![[-US Flag-]](http://www.bpcomp.com/image/usflag.gif)
![[-Our Logo-]](http://www.bpcomp.com/image/bp_mli3.jpg)
| --Computer-- |
| Components |
| Garage Sale |
| Newsletter |
| Pentium Barebones |
|
Portable USB External HDs |
|
Removable HD Kits |
| Support |
| Systems |
| Web Pages |
| --Music-- |
| Keith Harden |
| R&B Music |
| MIDIs |
| MP3s |
|
Bobby Carlin Memorial |
| --My Stuff-- |
| Andrew's Page |
| Mike's Wedding |
| Racing |
| Champaign FFL |
| Home |
Internet Explorer
Netscape Navigator
Computers... Sales !! Service !! and Support !!
PHONE #: 217-352-6479
http://www.bpcomp.com
Microsoft didn't release any new Security Updates in December (12/9/03)
Although it did revise one of November's updates (MS03-051) 12/10/03
Visit our new Spyware Page
for advice and help with removing spyware and adware from your systems
Microsoft releases Security Updates on a monthly basis
The second Tuesday of the month
Therefore November's updates were all released 11/11/03
They include 3 updates for Windows, and 1 for Office products
Once again they've released a cumulative update for Internet Explorer
MS03-051 = 813360 - 11/11/03
Updated 12/10/03
Buffer Overrun in Front Page Server Extensions
Could Allow Code Execution
Windows 2000, XP, Office XP
Not affected, Windows Me, NT SP6a, Server 2003, Office 2003
Read the Security Bulletin MS03-051
MS03-050 = 831527 - 11/11/03
Vulnerability in Word and Excel
Could Allow Arbitrary Code to Run
Word 97, 98, 2000, Excel 97, 98, 2000, WorksSuite
Read the Security Bulletin MS03-050
MS03-049 = 828749 - 11/11/03
Updated 11/19/03
Buffer Overrun in Workstation Service
Could Allow Code Execution
Windows 2000, XP
Not affected, NT SP6a, Me, XP 64 bit, Server 2003
Read the Security Bulletin MS03-049
MS03-048 = 824145 - 11/11/03
Cumulative Update for Internet Explorer
Windows 98, Me, NT, 2000, XP, Server 2003
Read the Security Bulletin MS03-048
Great News! Microsoft is going to disable the Microsoft Messenger Service by default in the next realease of Windows XP.
The problem is we may have to wait 9 months for Service Pack 2
Read InfoWorld's story about these changes MS Turns Off Messenger
Tired of Pop-Up Ads many come through the Microsoft Messenger Service
AOL has been disabling this feature on many of their users systems
Read InfoWorld's story about this AOL Disables Messenger
Visit the folks at www.mynetwatchman.com for their WinPopUP Tester
Or visit Gibson Research Corp. grc.com
for their copy of Shoot The Messenger
And visit the folks at Security Pipeline for their info
and their new article on another Windows Messenger Service Vulnerability
See also Microsoft's Security Bulletin MS03-043 = 828035 listed below
October's seven updates were all released 10/15/03
NOTE: And Microsoft updated some of these on 10/22/03
NOTE: Microsoft updated MS03-041, MS03-042, and MS03-043 on 10/29/03
MS03-047 = 828489 - 10/15/03
Vulnerability in Exchange Server 5.5 Outlook Web Access
Could Allow Cross-Site Scripting Attack
Exchange Server 5.5
Read the Security Bulletin MS03-047
MS03-046 = 822363 - 10/15/03
Vulnerability in Exchange Server
Could Allow Arbitrary Code Execution
Exchange Server 5.5, Exhange 2000 Server,
Read the Security Bulletin MS03-046
MS03-045 = 824141 - 10/15/03
Buffer Overrun in ListBox and ComboBox Control
Could Allow Code Execution
NT 4.0, 2000, XP, Server 2003
Read the Security Bulletin MS03-045
MS03-044 = 825119 - 10/15/03
Buffer Overrun in Help and Support Center
Could Lead to System Compromise
Me, NT 4.0, 2000, XP, Server 2003
Read the Security Bulletin MS03-044
MS03-043 = 828035 - 10/15/03
Buffer Overrun in Messenger Service
Could Allow Code Execution
NT 4.0, 2000, XP, Server 2003
Read the Security Bulletin MS03-043
MS03-042 = 826232 - 10/15/03
Buffer Overflow in Troubleshooter ActiveX Control
Could Allow Code Execution
Windows 2000
Read the Security Bulletin MS03-042
MS03-041 = 823182 - 10/15/03
Vulnerability in Authenticode Verification
Could Allow Remote Code Execution
NT 4.0, 2000, XP, Server 2003
