Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Windows XP warning

0 views
Skip to first unread message

John Seeliger

unread,
Dec 21, 2001, 5:02:04 PM12/21/01
to
I hope this will post to alt.os.windows-xp since I have had trouble posting
from Prodigy® to that group.

I have Windows XP Home Edition® and IE® version
6.0.2600.0000.xpclient.010817-1148 (Update Versions:; Q313675;) and OE®
version 6.00.2600.0000 (xpclient.010817-1148) (various dll's listed). I
downloaded and installed the patch #Q315000, #Q313675 and #q305061 in that
order (restarting computer each time). First of all, does it matter that I
installed #Q313675 (dated 13 Dec 2001) before #Q315000 (dated 19 Dec 2001)?
I would think not, since I doubt it would overwrite any dll's or register
setting, etc. from the #Q315000 file, but I am just wanting to check, not
wanting to leave any security hole in my system.

Also, I have downloaded, but not yet installed, wm308567.exe - 799 Kb:

Windows Media Player 6.4 Security Patch: Windows Media Player .ASF Processor
Contains Unchecked Buffer

Microsoft has released a patch that eliminates a security vulnerability in
Microsoft® Windows MediaT Player 6.4, 7, and 7.1 and Microsoft® Windows
MediaT Player for XP. This vulnerability could potentially enable a
malicious user to cause code of his choice to run on another user's
computer.
For More Information -
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
bulletin/MS01-056.asp
Version - 308567
Release Date - 25 Oct 2001
Estimated Download Size/Time @28.8 - 780 kb / 5min
System Requirements

Windows Media Player 6.4 or
Windows Media Player 7 or
Windows Media Player 7.1 or
Windows Media Player for Windows XP

Operating System - Windows 95 & 98, NT 4.0 & 2000, Windows Me, Win XP

I have WindowsT MediaT Player v 8.00.00.4477. Should I install the above
patch #308567 dated 25 Oct 2001 for the unchecked buffer in the .ASF
Processor or is it superseded by the UPnP patch #Q315000? I assume that I
should, but just checking.

Also, does anyone here know if you can (or even have to) set ICQ® Version
2001b Build #3659 to block displaying your IP address? I used to use an
earlier version of ICQ® and it would show my IP address because I hadn't
blocked it. At the time, I didn't really care, since I was running
Microsoft® WindowsT 95 and I didn't have file sharing on, since my PC was
not on a LAN, but now with these security problems, I am wanting it blocked.
Do I need to do anything to do that?

Also, should I be using the WindowsT Update feature on XP®? I set it up
earlier today to autodownload and install updates? Was this a mistake?

There were two other patches listed, in addition to #308567, #q305061 and
#Q31500:


26 Jul 20017/26/2001 8:47:24 AM
+Hotfix+Installer+for+Q298012%2C+SQL+Server+2000+ Hotfix Installer for
Q298012, SQL Server 2000 3164420 Q298012 100 kb / 1min
26 Jul 20017/26/2001 8:47:25 AM
+Hotfix+Installer+for+Q298012%2C+SQL+Server+7%2E0+SP2+ Hotfix Installer for
Q298012, SQL Server 7.0 SP2 3164520 Q298012 100 kb / 1min

Both for #Q298012 and both for an SQL Server. Since I don't have an SQL
server on my system, I don't need these patches, right?

Thanks.

Posted to alt.usage.english and alt.os.windows-xp and emailed.
Followup-To: alt.os.windows.xp

"Franke" <fra...@seed.net.tw> wrote in message
news:3C236D39...@seed.net.tw...
> Skitt wrote:
>
> > There is a security flaw in Windows XP (both versions).
> >
> > "Microsoft made available on its Web site a free fix for both home and
> > professional editions of Windows XP and forcefully urged consumers to
> > install it immediately."
> >
> > See:
> > http://dailynews.yahoo.com/h/ap/20011220/ts/microsoft_hackers.html
>
>
> I did and it's a terrible article. I didn't know
> whether it was the IE 6.0 hole that I reported
> here a couple of days ago or something else. It's
> something else.
>
> (1) 19 Dec 2001 Windows XP Security Patch: Unchecked Buffer
> in UPnP can lead to system compromise Q315000 586 kb / 4min
> (2) 20 Dec 2001 Windows XP Security Patch: Visual Studio 6.0 C
> Runtime Denial of Service Fix q305061 366 kb / 3min
>
> Obtaining other security patches:
> Patches for other security issues are available from the following
> locations:
>
> * Security patches are available from the Microsoft Download Center, and
> can be most easily found by doing a keyword search for "security_patch".
> The link below is very long, so you'll need to copy and paste it.
>
> <http://www.microsoft.com/downloads/searchdl.asp?Search=Keyword&LangIDCODE
> =20%3Ben-us&Value=security_patch&OpSysID=9802&Show=Alpha>
>
> * Patches for consumer platforms are available from the WindowsUpdate
> web site: <http://windowsupdate.microsoft.com>
>
> * All patches available via WindowsUpdate also are available in a
> redistributable form from the WindowsUpdate Corporate site.
> <http://corporate.windowsupdate.microsoft.com/en/>
>

--
John Seeliger Once again the forces of good and niceness
jsee...@prodigy.net triumph over the forces of evil and badness.
jba...@yahoo.com -Maxwell Smart, Agent 86 of Control


Fred

unread,
Dec 21, 2001, 6:00:43 PM12/21/01
to
Don't know.


"John Seeliger" <jsee...@prodigy.net> wrote in message
news:wjOU7.261$XB5.54...@newssvr16.news.prodigy.com...

0 new messages