Microsoft - September 2004 Bulletins

  So far these applied changes are working properly for me using Windows 2000 SP4

Microsoft - September 2004 Bulletins
http://www.microsoft.com/technet/security/Bulletin/ms04-sep.mspx

Microsoft - Windows Update Site
http://www.microsoft.com/windowsupdate

Microsoft Security Bulletin MS04-027 - Vulnerability in WordPerfect Converter Could Allow Code Execution (884933)

Executive Summary: A remote code execution vulnerability exists in the WordPerfect 5.x converter that is provided as part of the affected software that could allow remote code execution on an affected system.

Maximum Severity Rating: Important

Impact of Vulnerability: Remote Code Execution

Affected Software: Office, FrontPage, Works, and Publisher. For more information, see the Affected Software and Download Locations section.


Microsoft Security Bulletin MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)

Executive Summary: A remote code execution vulnerability exists in the processing of JPEG image formats that could allow remote code execution on an affected system.

Maximum Severity Rating: Critical

Impact of Vulnerability: Remote Code Execution

Affected Software: Windows, Office, Developer, Internet Explorer, and others. For more information, see the Affected Software and Download Locations section for details.

Note - This vulnerability might require the installation of several security updates. Review the entire column in the Affected Software and Download Locations summary table for the MS04-028 bulletin identifier to verify the updates that you have to install, based on the programs or components that you have installed on your system.