Microsoft Security Bulletin (MS01-044)
Regarding: Microsoft Internet Information Server 4.0 and 5.0
Date posted: August 15, 2001
Patch URL: Click here to download the IIS 4.0 patch.
Patch URL: Click here to download the IIS 5.0 patch.
Information URL: Click here for more information.

Microsoft has released a patch combining all the patches released so far for IIS 4.0 and 5.0 (since NT 4.0 Service Pack 5), plus fixes for five newly discovered vulnerabilities. These vulnerabilities include denials of service, a buffer overrun, and a privilege elevation.

Microsoft Security Bulletin (MS01-045)
Regarding: Microsoft ISA Server 2000
Date posted: August 16, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

In another multipatch download, Microsoft includes fixes for three vulnerabilities affecting ISA Server 2000. Two of them are denial of service vulnerabilities (memory leaks in the H.323 Gatekeeper Service and in the Proxy service), and the third is a cross-site scripting vulnerability.


Best online Microsoft MCTS Training, Microsoft MCITP Training at certkingdom.com

Microsoft Security Bulletin (MS01-046)
Regarding: Windows 2000
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

The infrared-connectivity software in Windows 2000 contains an unchecked buffer. By sending a packet of a particular design, an attacker could cause an access violation, requiring the user to reboot. This vulnerability is more of a nuisance than anything, since it does not allow the attacker to run malicious code on the user’s system.

Novell issues
Regarding: NetWare 5.1, Novell Small Business Suite 5.1
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

This download contains files to make NetWare Remote Manager meet Section 508, The U.S. Federal Mandate for Accessibility.

Regarding: GroupWise
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Remember the Padlock Fix from last week? Well, this download simply verifies that you have the fix installed and enabled.

Regarding: Account Management 2.1 for Windows 2000
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Here’s yet another password synchronization fix. It addresses the same symptoms as the past fixes: You can change a password once, but if you try to change it again, it won’t synchronize.

Virus updates from Trend Micro
Virus/Worm: TROJ_MODNAR.A
Posted: August 17, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_DSNX.A
Posted: August 20, 2001
Risk: Low
Information URL: Click here for more information on this virus.
Stay current on virus information
Have you been keeping up with the latest virus information and patches from Microsoft and Novell? If not, visit the Exterminator archive for past columns with information on bugs and patches you may have missed.

Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, Linux, and other systems.

Microsoft Security Bulletin (MS01-044)
Regarding: Microsoft Internet Information Server 4.0 and 5.0
Date posted: August 15, 2001
Patch URL: Click here to download the IIS 4.0 patch.
Patch URL: Click here to download the IIS 5.0 patch.
Information URL: Click here for more information.

Microsoft has released a patch combining all the patches released so far for IIS 4.0 and 5.0 (since NT 4.0 Service Pack 5), plus fixes for five newly discovered vulnerabilities. These vulnerabilities include denials of service, a buffer overrun, and a privilege elevation.

Microsoft Security Bulletin (MS01-045)
Regarding: Microsoft ISA Server 2000
Date posted: August 16, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

In another multipatch download, Microsoft includes fixes for three vulnerabilities affecting ISA Server 2000. Two of them are denial of service vulnerabilities (memory leaks in the H.323 Gatekeeper Service and in the Proxy service), and the third is a cross-site scripting vulnerability.

Microsoft Security Bulletin (MS01-046)
Regarding: Windows 2000
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

The infrared-connectivity software in Windows 2000 contains an unchecked buffer. By sending a packet of a particular design, an attacker could cause an access violation, requiring the user to reboot. This vulnerability is more of a nuisance than anything, since it does not allow the attacker to run malicious code on the user’s system.

Novell issues
Regarding: NetWare 5.1, Novell Small Business Suite 5.1
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

This download contains files to make NetWare Remote Manager meet Section 508, The U.S. Federal Mandate for Accessibility.

Regarding: GroupWise
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Remember the Padlock Fix from last week? Well, this download simply verifies that you have the fix installed and enabled.

Regarding: Account Management 2.1 for Windows 2000
Date posted: August 21, 2001
Patch URL: Click here to download the patch.
Information URL: Click here for more information.

Here’s yet another password synchronization fix. It addresses the same symptoms as the past fixes: You can change a password once, but if you try to change it again, it won’t synchronize.

Virus updates from Trend Micro
Virus/Worm: TROJ_MODNAR.A
Posted: August 17, 2001
Risk: Low
Information URL: Click here for more information on this virus.

Virus/Worm: TROJ_DSNX.A
Posted: August 20, 2001
Risk: Low
Information URL: Click here for more information on this virus.