Full Disclosure mailing list archives

RE: FW: Last Microsoft Patch

From: "Jerry Heidtke" <jheidtke () fmlh edu>
Date: Wed, 15 Oct 2003 17:54:03 -0500

I guess there's still no patch for stupidity.

        -----Original Message-----
        From: Curt Purdy [mailto:purdy () tecman com] 
        Sent: Wednesday, October 15, 2003 2:05 PM
        To: full-disclosure () lists netsys com
        Subject: [Full-disclosure] FW: Last Microsoft Patch

        Anybody else get this?  Looks legit, originating address is from
msnbc.com.  But can't believe even Microsoft would be this stupid after
the rash of trojan-attached "patch announcements" lately.  Plus all
security people have been saying that Microsoft would never email a
patch out.  Or are they thinking, "Send this out so all the stupid
people will click on this before they click on a real trojan?

        Curt Purdy CISSP, GSEC, MCSE+I, CNE, CCDA 
        Information Security Engineer 
        DP Solutions 
        cpurdy () dpsol com 

        ---------------------------------------- 

        If you spend more on coffee than on IT security, you will be
hacked. 
        What's more, you deserve to be hacked. 
        -- former White House cybersecurity zar Richard Clarke 

        -----Original Message-----
        From: admin-owner () inu net [mailto:admin-owner () inu net]On Behalf
Of Technical Services
        Sent: Tuesday, October 14, 2003 11:33 AM
        To: MS Corporation User
        Subject: [inbox] [admin] Last Microsoft Patch

  Microsoft <http://www.microsoft.com/>           All Products
<http://www.microsoft.com/catalog/>  |  Support
<http://support.microsoft.com/>  |  Search
<http://search.microsoft.com/>  |  Microsoft.com Guide
<http://www.microsoft.com/>     
Microsoft Home <http://www.microsoft.com/>      

Microsoft User

this is the latest version of security update, the "October 2003,
Cumulative Patch" update which eliminates all known security
vulnerabilities affecting MS Internet Explorer, MS Outlook and MS
Outlook Express as well as three new vulnerabilities. Install now to
help protect your computer from these vulnerabilities, the most serious
of which could allow an malicious user to run code on your system. This
update includes the functionality of all previously released patches.   

  System requirements   Windows 95/98/Me/2000/NT/XP     
 This update applies to         MS Internet Explorer, version 4.01 and
later
MS Outlook, version 8.00 and later
MS Outlook Express, version 4.01 and later      
 Recommendation  Customers should install the patch at the earliest
opportunity.    
 How to install  Run attached file. Choose Yes on displayed dialog box. 
 How to use      You don't need to do anything after installing this
item.   

Microsoft Product Support Services and Knowledge Base articles can be
found on the Microsoft Technical Support <http://support.microsoft.com/>
web site. For security-related information about Microsoft products,
please visit the Microsoft Security Advisor
<http://www.microsoft.com/security>  web site, or Contact Us.
<http://www.microsoft.com/contactus/contactus.asp>  

Thank you for using Microsoft products.

Please do not reply to this message. It was sent from an unmonitored
e-mail address and we are unable to respond to any replies.

  _____  

The names of the actual companies and products mentioned herein are the
trademarks of their respective owners. 

        Contact Us <http://www.microsoft.com/contactus/contactus.asp>
|  Legal <http://www.microsoft.com/legal/>   |  TRUSTe
<https://www.truste.org/validate/605>   
        (c)2003 Microsoft Corporation. All rights reserved. Terms of Use
<http://www.microsoft.com/info/cpyright.htm>   |  Privacy Statement
<http://www.microsoft.com/info/privacy.htm>  |  Accessibility
<http://www.microsoft.com/enable/>      

Confidentiality Notice: This e-mail message, including any attachments,
is for the sole use of the intended recipient(s) and may contain
confidential and privileged information.  Any unauthorized review, use,
disclosure or distribution is prohibited.  If you are not the intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the original message.

Current thread:

Re: FW: Last Microsoft Patch, (continued)
- - - Re: FW: Last Microsoft Patch petard (Oct 16)
    - Re: FW: Last Microsoft Patch madsaxon (Oct 16)
    - Re: FW: Last Microsoft Patch Jeremiah Cornelius (Oct 16)
    - Re: FW: Last Microsoft Patch Curt Purdy (Oct 16)
    - Re: FW: Last Microsoft Patch Kurt Seifried (Oct 16)
    - Re: FW: Last Microsoft Patch Curt Purdy (Oct 16)
    - Re: FW: Last Microsoft Patch Exibar (Oct 16)
    - Re: FW: Last Microsoft Patch Exibar (Oct 16)
- Re: FW: Last Microsoft Patch Fabio Weissert (Oct 15)
- RE: FW: Last Microsoft Patch Schmehl, Paul L (Oct 15)
- RE: FW: Last Microsoft Patch Jerry Heidtke (Oct 15)
  - Re: FW: Last Microsoft Patch Jeremiah Cornelius (Oct 15)
- Re: FW: Last Microsoft Patch tcleary2 (Oct 16)
- RE: FW: Last Microsoft Patch Myers, Marvin (Oct 16)