Re: New Microsoft Security Bulletin

From: John Ives (jives_at_cchem.berkeley.edu)
Date: Wed Sep 10 2003 - 10:51:13 PDT

• Next message: Aron Roberts: "Re: New Microsoft Security Bulletin"
• Previous message: John E. Weber: "New Microsoft Security Bulletin"
• In reply to: John E. Weber: "New Microsoft Security Bulletin"
• Next in thread: Aron Roberts: "Re: New Microsoft Security Bulletin"

To summarize what John was pointing to, there are three vulnerabilities
covered. One is a DOS and the other two are buffer overruns. The buffer
overruns could allow an attacker to "...take any action on the system,
including installing programs, viewing, changing or deleting data, or
creating new accounts with full privileges."

Yes, boys and girls, we are going to do it again! Maybe this time we will
get a better response from users... Gee I live in a fantasy world sometimes.

John

At 10:35 AM 9/10/2003 -0700, John E. Weber wrote:
>Looks like this could be just as bad as the last one:
>
>http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp
>
>--
>John E. Weber
>Programmer/Analyst
>Information Systems and Technology
>Boalt Hall, School of Law
>University of California, Berkeley
>(510) 643-6868
>jweber_at_law.berkeley.edu
>"I can make a hat...or a broach...or a pterodactyl" - Johnny from Airplane
>
>
>
>------------------------------------------------------------------------
>The following was automatically added to this message by the list server:
>
>For information about Micronet, including subscribing to
>or unsubscribing from its mailing list and finding out
>about upcoming meetings, please visit the Micronet Web site:
><http://micronet.berkeley.edu/>.

-------------------------------------------------
John Ives, GCWN, GSEC
Systems Administrator
College of Chemistry
(510) 643-1033

"If you spend more on coffee than on IT security, Then you will be hacked.
What's more, you deserve to be hacked." - Richard Clarke

Any opinions expressed are my own and not those of the Regents of the
University of California.

------------------------------------------------------------------------
The following was automatically added to this message by the list server:

For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.berkeley.edu/>.

• Next message: Aron Roberts: "Re: New Microsoft Security Bulletin"
• Previous message: John E. Weber: "New Microsoft Security Bulletin"
• In reply to: John E. Weber: "New Microsoft Security Bulletin"
• Next in thread: Aron Roberts: "Re: New Microsoft Security Bulletin"

This archive was generated by hypermail 2.1.5 : Wed Sep 10 2003 - 10:53:17 PDT