A patch for a flaw in "Windows WM_TIMER Message Handling", released with "Microsoft Security Bulletin MS02-071" (Q328310), causes random crashes (blue screens of death) on WindowsNT systems. Besides annoyance it forces uninstallation of this patch leaving systems vunerable for the flaw. Microsoft was contacted by me today. Others has contacted MS earlier. Crashes occur at about one in a day rate (on office computers). There are some discussions about this issue on Usenet - please check for example: http://groups.google.com/groups?th=dba7c44ebd24239b http://groups.google.com/groups?th=27d31ba3ca01b4e0 Vulnerability identifier: CAN-2002-1230 Microsoft Security Bulletin MS02-071: Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation (328310) http://www.microsoft.com/security/security_bulletins/ms02-071.asp Best wishes Tometzky -- ...although Eating Honey was a very good thing to do, there was a moment just before you began to eat it which was better than when you were... Winnie the Pooh
This archive was generated by hypermail 2b30 : Mon Jan 20 2003 - 19:59:59 PST