Read the Security Bulletin MS03-041
***MS03-040 = 828750 - 10/03/03
Cumulative Patch for Internet Explorer
"Object Type" Errors May Run Code of Attacker's Choice
Internet Explorer 5.01, 5.5, 6.0 and 6.0 for Server 2003
This Patch supercedes the previous one discussed in MS03-032
as additional flaws were found
Additionally Microsoft and security experts have recomended
changing your browser settings to Prompt Before Running ActiveX
Read the Security Bulletin MS03-040
Download locations for IE Patches
MS also recomends installing Windows Media Player Update
referenced in Knowledge Base article 828026
As with prior IE cumulative patches
MS03-004, MS03-015, MS03-020, and MS03-032
you will need to update HTML Help
referenced in KB article 811630
***MS03-039 = 824146 - 9/10/03
Buffer Overrun in RPCSS Services
Could Allow Code Execution
Windows NT 4.0, 2000, XP, Server 2003
Read the Security Bulletin MS03-039
Microsoft has uncovered additional flaws in the
the same service that allowed the Blaster Worm
(NOTE: The fix provided by this patch supersedes
the one included in Microsoft Security Bulletin MS03-026
Remember the Blaster Worm??? This is the same RPC service)
Once again you're not vulnerable if you use WIN 95, 98, or Me
Update Sept. 9, Microsoft Security Bulletin MS03-032
NOTE: See MS03-040 above, since this was updated again 10/03/03
Security Update for Microsoft Internet Explorer
this update was originally released 8/20/03
Microsoft sent an additional reminder suggesting users install this patch
Read Microsoft's Critical Update
An attacker could run programs on a user's computer
There's a different version of the patch for IE 5.01, 5.5 and 6
download and install the proper patch for your version
Use Microsoft's Windows Update Utility to get the proper one
Since August 18, it's been the Sobig.F Worm
We Highly Recomend All Users Update their Virus Definitions these days
Info about the MSBlaster Worm troubling users since 8/11/03
NOTE: This patch has been updated, see above MS03-039 09/10/03
NOTE: You're not vulnerable to this Worm if using WIN 95, 98, 98SE, or Me
The 2 most important things to do are:
1. Download and install the Patch
2. Run a cleaning tool
Symantec has a fix to remove it FixBlast
McAfee also has a tool to fix it Stinger
Read recent info about what to do from Microsoft
Microsoft Info
Microsoft FAQ's
Microsoft email (includes 4 steps for home users)
Find out if your system is vulnerable to the W32.Blaster.Worm
Microsoft's MS03-026 and MS03-039 Scanning Tool
(updated after MS03-039)
Need to patch your copy of Windows XP?
Download Microsoft's patch for 32 bit XP XP Patch
(Most end users have this version)
NOTE: This patch referenced in MS Security Bulletin MS03-039
and Knowledge Base Article 824146
supercedes the earlier release SB# MS03-026 and KB# 823980.
Use this newer one!
Visit Microsoft's download site for other versions
Additional helpful links:
Get the 6 easy steps to remove it from ZDNet
Another series of Microsoft Security Bulletins in August and September:
MS03-038 = 827104 - 9/03/03
Unchecked buffer in Microsoft Access Snapshot Viewer
Could Allow Code Execution
Access '97, Access 2000, Access 2002
Read the Security Bulletin MS03-038
MS03-037 = 822715 - 9/03/03
Flaw in Visual Basic for Applications
Could Allow Code Execution
VB for Applications is used in many Office products such as:
Access, Excel, Powerpoint, Project, Visio, Word, Works Suite,
MS Business Solutions Great Plains, eEnterprise, + Solomon,
Read the Security Bulletin MS03-037
MS03-036 = 827103 - 9/03/03
Buffer Overrun in WordPerfect Converter
Could Allow Code Execution
Office '97, 2000, + XP; Word '98; Frontpage 2000, + 2002;
Publisher 2000, + 2002, Works Suite 2001, 2002, + 2003;
Read the Security Bulletin MS03-036
***MS03-035 = 827653 - 9/03/03
Flaw in Microsoft Word
Could Enable Macros to Run Automatically
Word '97, 98, + 2002; Works Suite 2001, 2002, + 2003;
Read the Security Bulletin MS03-035
MS03-034 = 824105 - 9/03/03
Flaw in NetBIOS
Could Lead to Information Disclosure
