• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Time to patch those windows boxes again - Sticky Please!

S

spyordie007

Diamond Member
Link

Microsoft Security Bulletin MS04-018
Cumulative Security Update for Outlook Express (823353)

Microsoft Security Bulletin MS04-019
Vulnerability in Utility Manager Could Allow Code Execution (842526)

Microsoft Security Bulletin MS04-020
Vulnerability in POSIX Could Allow Code Execution (841872)

Microsoft Security Bulletin MS04-021
Security Update for IIS 4.0 (841373)

Microsoft Security Bulletin MS04-022
Vulnerability in Task Scheduler Could Allow Code Execution (841873)

Microsoft Security Bulletin MS04-023
Vulnerability in HTML Help Could Allow Code Execution (840315)

Microsoft Security Bulletin MS04-024
Vulnerability in Windows Shell Could Allow Remote Code Execution (839645)

-Erik
 
NOTE: One of the fixes (MS04-024) is for the arbitrary shell code issue people have been talking about the past few days.

Thread updated to reflect fixes

-Erik
 
Originally posted by: drag
Hopefully this fix works out better then the last few they've tried. 😉
Click to expand...
yeah no doubt; I'm installing them on some of my tests sytems this morning to try and see if any of these will cause problems with any of our vendor software...
 
out of curiousity, what are you network admins out there using for patch management of your workstations on +50 computer networks? i read an article in eWeek(?) a while back that reviewed some patch managers and all of them got bad scores.
 
Originally posted by: groovin
out of curiousity, what are you network admins out there using for patch management of your workstations on +50 computer networks? i read an article in eWeek(?) a while back that reviewed some patch managers and all of them got bad scores.
Click to expand...
I use SUS for Windows patches, it does a good enough job with regular OS patches and didnt cost any extra to run. WUS (SUS 2.0) will be released later this year and it should be a major improvement.

-Erik
 
Originally posted by: groovin
out of curiousity, what are you network admins out there using for patch management of your workstations on +50 computer networks? i read an article in eWeek(?) a while back that reviewed some patch managers and all of them got bad scores.
Click to expand...

A relativly powerful and easy (and free) tool from MS is SUS. You set up a SUS server and use group policy to point the auto-update features of your workstations to the SUS server. I've worked with it before, and while it has some pretty big limitations (no verification of who is patched without searching the logs, for example), it is an easy to set up addition to the nothing most networks seem to have. An even simpler way to do it is have autoupdate simply running every day on each machine. Of course this can create a lot of traffic out of the network, which is what SUS prevents by distributing the patches locally after they are approved.

I know there are a lot of commercial tools with far more features out there...but in my experience they cause just as many problems as they prevent. SUS seems like a compromise, especially for a smaller business with only a few IT people.
 
yeah , i usually set up auto updating on the new machines but i wanted to explore what other ways are out there. thanks guys, ill check out SUS.
 
I use SUS for Windows patches, it does a good enough job with regular OS patches and didnt cost any extra to run. WUS (SUS 2.0) will be released later this year and it should be a major improvement.
Click to expand...

We used to use SUS and it's a great product but we ended up switching to SMS 2003. SUS does an excellent job of doing Windows patches but we had a need for application deployment and inventory as well so we switches. SUS has it's limitations but for smaller IT shops it's great!

BTW WUS has been pushed back until 1st quarter next year. Link. I've been Beta testing and it's leaps and bounds better than SUS 1.0 SP1.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top