IDGNet Virus & Security Watch Friday 23 August 2002

This issue's topics: Introduction: * Several Microsoft patches, new IE cumulative patch, Novell patch Virus News: * Wither the viruses? Security News: * Update for Office Web Components 2000 & 2002 * Patch for Network Share Provider in NT, Windows 2000 & XP * Terminal Server Advanced Client update fixes remote code execution bug * Internet Explorer cumulative patch includes six new fixes * Office XP service pack 2 released * Fix for RconJ password bypass on NW6SP2

This issue's topics:

Introduction:

* Several Microsoft patches, new IE cumulative patch, Novell patch

Virus News:

* Wither the viruses?

Security News:

* Update for Office Web Components 2000 & 2002

* Patch for Network Share Provider in NT, Windows 2000 & XP

* Terminal Server Advanced Client update fixes remote code execution bug

* Internet Explorer cumulative patch includes six new fixes

* Office XP service pack 2 released

* Fix for RconJ password bypass on NW6SP2

Introduction:

It has been another week of no significant or interesting developments on the virus front, but more people have been speculating on the general fall off in new virus numbers over the last nine months or so.

As for security, Microsoft administrators will have a busy few days ahead of them with three security hotfixes, an IE security cumulative patch incorporating several new fixes and service pack 2 of Office XP being released. Also, Novell NetWare 6.0 server admins running RconJ need to get a patch to fix a password bypass flaw.

Virus News:

* Wither the viruses?

Further to the solitary virus-related item in last week's newsletter, it seems more security experts have been speculating about the decline in the appearance of new viruses. The Reuters article linked below quotes several antivirus researchers and a spokesman from the US Office of Cyberspace Security on the apparent slowdown in the number of new viruses observed since late last year.

New Computer Security Dilemma: Lack of Viruses - reuters.com

Security News:

* Update for Office Web Components 2000 & 2002

Three security vulnerabilities, two rightfully rated as severe criticality, have been patched in Office Web Components 2000 and 2002. Users of Office XP are recommended to obtain these updates by installing the just-released Office XP Service Pack 2 (see item below). Users of other Office and related products, or who downloaded and installed the standalone Office Web Components should read the security bulletin for directions and links to the appropriate updates.

Microsoft Security Bulletin MS02-044

* Patch for Network Share Provider in NT, Windows 2000 & XP

Microsoft has released an update for a denial of service attack against the Network Share Provider component in NT and later OSes. The nature of the DoS is that the affected machine will blue-screen and restart. With the attendant likelihood of unexpected data loss due to the unexpected disappearance of a files server hosting a users work files, Microsoft's severity rating of moderate may seem a tad light. Administrators of machines running _any_ versions of these OSes should check the security bulletin and seriously consider installing the patch.

Microsoft Security Bulletin MS02-045

* Terminal Server Advanced Client update fixes remote code execution bug

The Terminal Server Advanced Client ActiveX control has been found to have a remotely exploitable arbitrary code vulnerability. Although rated as moderate severity by Microsoft, the fix is strongly recommended. Administrators of servers hosting the TSAC control should replace the control on their servers with the new version, available from the security bulletin. IE users should install the IE cumulative patch mentioned in a later item in this newsletter.

Microsoft Security Bulletin MS02-046

* Internet Explorer cumulative patch includes six new fixes

Much-awaited, the rumoured 'service pack 1' for IE 6.0 has been released, but turns out to be a cumulative security patch for all supported IE versions - 5.01, 5.5 and 6.0. As with other cumulative security patches, this one includes all security hotfixes since the previous service pack for the IE version in question.

Aside from aggregating the security hotfixes, this cumulative patch also includes fixes for six new security vulnerabilities affecting the supported versions of IE. Most of these new vulnerabilities are rated as being of critical severity on at least one version of IE, so users are strongly recommended to obtain and install the update. Note that this cumulative update is the only (well - at least first) source of the TSAC patch for the IE client mentioned in the previous item.

Microsoft Security Bulletin MS02-047

* Office XP service pack 2 released

Incorporating all security hotfixes since SP1, plus many other patches, Office XP SP2 has just been released. It also includes the Office Web Components patch referred to in MS02-044, so there is no need for Office XP users to obtain and install that patch if you plan to install this service pack. SP2 installs if some or all of the security hotfixes it includes have been installed and aside from patches includes, according to Microsoft, 'stability improvements developed as a result of user input from the Error Reporting Tool in Office XP and from Microsoft Product Support feedback'.

Office XP Update: Service Pack 2 (SP2) - microsoft.com

* Fix for RconJ password bypass on NW6SP2

Non-privileged users can obtain server access to NW6SP2 machines running RconJ (RCONAG6.NLM). This only affects machines with service pack 2 installed. A fix is available from the Novell Technical Information Document linked below.

RCONAG6.NLM for servers running NW6SP2 - novell.com

Join the newsletter!

Error: Please check your email address.

More about MicrosoftNetWare 6NovellReuters Australia

Show Comments
[]