Windows/Security

Three more updates for Windows

Today Microsoft rolled out 3 new updates for Windows to solve a variety of security and data corruption issues. While I am always glad to see MS actively working on solving know issues, such as these, I do have to wonder if there is any beginning to the end for such glaring omissions in their security practices.

The three updates are shown below. In most cases, visiting the Windows Update web site should allow you to easily download and install them.

MS03-025 : Flaw in Windows Message Handling through Utility Manager Could Enable Privilege Elevation (822679)

MS03-024 : Buffer Overrun in Windows Could Lead to Data Corruption (817606)

MS03-023 : Buffer Overrun In HTML Converter Could Allow Code Execution (823559)

Windows 2000 users should also be aware of Windows 2000 Service Pack 4 (SP4).

According to Microsoft:

Service Pack 4 (SP4) provides the latest updates to the Windows 2000 family of operating systems in the following areas: security, operating system reliability, application compatibility, and setup. This service pack includes fully regression-tested versions of the patches for all security vulnerabilities affecting Windows 2000 found up to the closing date of Service Pack development. The following Microsoft Security Bulletins are included in Service Pack 4.

This update is also available via the Windows Update web site.