Microsoft Data Access Components ver 2.5, 2.6, 2.7
NT 4.0 Server, NT 4.0 Terminal Server Edition, 2000, XP, Server 2003
Read the Security Bulletin MS03-034
MS03-033 = 823718 - 8/20/03
Unchecked Buffer in MDAC Function
could allow system compromise
Microsoft Data Access Components ver 2.5, 2.6, 2.7
Installs as part of WIN 98, Me, 2000, and XP
(MDAC ver. 2.8 part of WIN 2003 Server is not affected)
Read the Security Bulletin MS03-033
***MS03-032 = 822925 - 8/18/03
NOTE: See above MS03-040 updated 10/03/03
Cummulative Patch for Internet Explorer
could allow attacker to run code
Internet Explorer versions 5.01, 5.5, 6.0
Read the Security Bulletin MS03-032
MS03-031= 815495 - 7/23/03 Reminder in August
Cumulative Patch for SQL Server
for SQL Server 7.0, Server 2000, Desktop Engine (MSDE)
Read the Security Bulletin MS03-031
Another series of Microsoft Security Bulletins in July:
MS03-030 = 819616 - 7/23/03
Unchecked Buffer in DirectX
could allow system compromise
Versions of DirectX from 5.2 thru 9.0a
Read the Security Bulletin MS03-030
MS03-029 = 813293 - 7/23/03
Flaw in Windows Function could allow Denial fo Service
NT 4.0 Server, NT 4.0 Terminal Server Edition
Read the Security Bulletin MS03-029
MS03-028 = 816456 - 7/16/03
Flaw in ISA Server Error Pages - ISA server 2000
could allow cross-site scripting attack
Read the Security Bulletin MS03-028
MS03-027 = 821557 - 7/16/03
Unchecked Buffer in Windows Shell - WIN XP
could enable system compromise
Read the Security Bulletin MS03-027
***MS03-026 = 823980 - 7/16/03
Buffer Overrun in RPC Interface - NT 4.0, WIN 2000, WIN XP, Server 2003
could allow code execution
Read the Security Bulletin MS03-026
NOTE: You're not vulnerable to this Worm if using WIN 95, 98, 98SE, or Me
The 2 most important things to do are:
1. Download and install the Patch
2. Run a cleaning tool
Symantec has a fix to remove it FixBlast
McAfee also has a tool to fix it Stinger
Read recent info about what to do from Microsoft
Microsoft Info
Microsoft FAQ's
Microsoft email (includes 4 steps for home users)
Find out if your system is vulnerable to the W32.Blaster.Worm
Microsoft's MS03-026 Scanning Tool(updated after MS03-039)
Need to patch your copy of Windows XP?
Download Microsoft's patch for 32 bit XP XP Patch
(Most end users have this version)
NOTE: This patch referenced in MS Security Bulletin MS03-039
and Knowledge Base Article 824146
supercedes the earlier release SB# MS03-026 and KB# 823980.
Use this newer one!
Visit Microsoft's download site for other versions
Additional helpful links:
Get the 6 easy steps to remove it from ZDNet
MS03-025 = 822679 - 7/09/03
Flaw in Windows Message Handling - WIN 2000
could enable privilege elevation
Read the Security Bulletin MS03-025
MS03-024 = 817606 - 7/09/03
Buffer Overrun in Windows - NT 4.0, WIN 2000, WIN XP
could lead to data corruption
Read the Security Bulletin MS03-024
***MS03-023 = 823559 - 7/09/03
Buffer Overrun in HTML Converter
could allow code execution
affects nearly all versions of Windows
WIN 98, 98SE, Me, NT 4.0, WIN 2000, WIN XP, Server 2003
Read the Security Bulletin MS03-023
Recent Microsoft Security Bulletins:
MS03-022 = 822343 - 06/25/03
Flaw in Windows Media Services - Windows 2000
could allow code execution
Read the Security Bulletin MS03-022
MS03-021 = 819639 - 06/25/03
Flaw in Media Player 9 series
could allow information disclosure
Read the Security Bulletin MS03-021
MS03-020 = 818529 - 06/04/03
Flaw in Internet Explorer - 5.01, 5.5, 6.0
allows an attacker to execute code on a user's system
Read the Security Bulletin MS03-020
MS03-019 = 817772 - 5/30/03
Flaw in Windows Media Services - NT 4.0, WIN 2000
Read the Security Bulletin MS03-019
MS03-018 = 811114 - 5/30/03
Another Flaw in IIS Versions 4.0, 5.0, 5.1
affects Web Servers running NT 4.0, WIN 2000, WIN XP
Read the Security Bulletin MS03-018
MS03-017 = 817787 - 5/7/03
Flaw in Media Player Versions 7.1, 8.0
Read the Security Bulletin MS03-017
MS03-016 = 815206 - 4/30/03
Cummulative Patch for BizTalk Server
