lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
From: jheidtke at fmlh.edu (Jerry Heidtke)
Subject: Problems with MS03-042 (KB826232) patch?

On a variety of computers ranging from Windows 2000 SP2 to SP4 plus all
previous patches, whenever the KB826232 patch is installed, then other
patches/service packs/whatever is installed, while attempting to remove
the KB826232 patch results in warning messages that whatever was
installed after this patch may no longer work.

We found this because we always test backout procedures before deploying
patches to the entire enterprise.

For example, on one computer that had Windows 2000 SP2, we installed
KB826232 and then the other critical patches from 10/15. We then
installed SP4. When attempting later to uninstall KB826232, we get a
warning that Internet Explorer, Windows Media Player, and other patches
installed after KB826232 might be non-functional if we proceeded. We
tested Windows Media Player and it was, in fact, non-functional (it
could download a video clip and display that it was playing, it just
couldn't display any video... a minor inconvenience I guess).

The same symptoms were found on a freshly installed Win2k with SP4 and
IE6 SP1, and no other software installed.

Has anyone else found any issues with this patch?

Jerry

Confidentiality Notice: This e-mail message, including any attachments,
is for the sole use of the intended recipient(s) and may contain
confidential and privileged information.  Any unauthorized review, use,
disclosure or distribution is prohibited.  If you are not the intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the original message.


Powered by blists - more mailing lists