|
Dernière réponse | |
---|---|
Sujet : [NEW] Téléchargez la version RP1 du Service Pack 2 pour Windows 2000 ! | |
rexet | A quand le service pack 3 ?? :hot: [jfdsdjhfuetppo]--Message édité par rexet--[/jfdsdjhfuetppo] |
Aperçu |
---|
Vue Rapide de la discussion |
---|
rexet | A quand le service pack 3 ?? :hot: [jfdsdjhfuetppo]--Message édité par rexet--[/jfdsdjhfuetppo] |
rexet | Windows 2000 SRP1 supersedes the patches delivered in the following security bulletins:
Core OS: MS01-007 (Q285851): Network DDE Agent Requests Can Enable Code to Run in System Context MS01-011 (Q287397): Malformed Request to Domain Controller can Cause CPU Exhaustion MS01-013 (Q285156): Windows 2000 Event Viewer Contains Unchecked Buffer MS01-024 (Q294391): Malformed Request to Domain Controller can Cause Memory Exhaustion MS01-036 (Q299687): Function Exposed via LDAP over SSL Could Enable Passwords to be Changed MS01-041 (Q298012): Malformed RPC Request Can Cause Service Failure MS01-046 (Q252795): Access Violation in Windows 2000 IrDA Driver Can Cause System to Restart MS02-001 (Q289246): Trusting Domains Do Not Verify Domain Membership of SIDs in Authorization Data FrontPage Server Extensions: MS01-035 (Q300477): FrontPage Server Extension Sub-Component Contains Unchecked Buffer Hyperterminal: MS00-079 (Q276471): Hyperterminal Buffer Overflow Indexing Service: MS01-025 (Q296185): Index Server Search Function Contains Unchecked Buffer MS01-033 (Q300972): Unchecked Buffer in Index Server ISAPI Extension Could Enable Web Server Compromise Internet Explorer 5.01: MS01-051 (Q306121): Malformed Dotless IP Address Can Cause Web Page to be Handled in Intranet Zone Note: Only the fix for version 5.01 of Internet Explorer is included in the SRP, as this is the version that shipped with Windows 2000. Patches are available for other versions of IE. Internet Information Service 5.0: MS01-004 (Q285985): Malformed .HTR Request Allows Reading of File Fragments MS01-026 (Q293826): 14 May 2001 Cumulative Patch for IIS MS01-044 (Q301625): 15 August 2001 Cumulative Patch for IIS Netmeeting: MS00-077 (Q273854): Netmeeting Desktop Sharing NNTP Service: MS01-043 (Q303984): NNTP Service Contains Memory Leak SMTP Service: MS01-037 (Q302755): Authentication Error in SMTP Service Could Allow Mail Relaying Telnet Service: MS01-031 (Q299553): Predictable Name Pipes Could Enable Privilege Elevation via Telnet Terminal Service: MS01-040 (Q292435): Invalid RDP Data Can Cause Memory Leak in Terminal Services MS01-052 (Q307454): Invalid RDP Data can Cause Terminal Service Failure |
rexet | Fixes Included in SRP1
SRP1 includes all post-SP2 security updates that have been delivered via Microsoft Security Bulletins . In addition, it also includes a small number of security updates that have not been previously discussed. Because security bulletins are disruptive to customers' normal maintenance procedures, Microsoft typically issues them only when a security issue poses an immediate danger to your systems. Issues that do not meet this standard are typically addressed through other delivery vehicles such as service packs or, in this case, the SRP. Q252795 MS01-046: Windows 2000 Does Not Support Mapping Virtual COM Ports to Infrared Ports Q273854 MS00-077: Denial of Service Can Occur with Microsoft NetMeeting Q276471 MS00-079: Patch for "HyperTerminal Buffer Overflow" Vulnerability In Windows 2000 Q282806 MS01-031: Telnet Service Prevents an Idle Telnet Session from Timing Out Q285156 MS01-013: Windows 2000 Event Viewer Contains an Unchecked Buffer Q285851 MS01-007: Patch Available for Network DDE Agent Request Vulnerability Q285985 MS01-004: Patch Available for New Variant of File Fragment Reading via .HTR Vulnerability Q286043 MS01-051: Patch Available for Telnet Logging Vulnerability Q287397 MS01-011: Patch Available for Malformed Domain Controller Service Request Vulnerability Q287912 MS01-031: Predictable Named Pipes Could Enable Privilege Elevation with Telnet Q288855 MS01-026: FTP Service Allows Login to Domain Guest Account Q289243 MS02-001: Forged SID Could Result in Elevated Privileges in Windows 2000 Q289782 INFO: Post Windows 2000 Service Pack 2 COM+ Rollup Hotfix 8 Is Available Q292435 MS01-040: Invalid RDP Data Can Cause Memory Leak in Terminal Services Q293826 MS01-026: Pattern-Matching Function Can Cause Access Violation on FTP Server Q294370 MS01-026: Updated Patch for Microsoft Security Bulletin MS00-060 Q294379 Addressees Appear in Body of SMTP Message Instead of the Header If You Specify Many Addressees Q294391 MS01-024: Malformed Request to Domain Controller Can Cause Memory