Read the Security Bulletin MS03-016
MS03-015 = 813489 - 4/23/03
Cummulative Patch for Internet Explorer
affects versions IE 5.01, 5.5, 6.0
Read the Security Bulletin MS03-015
MS03-014 = 330994 - 4/23/03
Cummulative Patch for Outlook Express
affects versions OE 5.5, 6.0
Read the Security Bulletin MS03-014
Microsoft has updated patch MS03-013 on 5/28/03
This update addresses the slowdown issue discussed in the
Microsoft-Watch article mentioned below. They also explain the
slowdowns mentioned, occured on systems running a specific
Anti-Virus program with Real-Time scanning enabled
MS03-013 = 811493 - 4/16/03
Buffer Underrun in Windows Kernel Messaging
affects windows versions NT 4.0, 2000, XP
Read the TechNet version of Security Bulletin MS03-013
** Before you install MS03-013 you may want to read the following article **
4/21/03
Microsoft security patch for WIN XP slows systems to a crawl
Read the story at Microsoft Watch
April 14, 2003
Microsoft has updated the patches to the Java Virtual Machine
(see the March 19 notes below)
Read the End User version of Security Bulletin MS03-011
Read the TechNet version of Security Bulletin MS03-011
Follow the instructions to test for your version of jview, if you're not current
We recommend you download and install this patch promptly!
March 19, 2003
Microsoft has released a patches for all versions of Windows
There is a flaw in the JScript engine that would allow an attacker
to run programs on an unpatched machine either through a malicious website
that contains the script code, or an HTML email that invokes a script
Read Miscosoft's End User Security Bulletin MS03-008
and Microsoft's Technet version MS03-008
Windows '98, 98 SE Patch
Windows 2000 and XP Patch
March 10, 2003
Microsoft has consolidated the the detection and patch tools for the SQL/Slammer Worm
Read the eWeek story on this new release
eWeek reports MS Fix consolidation
Here's the links to the Microsoft Sites:
SQL Critical Update Kit - Enterprise Users Update Kit
SQL Critical Update Wizard - Home + Small Business Update Wizard
On Jan. 28, 2003 Microsoft updated patches and released additional info to deal with the Slammer/Sapphire Worm. This worm affects systems running SQL under Windows 2000 or MSDE (Miscrosoft Desktop Engine = Office XP). If you've updated your WIN 2000 to Service Pak 3 (July 2002), you should not be susceptible.
Check Microsoft's Tech Support page for the original bulletin Security Bulletin MS02-061Or visit Symantec's site for their W32.SQLExp.Worm Removal Tool
Need some Help ???
- Check Microsoft's Support Area For Help with Windows Questions
- Check Microsoft's FAQ (Frequently Asked Questions) By Product Type
- Virus problems? McAfee Has Evaluation Copies of It's Virus Scanners.
- For all security issues visit Symantec and their list of Top Threats!
- For system security tests Gibson Research has some good utilities!
- TrendMicro has a handy little On-Line scanning tool TrendMicro's - Housecall
- For the Techies!! Tom's Hardware Guide Motherboard Comparison's, Benchmarks, etc.
- Another Source for Motherboard Info, www.motherboards.org Motherboard Recomendation's, Reviews, etc.
- Or Try CNet Download They have lot's of drivers, tips, and How To's.
- For Drivers www.drivershq.com All Types of Windows Drivers
- More Drivers www.driverzone.com More Drivers
- Check out ZDNet's HealthyPC.com For Software and Advice
- Troubleshooting Guides avalable at: Smart Computing Magazine
For their Learning Series on how to "Stop PC Errors"
Ever Wonder, Is it Just Me, Or has the Entire Internet Slowed Down?
Here's a Site that can tell you, The "InterNet Traffic Report"
We do On-Site Repairs, Support, and Training
Our standard On-Site Rate is $60.00 per hour
with a minimum of One-Half Hour for On-Site calls
![[Pencil, Write to us]](http://www.bpcomp.com/image/pencil.gif)
Got a Technical Question ??????
--- Ask Our Experts !! ---
--- Ask Our Experts !! ---
BP Computer
Policies | Privacy
Local Phone #: 217-352-6479
http://www.bpcomp.com