[21081] in bugtraq
RE: Windows 2k SP2 breaks security fix should reapply
daemon@ATHENA.MIT.EDU (Chase Stone)
Mon Jun 18 20:38:58 2001
From: "Chase Stone" <cstone@xato.net>
To: "Colby Rice" <crice@180096hotel.com>,
"Bugtraq" <bugtraq@securityfocus.com>
Date: Mon, 18 Jun 2001 11:43:25 -0600
Message-ID: <CDEGIIGDGLHPIJBFECCFGEDDDCAA.cstone@xato.net>
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
In-Reply-To: <FA3D3A0F5774BE4487D8529DA9F1503D7B96DD@hrn-mail03>
X-MDaemon-Deliver-To: bugtraq@securityfocus.com
SP2 does not break MS01-026 because that hotfix is not included in SP2 (see
http://www.microsoft.com/technet/security/w2ksp2.asp). If you look at the
filename it is Q293826_W2K_SP3_x86_en.EXE which means it is going to be an
SP3 (aka post SP2) fix. Any SP3 fix should be installed AFTER SP2 is
installed.
Chase Stone
IIS Security Consultant
Xato Network Security
www.xato.net
> -----Original Message-----
> From: Colby Rice [mailto:crice@180096hotel.com]
> Sent: Wednesday, June 13, 2001 3:57 PM
> To: Bugtraq (E-mail)
> Subject: Windows 2k SP2 breaks security fix should reapply
>
>
> SP2 allows the decoding bug to work
> SP2 breaks the following patch and it should be reinstalled.
>
> http://www.microsoft.com/technet/security/bulletin/MS01-026.asp
>
