April 2004 - Posts
If you are going to Tech-Ed, hope to see you there. I'll be working the MVP booth and the security lounge so stop by and say hi.
BTW, if you have a blog and are going to Tech-Ed, register your blog at www.techedbloggers.net.
Summary: Longhorn promises to be a great platform for least privileged applications. Get started today by writing managed code, first of all. When building desktop applications, make them LUA-compliant (and use the Windows Application Verifier to help check your work). (11 printed pages)
Full article:
http://msdn.microsoft.com/longhorn/default.aspx?pull=/library/en-us/dnlong/html/leastprivlh.asp
What is this alert?
- Microsoft is aware of code available on the Internet that seeks to exploit vulnerabilities addressed as part of our April 13th security updates. We are investigating the situation to help protect our customers. Specifically, the reports detail exploit code that attempts to use the IIS PCT/SSL vulnerability on servers running Internet Information Services with the Secure Socket Layer authentication enabled. This vulnerability is addressed by bulletin MS04-011. Customers who have deployed MS04-011 are not at risk from this exploit code.
- Microsoft considers these reports credible and serious and continues to urge all customers to immediately install the MS4-011 update as well as the other critical updates provided on April 13th.
- Customers who are still evaluating and testing MS04-011 should immediately implement the workaround steps detailed for the PCT/SSL vulnerability detailed in the MS04-011. In addition, Microsoft has published a knowledge base article KB187498 at http://support.microsoft.com/default.aspx?scid=kb;en-us;187498 which provides additional details on SSL and how to disable PCT without applying MS04-011.
- We expect to see additional exploits and proof-of-concept code targeting the April 2004 security bulletin release in coming days and weeks, potentially including worm or virus examples.
If you have any questions regarding the security updates or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary.
Thank you,
Microsoft PSS Security Team
April 13, 2004
Today Microsoft released the following Security Bulletins.
Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.
Bulletin Summaries:
Windows: http://www.microsoft.com/technet/security/Bulletin/winapr04.mspx
Critical Bulletins:
MS04-011 - Security Update for Microsoft Windows (835732)
http://www.microsoft.com/technet/security/Bulletin/MS04-011.mspx
MS04-012 - Cumulative Update for Microsoft RPC/DCOM (828741)
http://www.microsoft.com/technet/security/Bulletin/MS04-012.mspx
MS04-013 - Cumulative Security Update for Outlook Express (837009)
http://www.microsoft.com/technet/security/Bulletin/MS04-013.mspx
Important Bulletins:
MS04-014 - Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution (837001)
http://www.microsoft.com/technet/security/Bulletin/MS04-014.mspx
Re-Released Bulletins:
The following bulletins have been re-released to advise of the availability of updates for various versions of Microsoft Exchange Server. Please see the bottom of each bulletin for revision information.
MS00-082 - Patch Available for 'Malformed MIME Header' Vulnerability
http://www.microsoft.com/technet/security/Bulletin/MS00-082.mspx
MS01-041 - Malformed RPC Request Can Cause Service Failure
http://www.microsoft.com/technet/security/Bulletin/MS01-041.mspx
MS02-011 - Authentication Flaw Could Allow Unauthorized Users To Authenticate To SMTP Service
http://www.microsoft.com/technet/security/Bulletin/MS02-011.mspx
MS03-046 - Vulnerability in Exchange Server Could Allow Arbitrary Code Execution (829436)
http://www.microsoft.com/technet/security/Bulletin/MS03-046.mspx
This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary.