copyright | disclaimer | privacy | contact  
Australia's Leading Computer Emergency Response Team
 
Search this site

 
On this site

 > HOME
 > About AusCERT
 > Membership
 > Contact Us
 > PKI Services
 > Training
 > Publications
 > Sec. Bulletins
 > Conferences
 > News & Media
 > Services
 > Web Log
 > Site Map
 > Site Help
 > Member login

  Home » Security Bul... » ESB-1999.026 -- MS99-007 Security Bulletin -- Patch ...
 

ESB-1999.026 -- MS99-007 Security Bulletin -- Patch Available for Taskpads Scripting Vulnerability
Date: 23 February 1999

Click here for printable version
Click here for PGP verifiable version
-----BEGIN PGP SIGNED MESSAGE-----

===========================================================================
              AUSCERT External Security Bulletin Redistribution
                             
                 ESB-1999.026 -- MS99-007 Security Bulletin
            Patch Available for Taskpads Scripting Vulnerability
                              23 February 1999

===========================================================================

Microsoft Corporation has released the following security bulletin
concerning a  vulnerability in the Taskpads feature, which is provided as 
part of the Microsoft Windows 98 Resource Kit, Windows 98 Resource Kit 
Sampler, and BackOffice Resource Kit, second edition.  The vulnerability 
may allow a web site operator to run executables on the computer of a 
visiting user.  Only machines which have one of the affected products 
installed and which are also used to access the web are at risk from this 
vulnerability:

       http://www.microsoft.com/security/bulletins/ms99-007.asp

===========================================================================

This security bulletin is provided as a service to AusCERT's members.
As AusCERT did not write the document quoted above, AusCERT has
had no control over its content.  The decision to use any or all
of this information is the responsibility of each user or organisation,
and should be done so in accordance with site policies and procedures.

If you have any questions or need further information, please contact 
Microsoft Corporation directly.

Previous advisories and external security bulletins can be retrieved from:

	http://www.auscert.org.au/Information/advisories.html

If you believe that your system has been compromised, contact AusCERT or
your representative in FIRST (Forum of Incident Response and Security
Teams).

Internet Email: auscert@auscert.org.au
Facsimile:	(07) 3365 7031
Telephone:	(07) 3365 4417 (International: +61 7 3365 4417)
		AusCERT personnel answer during Queensland business hours
		which are GMT+10:00 (AEST).
		On call after hours for emergencies.


-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv
Comment: ftp://ftp.auscert.org.au/pub/auscert/AUSCERT_PGP.key

iQCVAwUBNtUm5Ch9+71yA2DNAQE7awP/XUHp+RlQptlld1mj0yuq0H5o2WO6op2e
RonHjHuzenUpbpsHUtn3kVQufr+NFflnrlM/CsCzyLgkvvrjS+U6DVesI2ZNdJyO
H6rgYNG8sbjd8S/qX0JOZnVP70LFkGim+30w4f9kuqEa7xD1eG7IH8CE97aUwEG9
5xG0mSJsP4U=
=DtZo
-----END PGP SIGNATURE-----




Comments? Click here http://www.auscert.org.au/render.html?cid=1&it=528