On Oct 15, 2003, at 3:06 PM, Jerry Heidtke wrote:
Microsoft just issued 7 new security bulletins: 5 for various Windows version and 2 for Exchange.
Six are rated "critical", one is "important". Just to refresh your
memory, a critical vulnerability is one that can be exploited remotely
and automatically (such as by a worm) and gives complete system control.
An important vulnerability is one can be exploited remotely and gives
complete system control, but cannot be exploited automatically or
without some user action.
Ah what's to worry about. Exploits against Exchange / OWA / Messenger Service / Authenticode / Active X can't harm anyone. :) Bring em on.
Luckily I deployed my SUS boxes at work and all I had to do to deploy the patches was check a few little boxes on my SUS servers.
-- Joshua Levitsky, CISSP, MCSE System Engineer AOL Time Warner [5957 F27C 9C71 E9A7 274A 0447 C9B9 75A4 9B41 D4D1]
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
