WinInfo Daily UPDATE, June 9, 2004

This Issue Sponsored By

AutoProf

http://www.AutoProf.com/ads/UPDATE_WinInfo_2004_06_07.html

Sponsor: AutoProf

Make every Security Patch, Printer, and Drive Map a policy setting!

Use Group Policy to manage the desktop environment including patches, and use per-policy filtering to prevent unnecessary proliferation of GPOs. Learn why Fortune 500 companies are eliminating the proprietary architectures found in every other desktop management platform. Eliminate unmanageable and costly script-based solutions that don't scale. Apply settings and patches when you want to, not while waiting for an arbitrary event, such as logon/logoff or startup/shutdown. Avoid deployment of point solutions and unify your desktop management under one system. Download a free evaluation of Policy Maker Professional or Policy Maker Software Update. Be the "Policy Maker!" First 250 downloads will get a free "Policy Maker" hat.

http://www.AutoProf.com/ads/UPDATE_WinInfo_2004_06_07.html

===============

In the News

- Monthly Security Update Is Only Moderately Alarming

==== In the News ====

by Paul Thurrott, [email protected]

Monthly Security Update Is Only Moderately Alarming

On the second Tuesday of each month, Microsoft issues a set of security updates, and this month's offering is slightly less alarming than usual. The company released only two patches, both rated moderate. Microsoft says that the patches fix problems with DirectPlay and the Web viewer in Business Objects' Crystal Reports and Crystal Enterprise.
Microsoft says it recently discovered a Denial of Service (DoS) vulnerability in DirectPlay and is fixing that problem in this month's security patch releases. Part of the Microsoft DirectX multimedia gaming libraries, DirectPlay is a programming interface that certain online games use, and the vulnerability in its code affects multiple DirectX versions that run on a variety of Windows releases. "If a user is running a networked DirectPlay application, an attacker who successfully exploited this vulnerability could cause the DirectPlay application to fail," states the Microsoft support bulletin that describes the flaw. "The user would have to restart the application to resume functionality."
The Crystal Reports Web viewer is a third-party tool but because Microsoft has distributed the viewer with some of its own products, including Microsoft Visual Studio .NET 2003 and Microsoft Office Outlook 2003 with Business Contact Manager, the company says that it's responsible for fixing the problem. The vulnerability also affects Crystal Enterprise, which Microsoft ships with Microsoft Business Solutions CRM 1.2. "An attacker who successfully exploited the vulnerability could retrieve and delete files through the Crystal Reports and Crystal Enterprise Web viewers on an affected system," the support bulletin states. So far this year, Microsoft has issued 17 security patches that fix multiple vulnerabilities. By comparison, Apple Computer has released six sets of security patches that fix numerous vulnerabilities in various versions of Mac OS X, a much less widely used OS that's often cited as being more secure than Windows.
If you want to keep your Windows system up-to-date with security fixes, enable the Automatic Updates feature or visit Windows Update regularly. Alternatively, you can visit Microsoft's Security Web site to manually download patches and find out more about the most recent security patches.
http://www.microsoft.com/security

==== Announcement ====

(from Windows & .NET Magazine and its partners)

Does Your Company Currently Use Microsoft Windows NT Server?

If your answer is "yes," Windows & .NET Magazine wants your opinion! Take a short survey, and register to win an Xbox. Click the link below to help us understand why more than 3 million servers currently run NT Server. Give us your opinion about consolidating file print servers and upgrading to Windows Server 2003.
http://websurveyor.net/wsb.dll/12237/ntserver.htm

==== Events Central ====

(A complete Web and live events directory brought to you by Windows & .NET Magazine: http://www.winnetmag.com/events )

The Exchange Server Seminar Series Coming to Your City in June

Join industry experts Kieran McCorry, Donald Livengood, and Kevin Laahs for this free event! Learn the benefits of migrating to an integrated communications environment, consolidating and simplifying implementation of technology, and accelerating worker productivity. Register now and enter to win an HP iPAQ and $500 cash!
http://www.winnetmag.com/roadshows/exchange2003

==== Sponsored Links ====

Argent

Comparison Paper: The Argent Guardian Easily Beats Out MOM
http://ad.doubleclick.net/clk;6480843;8214395;q?http://www.argent.com/products/download_whitepaper.cgi?product=mom&&Source=WNTTextLink

Microsoft(R) TechNet

Microsoft(R) TechNet Webcasts: essential guidance, industry experts
http://ad.doubleclick.net/clk;7759917;8214395;c?http://www.microsoft.com/technet/community/webcasts/default.mspx

=========

==== CONTACT US ====

About the newsletter -- [email protected]
About technical questions -- http://www.winnetmag.com/forums
About product news -- [email protected]
About your subscription -- [email protected]
About sponsoring UPDATE -- [email protected]

==============

This email newsletter is brought to you by Windows & .NET Magazine, the leading publication for IT professionals deploying Windows and related technologies. Subscribe today.

http://www.winnetmag.com/sub.cfm?code=wswi201x1z

Manage Your Account

You are subscribed as #EmailAddr#.

You received this email message because you requested to receive additional information about products and services from the Windows & .NET Magazine Network. To unsubscribe, send an email message to mailto:[email protected]. Thank you!

View the Windows & .NET Magazine Privacy policy at

http://www.winnetmag.com/AboutUs/Index.cfm?action=privacy

Windows & .NET Magazine a division of Penton Media Inc.
221 East 29th Street, Loveland, CO 80538
Attention: Customer Service Department

Comments

Plain text