Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ten Security Bulletins From Microsoft

Posted by michael on Tuesday October 12, 2004 @11:19AM from the making-america-safer dept.

wschalle writes "Microsoft has released 10 "new" security bulletins, including one pertaining to a vulnerability in the Windows Shell, apparently exploitable via the web. The shell vulnerability only allows code execution as the user viewing the malicious web site. Aren't you glad your shell is web-enabled? The recent GDI+ vulnerability is re-released here as well as a vulnerability in zip compression handling."

2 of 392 comments (clear)

Min score:

Reason:

Sort:

SP2 Isn't Affected by jerw134 · 2004-10-12 11:26 · Score: 5, Informative

Just in case anyone is wondering, SP2 is not affected by any of these vulnerabilities, except for MS04-038. That's the fix for the "drag-and-drop" vulnerability that everyone's been crowing about.
Re:At least with windows by Metasquares · 2004-10-12 11:29 · Score: 5, Informative

There are a number of user-friendly configuration tools for iptables. FireStarter is the first one that comes to mind, though there are others.