary code execution and one that could result in a denial of service.
Severity Rating: Critical
Affected Software Versions
- Microsoft Windows NT 4.0 Workstation, Server® 4.0, and Server® 4.0, Terminal Server Edition
- Microsoft Windows 2000
- Microsoft Windows XP
- Microsoft Windows Server 2003
More...
Microsoft Updates IE6
Microsoft has released a number of updates for Internet Explorer 6 Service Pack 1, fixing a number of flaws:
- Internet Explorer May Shut Down Unexpectedly If You Have Set Windows and Buttons to Windows XP Style
- Slow Performance When You Use Internet Explorer 6 SP1 to View MIME Type File Attachments
- Web Page Does Not Load Correctly When You Open a Page That Contains Gzip-Encoded Content
- Outlook Express Does Not Use 3DES to Encrypt Mail When the Recipient's Capabilities Are Not Known
More Details.
Rose City Software
 Academic Flashcards 3.0 is the recently enhanced study tool, to facilitate setting up FlashCard study lists for a wide range of subjects. Create unlimited lists of flashcards on any subject yourself, or use one of our many free downloadable databases. Flashcards can be studied by manually clicking thru the cards or using an automatic timer set to any chosen interval, either in random or alphabetical order. Mark cards completed to revise/rehearse/recall remainder cards only.
Academic Flashcards also includes integration with Text to Speech and your Flashcards can now be read out by the Microsoft agent characters.
More Info - Trial Version [3.5 MB]
Web Site Updates
These pages were added/updated in the past two weeks. Information on previously updated/added pages is available on the What's New? page for 1 month.
InfiniSource.com
Added: Using Your RSS News Reader
Added: RSS News Feeds Bring the News to You
RoseCitySoftware.com
Updated: Courier 3.5 build 1088 released
Updated: Registry First Aid v3.1.1 released
Windows-Help.NET
Added: Internet Explorer 6.0 SP1 Update: Slow Performance When You Use Internet Explorer 6 SP1 to View MIME Type File Attachments
Added: Web Page Does Not Load Correctly When You Open a Page That Contains Gzip-Encoded Content
Added: Internet Explorer 6 SP1 Update: Outlook Express Does Not Use 3DES to Encrypt Mail When the Recipient's Capabilities Are Not Known
Added: Microsoft Security: Buffer Overrun In RPCSS Service Could Allow Code Execution
Windows XP
Added: Internet Explorer 6 SP1 Update: Internet Explorer May Shut Down Unexpectedly If You Have Set Windows and Buttons to Windows XP Style
Added: Microsoft Releases Threats and Countermeasures Guide
Updated: Windows Update Problems
|
Highlights
Extra! Extra! Read All About it!
Part I: RSS News Feeds Bring the News to You
Part II: Using Your RSS News Reader
Microsoft Releases Threats and Countermeasures Guide
Recently, Microsoft released a "Threats and Countermeasures Guide" for Windows Server 2003 and Windows XP.
The Threats and Countermeasures Guide contains detailed information about relevant security settings that can be configured on Microsoft Windows Server 2003 and Windows XP. The guide details the different threats, potential countermeasures, and the potential impact of configuring these settings.
You can download the Threats and Countermeasures Guide from the Microsoft Web site [1.87 MB], or read the Guide on-line on the Microsoft TechNet Web site.
REMINDER: Windows-Help.NET Newsletter Summer Schedule
The next newsletter will be published on October 4th.
Windows 98 Tips
Here is a list of some 40+ tips to customize your Windows 98 experiance:
Fine Tune Windows 98
Tip: How to Enlarge the Size of the Text on Web sites
If you find the text on a Web site too small for comfortable reading, you may not realize how easy it is to change this if you are using Microsoft Internet Explorer.
Read Full Article
Tell a friend about this Newsletter!
Need Help with Windows? Ask your questions here!
FREE Software!
Our Web Sites
Windows-Help.NET
WindowsBBS.com
InfiniSource.com
Rose City Software
Subscribe Free
| 
20 Sep. 2003, Vol 6 No. 31
