Security

Internet Information Server on the fritz

This week, the Exterminator shares news about a nasty bug in Microsoft's Internet Information Server and Windows Media Server, along with updates from Novell and virus information from Trend Micro.


Got bugs?
The Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, and various other systems.

Microsoft Security Bulletin (MS00-063)
Regarding: Microsoft Internet Information Server (IIS)
Date Posted: September 5, 2000
Patch URL:Click here for the patch (Terminal Server Edition to be released soon)
Information URL:Click here for more information

This week, Microsoft has released a patch for its Internet Information Server. A vulnerability has been discovered that could allow a user to cause the IIS to fail. This is done by sending a specific kind of invalid URL to an IIS server that can trigger a series of events leading to its failure. For more information on this patch, click on the Information URL above.

Microsoft Security Bulletin (MS00-064)
Regarding: Microsoft Windows Media Services
Date Posted: September 6, 2000
Patch URL:Click here for the patch
Information URL:Click here for more information

Microsoft’s Windows Media Services has also been patched this week. According to Microsoft, if a certain type of request is made to the server, it could cause the server to “induce a race condition.” With the server in that state, even legitimate requests could cause it to fail. For more information on this update, click on the Information URL above.

Novell issues
Regarding: WebSphere Standard vs. OnDemand
Date Posted: September 5, 2000
Patch URL:Click here for the patch
Information URL:Click here for more information

Novell has released a patch that eliminates an issue when installing WebSphere Standard over OnDemand 1.0. The problem occurs when WebSphere installs an older version of PKI.NLM and PKIAPI.NLM, resulting in an error. For more information on this patch, click on the Information URL above.

Regarding: OnDemand
Date Posted: September 5, 2000
Patch URL:Click here for the patch
Information URL:Click here for more information

Novell has released another patch this week for its OnDemand software. The patch eliminates an issue that could cause a copied file to become corrupted if it’s larger than the disk space that has been purchased. Although the copy will appear to be successful, the file will actually be corrupted. For more information on this patch, click on the Information URL above.

Virus updates from Trend Micro
Virus/Worm: PE_STREAM.A
Posted: September 5, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: TROJ_SPAWNMAIL.A
Posted: September 4, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: W97M_FOOTER.S
Posted: September 4, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: VBS_ELVA
Posted: September 1, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: W97M_BERAU
Posted: September 1, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: PE_MTX.A
Posted: September 1, 2000
Information URL:Click here for more information on this virus.

Got bugs?
The Exterminator brings you weekly updates on bug fixes, virus recovery, service release announcements, and security notices for Windows, Novell, and various other systems.

Microsoft Security Bulletin (MS00-063)
Regarding: Microsoft Internet Information Server (IIS)
Date Posted: September 5, 2000
Patch URL:Click here for the patch (Terminal Server Edition to be released soon)
Information URL:Click here for more information

This week, Microsoft has released a patch for its Internet Information Server. A vulnerability has been discovered that could allow a user to cause the IIS to fail. This is done by sending a specific kind of invalid URL to an IIS server that can trigger a series of events leading to its failure. For more information on this patch, click on the Information URL above.

Microsoft Security Bulletin (MS00-064)
Regarding: Microsoft Windows Media Services
Date Posted: September 6, 2000
Patch URL:Click here for the patch
Information URL:Click here for more information

Microsoft’s Windows Media Services has also been patched this week. According to Microsoft, if a certain type of request is made to the server, it could cause the server to “induce a race condition.” With the server in that state, even legitimate requests could cause it to fail. For more information on this update, click on the Information URL above.

Novell issues
Regarding: WebSphere Standard vs. OnDemand
Date Posted: September 5, 2000
Patch URL:Click here for the patch
Information URL:Click here for more information

Novell has released a patch that eliminates an issue when installing WebSphere Standard over OnDemand 1.0. The problem occurs when WebSphere installs an older version of PKI.NLM and PKIAPI.NLM, resulting in an error. For more information on this patch, click on the Information URL above.

Regarding: OnDemand
Date Posted: September 5, 2000
Patch URL:Click here for the patch
Information URL:Click here for more information

Novell has released another patch this week for its OnDemand software. The patch eliminates an issue that could cause a copied file to become corrupted if it’s larger than the disk space that has been purchased. Although the copy will appear to be successful, the file will actually be corrupted. For more information on this patch, click on the Information URL above.

Virus updates from Trend Micro
Virus/Worm: PE_STREAM.A
Posted: September 5, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: TROJ_SPAWNMAIL.A
Posted: September 4, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: W97M_FOOTER.S
Posted: September 4, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: VBS_ELVA
Posted: September 1, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: W97M_BERAU
Posted: September 1, 2000
Information URL:Click here for more information on this virus.

Virus/Worm: PE_MTX.A
Posted: September 1, 2000
Information URL:Click here for more information on this virus.

Editor's Picks

Free Newsletters, In your Inbox