G
George Hester
Here is KB839645:
http://support.microsoft.com/default.aspx?scid=kb;en-us;839645
This fixes a security issue with the Windows Shell. There is no workaround for it and so that means if I remove this security vulnerablity it is permanent. I don't really like doing that unless I know the reprocussions.
On this page:
http://www.microsoft.com/technet/security/bulletin/ms04-024.mspx
we are directed to 839645 for a discussion of the known issues that can result from installing this security fix. All the issues seem to be specific to Windows XP and 2003. That's good for Windows 2000. But let's investigate further.
Since 839645 says the it applies to Windows 2000 and there is no mention of Windows 2000 in the body of the article, we again are left in a quandry as to exactly how this fix can effect Windows 2000. To that end we must return to ms04-024.mspx link above and check out:
FAQ for Windows Shell Vulnerability. In this it says:
What does the update do?
The update removes the ability to use a CLSID as a file type within Windows Shell
So I am assuming this is what this update does to Windows 2000. That's all well and good but exactly what does that mean? Well googling we find this:
http://www.microsoft.com/msj/archive/S332.aspx
an old article. I am assuming that if we install this Shell security fix then that article becomes null and void. In other words the Shell security fix will result in that article no longer working. And if so that seems not such a bright idea.
The fact that this is a remote exploit makes this issue more disturbing but again I need to consider the likelihood of running into such a remote exploit versus the implications of installing the security update.
What's the opinion of the experts here? Thanks.
http://support.microsoft.com/default.aspx?scid=kb;en-us;839645
This fixes a security issue with the Windows Shell. There is no workaround for it and so that means if I remove this security vulnerablity it is permanent. I don't really like doing that unless I know the reprocussions.
On this page:
http://www.microsoft.com/technet/security/bulletin/ms04-024.mspx
we are directed to 839645 for a discussion of the known issues that can result from installing this security fix. All the issues seem to be specific to Windows XP and 2003. That's good for Windows 2000. But let's investigate further.
Since 839645 says the it applies to Windows 2000 and there is no mention of Windows 2000 in the body of the article, we again are left in a quandry as to exactly how this fix can effect Windows 2000. To that end we must return to ms04-024.mspx link above and check out:
FAQ for Windows Shell Vulnerability. In this it says:
What does the update do?
The update removes the ability to use a CLSID as a file type within Windows Shell
So I am assuming this is what this update does to Windows 2000. That's all well and good but exactly what does that mean? Well googling we find this:
http://www.microsoft.com/msj/archive/S332.aspx
an old article. I am assuming that if we install this Shell security fix then that article becomes null and void. In other words the Shell security fix will result in that article no longer working. And if so that seems not such a bright idea.
The fact that this is a remote exploit makes this issue more disturbing but again I need to consider the likelihood of running into such a remote exploit versus the implications of installing the security update.
What's the opinion of the experts here? Thanks.