[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] MS03-032 Patch Updated or NOT ?

To: "'Elv1S'" <elvi52001@xxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] MS03-032 Patch Updated or NOT ?
From: "Richard M. Smith" <rms@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 9 Sep 2003 21:22:21 -0400

The patch has *not* been updated.  The Microsoft security bulletin was
changed to acknowledge that the original patch sucks and doesn't work.

Richard

-----Original Message-----
From: full-disclosure-admin@xxxxxxxxxxxxxxxx
[mailto:full-disclosure-admin@xxxxxxxxxxxxxxxx] On Behalf Of Elv1S
Sent: Tuesday, September 09, 2003 8:16 PM
To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] MS03-032 Patch Updated or NOT ?

on MS website, the security bulletin MS03-032 was updated on sept 8 :

V1.3 (September 8, 2003): Added information regarding reports that the
patch provided does not properly correct the Object Type Vulnerability
(CAN-2002-0532) 

But after applying the patch, rebooting - and making a test on k-otik :

http://www.k-otik.com/MS03-032-TEST/
http://www.k-otik.com/MS03-032-TEST2/

i'm still vulnerable !!!

So updated or not ??

  _____  

Do you Yahoo!?
Yahoo!  <http://us.rd.yahoo.com/evt=10469/*http://sitebuilder.yahoo.com>
SiteBuilder - Free, easy-to-use web site design software

References:
- [Full-Disclosure] MS03-032 Patch Updated or NOT ?
  - From: Elv1S

Prev by Date: RE: [Full-Disclosure] EULA
Next by Date: Re: [Full-Disclosure] MS03-032 Patch Updated or NOT ?
Previous by thread: [Full-Disclosure] MS03-032 Patch Updated or NOT ?
Next by thread: Re: [Full-Disclosure] MS03-032 Patch Updated or NOT ?
Index(es):
- Date
- Thread