The W
Views: 99863718
Main | FAQ | Search: Y! / G | Calendar | Color chart | Log in for more!
20.10.14 1941
The W - Internet & Computers - Microsoft released critical security patches this Tuesday
This thread has 7 referrals leading to it
Register and log in to post!
Thread rated: 6.93
Pages: 1
(864 newer) Next thread | Previous thread
User
Post (7 total)
Guru Zim
SQL Dejection
Administrator








Since: 9.12.01
From: Bay City, OR

Since last post: 7 days
Last activity: 4 hours
AIM:  
#1 Posted on | Instant Rating: 8.81
If you are running a machine with IE on it, you are most likely affected. This is a buffer exploit on JPG pictures, so you could get hit just by visiting a website where a user could post a picture.

That could be any message board you visit.

If you haven't already patched, I recommend visiting Windows Update and Office Update today.



Willful ignorance of science is not commendable. Refusing to learn the difference between a credible source and a shill is criminally stupid.
Promote this thread!
DJ FrostyFreeze
Knackwurst








Since: 2.1.02
From: Hawthorne, CA

Since last post: 43 days
Last activity: 1 day
#2 Posted on | Instant Rating: 4.95

I downloaded SP2 for XP last night, but I chickened out at the last second & I havent installed it yet. I've heard from some people that it's a good thing, but I've heard from other people that it is the root of all evil.

Anyone care to share their experiences, or maybe try to talk me into/out of installing it?




License to chill
-The thread killer
Roy.
Pepperoni








Since: 25.2.04
From: Keystone State

Since last post: 2355 days
Last activity: 824 days
#3 Posted on | Instant Rating: 5.54
I didn't do much for my computer (I already have firewall program), but my naive side told me that I needed it for my computer. Of course, then IE stopped working for me on numerous websites. Maybe this patch will fix it? I'm convinced that there's a connection between SP2 and IE no longer working on my computer.
Guru Zim
SQL Dejection
Administrator








Since: 9.12.01
From: Bay City, OR

Since last post: 7 days
Last activity: 4 hours
AIM:  
#4 Posted on | Instant Rating: 8.81
Remember, SP2 is a different patch than the JPG patch. XP SP2 does not fix that vulnerability.



Willful ignorance of science is not commendable. Refusing to learn the difference between a credible source and a shill is criminally stupid.
Merc
Potato korv








Since: 3.1.02
From: Brisbane, Australia

Since last post: 1286 days
Last activity: 1264 days
#5 Posted on | Instant Rating: 4.05
    Originally posted by DJ FrostyFreeze

    Anyone care to share their experiences, or maybe try to talk me into/out of installing it?


I installed SP2 a couple of weeks ago. The worst thing I can say about it so far is it bugs me to switch to Automatic Updates. It really seems to have had very little, if any, negative impact on my system. I browse mostly with Mozilla, but haven't had any IE worries.
Alessandro
Lap cheong








Since: 2.1.02
From: Worcester MA

Since last post: 81 days
Last activity: 3 days
#6 Posted on | Instant Rating: 3.04
Buuuuut, this only affects people who use IE as their default browser ... right?





Alessandro "Hercules" Boondy

Just so you guys know: 75% of this crap [you read on the internet] is made up, either by the writer, or the wrestler the writer is getting the dirt from. Just so you know. -- Statement by "Tammy Sytch", from Hyatte's Dec. 29th column ... Lest we forget.





Guru Zim
SQL Dejection
Administrator








Since: 9.12.01
From: Bay City, OR

Since last post: 7 days
Last activity: 4 hours
AIM:  
#7 Posted on | Instant Rating: 8.81
    Originally posted by Alessandro
    Buuuuut, this only affects people who use IE as their default browser ... right?




Actually, no. There are a ton of affected apps.

Here's the notification from last week: (interestingly, it does not list XP SP2 as affected, yet I've read elsewhere that it was.)


Critical Security Bulletins
===========================

MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow
Code Execution (833987)

- Affected Software:

- Windows XP and Windows XP Service Pack 1
- Windows XP 64-Bit Edition Service Pack 1
- Windows XP 64-Bit Edition Version 2003
- Windows Server 2003
- Windows Server 2003 64-Bit Edition

- Office 2003
- Office XP Service Pack 3
- Visio 2003 (All versions)
- Visio 2002 Service Pack 2 (All versions)
- Project 2003 (All versions)
- Project 2002 Service Pack 1 (All versions)

- Review bulletin MS04-O28 for information about
these affected operating systems and applications:

- Windows NT Workstation 4.0 Service Pack 6a
- Windows NT Server 4.0 Service Pack 6a
- Windows NT Server 4.0 Terminal Server Edition
Service Pack 6
- Windows 2000 Service Pack 2
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4

- The Microsoft .NET Framework, version 1.0
- The Microsoft .NET Framework, version 1.1
- Internet Explorer 6 Service Pack 1

- Picture It! 2002 (All versions)
- Greetings 2002
- Picture It! version 7.0 (All versions)
- Digital Image Pro version 7.0
- Picture It! version 9 (All versions)
Including Picture It! Library)
- Digital Image Pro version 9
- Digital Image Suite version 9
- Producer for Microsoft Office PowerPoint
(All versions)

- Visual Studio 2003 .NET
- Visual Basic .NET Standard 2003
- Visual C# .NET Standard 2003
- Visual C++ .NET Standard 2003
- Visual J# .NET Standard 2003
- Visual Studio 2002 .NET
- Visual Basic .NET Standard 2002
- Visual C# .NET Standard 2002
- Visual C++ .NET Standard 2002
- The Microsoft .NET Framework, version 1.0 SDK
- Platform SDK Redistributable: GDI+

- Review the FAQ section of bulletin MS04-O28 for
information about these operating systems:

- Microsoft Windows 98
- Microsoft Windows 98 Second Edition (SE)
- Microsoft Windows Millennium Edition (ME)

- Impact: Remote Code Execution
- Version Number: 1.0


(edited by Guru Zim on 20.9.04 1258)


Willful ignorance of science is not commendable. Refusing to learn the difference between a credible source and a shill is criminally stupid.
Thread rated: 6.93
Pages: 1
Thread ahead: Wireless problems and tech support
Next thread: JPEG exploit code released
Previous thread: Windows Code Name: Longhorn
(864 newer) Next thread | Previous thread
I forgot all about EWR. How did it end up doing once it was pay to play? I can't imagine it'd be much fun with ranomly named wrestlers. I seem to remember at least one of the WWE video games taking this whole idea and making a 'GM Mode' out of it.
The W - Internet & Computers - Microsoft released critical security patches this TuesdayRegister and log in to post!

The W™ message board

ZimBoard
©2001-2014 Brothers Zim

This old hunk of junk rendered your page in 0.072 seconds.