Sign in with
Sign up | Sign in
Your question

MS security Bulletin MS03-043

Last response: in Windows XP
Share
Anonymous
a b 8 Security
May 16, 2004 5:50:43 AM

Archived from groups: microsoft.public.windowsxp.newusers (More info?)

I keep rec'g the following error message:
"Microsoft security Bulletin MS03-043
Buffer overrun in Messenger Service could allow code execution (828035)
Your system IS affected, download the patch from the address below" (shows
www.winupdate.net)

This looks suspicious to me as, so far, all critical updates from MS have
been free but this is asking for $19.95 and credit card. Is this bogus???
Thanks.
Anonymous
a b 8 Security
May 16, 2004 5:50:44 AM

Archived from groups: microsoft.public.windowsxp.newusers (More info?)

Barbara;
Basically that site is attempting to sell you something Microsoft
provides for free.
To help properly protect your computer, see this link:
http://www3.telus.net/dandemar/security.htm
#1 covers the firewall
#2 covers Windows Updates...what the unscrupulous site is attempting
to sell you.

Also see:
http://www3.telus.net/dandemar/paypat.htm

--
Jupiter Jones [MVP]
http://www3.telus.net/dandemar/


"BarbaraMN" <NOschissel@SPAMattNO.net> wrote in message
news:TNzpc.9719$hH.243527@bgtnsc04-news.ops.worldnet.att.net...
> I keep rec'g the following error message:
> "Microsoft security Bulletin MS03-043
> Buffer overrun in Messenger Service could allow code execution
(828035)
> Your system IS affected, download the patch from the address below"
(shows
> www.winupdate.net)
>
> This looks suspicious to me as, so far, all critical updates from MS
have
> been free but this is asking for $19.95 and credit card. Is this
bogus???
> Thanks.
>
>
Anonymous
a b 8 Security
May 16, 2004 5:50:44 AM

Archived from groups: microsoft.public.windowsxp.newusers (More info?)

Greetings --

It's a scam, plain and simple. It's from a very unscrupulous
"business." They're trying to sell you patches that Microsoft
provides free-of-charge, and using a very intrusive means of
advertising. It's also demonstrating that your PC is very unsecure.

This type of spam has become quite common over the past year or
so, and unintentionally serves as a valid security "alert." It
demonstrates that you haven't been taking sufficient precautions while
connected to the Internet. Your data probably hasn't been compromised
by these specific advertisements, but if you're open to this exploit,
you most definitely open to other threats, such as the Blaster,
Welchia, and Sasser Worms that still haunt the Internet. Install and
use a decent, properly configured firewall. (Merely disabling the
messenger service, as some people recommend, only hides the symptom,
and does little or nothing to truly secure your machine.) And
ignoring or just "putting up with" the security gap represented by
these messages is particularly foolish.

Messenger Service of Windows
http://support.microsoft.com/default.aspx?scid=KB;en-us;168893

Messenger Service Window That Contains an Internet Advertisement
Appears
http://support.microsoft.com/?id=330904

Stopping Advertisements with Messenger Service Titles
http://www.microsoft.com/windowsxp/pro/using/howto/comm...

Blocking Ads, Parasites, and Hijackers with a Hosts File
http://www.mvps.org/winhelp2002/hosts.htm

Whichever firewall you decide upon, be sure to ensure UDP ports 135,
137, and 138 and TCP ports 135, 139, and 445 are _all_ blocked. You
may also disable Inbound NetBIOS (NetBIOS over TCP/IP). You'll have
to follow the instructions from firewall's manufacturer for the
specific steps.

You can test your firewall at:

Symantec Security Check
http://security.symantec.com/ssc/vr_main.asp?langid=ie&...

Security Scan - Sygate Online Services
http://www.sygatetech.com/

Oh, and be especially wary of people who advise you to do nothing
more than disable the messenger service. Disabling the messenger
service, by itself, is a "head in the sand" approach to computer
security. The real problem is _not_ the messenger service pop-ups;
they're actually providing a useful, if annoying, service by acting as
a security alert. The true problem is the unsecured computer, and
you've been advised to merely turn off the warnings. How is this
helpful?


Bruce Chambers

--
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html


You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH


"BarbaraMN" <NOschissel@SPAMattNO.net> wrote in message
news:TNzpc.9719$hH.243527@bgtnsc04-news.ops.worldnet.att.net...
>I keep rec'g the following error message:
> "Microsoft security Bulletin MS03-043
> Buffer overrun in Messenger Service could allow code execution
> (828035)
> Your system IS affected, download the patch from the address below"
> (shows
> www.winupdate.net)
>
> This looks suspicious to me as, so far, all critical updates from MS
> have
> been free but this is asking for $19.95 and credit card. Is this
> bogus???
> Thanks.
>
>
Anonymous
a b 8 Security
June 14, 2004 3:47:39 PM

Archived from groups: microsoft.public.windowsxp.newusers (More info?)

Look sus to me too. Windows update does not use that address. MS does not charge. MS does not send emails unsolicitered.

--
----------------------------------------------------------
http://www.smh.com.au/yoursay/2004/06/11/index.html
"Sink" <Sink@discussions.microsoft.com> wrote in message news:E49BF2CA-A1F4-4DD7-A81F-6655A5B6E2D6@microsoft.com...
>
>
> "BarbaraMN" wrote:
>
> > I keep rec'g the following error message:
> > "Microsoft security Bulletin MS03-043
> > Buffer overrun in Messenger Service could allow code execution (828035)
> > Your system IS affected, download the patch from the address below" (shows
> > www.winupdate.net)
> >
> > This looks suspicious to me as, so far, all critical updates from MS have
> > been free but this is asking for $19.95 and credit card. Is this bogus???
> > Thanks.
> >
> >
> >
!