Exhaustion Q294774 MS01-044: IIS Loads ISAPI Extension In-Process Even When Application Is Marked for High Isolation Q295534 MS01-026: Superfluous Decoding Operation Can Allow Command Execution Through IIS Q296185 MS01-025: Patch Available for New Variant of the "Malformed Hit-Highlighting" Vulnerability Q297860 MS01-044: IIS 5.0 Security and Post-Windows NT 4.0 SP5 IIS 4.0 Patch Rollup Q298009 Cipher.exe Security Tool for the Encrypting File System Q298012 MS01-041: Malformed RPC Request Can Cause Service Problems Q298340 MS01-044: Patch Available for WebDAV Denial of Service Q299553 MS01-031: Logon Command That Contains a Particular Malformation Causes an Access Violation in the Telnet Service Q299687 MS01-036: Function Exposed By Using LDAP over SSL Could Enable Passwords to Be Changed Q299796 MS00-077: Denial-of-Service Attack on Port 1720 May Cause a Memory Leak in Conf.exe Q300477 MS01-035: FPSE: Potential Buffer Overrun Vulnerability in Visual Studio RAD (Remote Application Deployment) Q300855 MS01-031: Windows 2000 Telnet Security Rollup Q300901 MS01-031: Telnet Service Allows Logging On to Domain Guest Account Q300905 MS01-031: Handle Leak in Telnet Service Causes a Denial-of-Service Vulnerability Q300908 MS01-031: Program Running with Normal Privileges Can Terminate a Telnet Session Q300972 MS01-033: Unchecked Buffer in Index Server ISAPI Extension Can Enable Web Server Compromise Q301625 MS01-044: Patch Available for SSI Privilege Elevation Vulnerability Q302755 MS01-037: Authentication Error in SMTP Service Could Allow Mail Relaying Q303984 MS01-043: NNTP Service in Windows 2000 Contains a Memory Leak Q304867 MS01-044: Patch Available for MIME Header Denial of Service Vulnerability Q305601 MS01-060: FIX: CRT String Format Functions May Underwrite Buffer Q306118 FPSE2000: List of Issues Fixed in FrontPage Server Extensions Service Release 1.3 Q306121 MS01-051: Malformed "Dotless" IP Address Can Cause a Web Page to Be Handled in the Intranet Zone Q307454 MS01-052: Invalid RDP Data Can Cause Terminal Services Failure Q308268 .IDA and .IDQ Mappings Restored After You Install Service Pack or Add/Remove a Windows Component Q308414 MS01-051: Patch Available for HTTP Request Encoding Vulnerability Q311355 MS01-041: The Danish Version of Security Hotfix MS01-041 Is Not Installed Q311371 Terminal Services Sessions Are Disconnected Because of a Decryption Error Q315404 MS01-052: Clients with an Expired Temporary License May Be Unable to Connect to Terminal Services |
rexet |
|
COULIX | quels sont c correctifs ??
coulix |
TkP-ACiD | J'connaissais pas thx :) D'ailleurs kd on installe le SP2 en complet faut il installer le SP1 avant ? |
CATALINA | Merchi!!
vais pas tarder à le dl!! :hello: |
VydoLL |
|
carrera | Arrete tu me fais flipper :ouch: si je perds mon raid 5, je pleure :cry:
|
rexet | up pour les retardataires :) |
VydoLL |
|
rexet |
|
rexet |
|
VydoLL | le SRP ne pose pas de pbm sur les PC ou les version win2k pro mais pour les pros je vous deconseille de l'installer sur des systeme systeme IBM netfinity et Compaq Proliant sans avoir mis les derniere firmware pour le bios, le raid car ce patch semble detruire le raid..... donc mefiance pour les pro |
Pentier | Tout le monde downloade plutôt.
Allez up. |
rexet | :jap: :D
En fait, tout le monde lit le post (60 déjà) mais personne ne le UP :D [edtdd]--Message édité par rexet--[/edtdd] |
Lemminkainen | [:belgarion_cer] |
rexet | Aucune idée... j'aime pas trop les mis à jour en ligne... je préfère les avoir sous forme de package directement installable :) !! |
Pentier | On ne le voit pas avec le windows update? |
rexet | bon ben tout le monde s'en fout :(... |
rexet | Moi c'est fait, je l'installerai plus tard :)...
Sur la section software, je viens de voir un post dessus et apparemment, l'installation n'a pas posé de problème :) ! |
Lemminkainen | moi je save pas... je le dl de suite :) |
rexet | Je suis peut être à la masse (et dans ce cas, désolé pour ce post inutile) mais je viens de voir ça sur le web :
Microsoft vient de sortir une mise à jour regroupant tous les patchs de sécurité apparus depuis la sortie du service pack 2 (SP2). Attention, ce package doit être installé sous Windows 2000 Professional, Server, ou Advanced Server avec le Service Pack 2 installé au préalable. Si vous êtes dans un de ces cas là, je vous conseille donc fortement de mettre à jour votre système. Avec cette sortie, il semblerait que la sortie du Service Pack 3 pour Windows 2000 soit proche. (source : adsl-facile.com) Téléchargez la version complète ici (16.4 Mo) [edtdd]--Message édité par rexet--[/edtdd] |