[16636] in bugtraq
Re: Microsoft Security Bulletin (MS00-063)
daemon@ATHENA.MIT.EDU (Dan Harkless)
Thu Sep 7 12:46:52 2000
Message-ID: <200009070154.SAA21174@dilvish.speed.net>
Date: Wed, 6 Sep 2000 18:54:19 -0700
Reply-To: Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET>
From: Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Message from Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET> of
"Wed, 06 Sep 2000 03:34:38 PDT."
<200009061034.DAA17920@dilvish.speed.net>
Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET> writes:
> Microsoft Product Security <secnotif@MICROSOFT.COM> writes:
> > Patch Availability
> > ==================
> > - Microsoft Windows NT 4.0 Workstation, Server and Server,
> > Enterprise Edition:
> > http://www.microsoft.com/Downloads/Release.asp?ReleaseID=24079
>
> At this time, neither the Alpha nor Intel versions of the patch are
> downloadable from that page. They just come up with an "HTTP 404 - File not
> found".
>
> Hopefully this will be corrected soon...
To continue with my reports of problems with this patch, now that I got the
patch downloaded (using the technique described in my last post, which as of
this writing hasn't been approved to Bugtraq, to avoid Microsoft's DNS
problems), the patch seems to work fine on all the NT 4 (Server and
Workstation) Service Pack 5 machines we've installed it on, but it hosed the
Service Pack 4 machine we installed it on. After the patch, the machine
won't boot -- it just complains that it can't load kernel32.dll (which is
what's replaced by the patch) and then says it's dumping memory.
[Unfortunately the CD-ROM on that box isn't working, so recovering it will
be fun. ;^/]
----------------------------------------------------------------------
Dan Harkless | To prevent SPAM contamination, please
dan-bugtraq@dilvish.speed.net | do not mention this private email
SpeedGate Communications, Inc. | address in Usenet posts. Thank you.