September 2003, Cumulative Patch - Possible Warning!

TheMSsForum.com: The Microsoft Software Forum

I've received this patch in a very authentic MS looking
email and downloaded it. Now my Norton anti-virus
software and ZoneAlarm firewall software will not initiate
due to a memory sharing error.

Has anyone else been effected by this and any suggested on
how to uninstall it?

Thanks
Top

Re: September 2003, Cumulative Patch - Possible Warning! by Jupiter

Jupiter
Thu Sep 18 13:07:49 CDT 2003

Ernie;
Scan for Viruses online:
http://security.symantec.com/ssc/home.asp?j=1&langid=ie&venid=sym&plfid=23&pkj=IRLFIZTYMWPAZTJWUFJ

In the future NEVER open an unknown attachment.
Treat ALL attachments as suspicious unless the sender has specifically
stated they are sending you an attachment.

To protect the safety and security of your computer:
Install or enable a firewall IMMEDIATELY, before connecting to the
internet:
http://support.microsoft.com/?kbid=283673

Install ALL Critical Updates IMMEDIATELY.
Start/All Programs/Windows Update

Install an antivirus application
Update it weekly
Run it at least weekly

Also see:
http://www.microsoft.com/security/protect/default.asp
http://www.microsoft.com/security/home/
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/columns/security/5min/5min-105.asp

--
Jupiter Jones [MVP]
An easier way to read newsgroup messages:
http://www.microsoft.com/windowsxp/pro/using/newsgroups/setup.asp
http://dts-l.org/index.html


"Ernie Luther" <eluther@nycap.rr.com> wrote in message
news:041e01c37e0d$6df14970$a101280a@phx.gbl...
> I've received this patch in a very authentic MS looking
> email and downloaded it. Now my Norton anti-virus
> software and ZoneAlarm firewall software will not initiate
> due to a memory sharing error.
>
> Has anyone else been effected by this and any suggested on
> how to uninstall it?
>
> Thanks


Top

Re: September 2003, Cumulative Patch - Possible Warning! by Pablo

Pablo
Thu Sep 18 13:30:15 CDT 2003

Ernie

Microsoft NEVER sends unsolicited files attached to an email, remind that
for another ocassion.

--
Saludos,

Pablo Roca - Microsoft Visual Foxpro MVP
Sysop de PortalFox (http://www.portalfox.com)
La Coruña, España
"Apoya a FoxPro, utiliza software legal"

***IMPORTANTE**** - Actualización de seguridad para Microsoft Windows
http://www.microsoft.com/spain/technet/seguridad/boletines/MS03-039-USER.asp


"Ernie Luther" <eluther@nycap.rr.com> escribió en el mensaje
news:041e01c37e0d$6df14970$a101280a@phx.gbl...
> I've received this patch in a very authentic MS looking
> email and downloaded it. Now my Norton anti-virus
> software and ZoneAlarm firewall software will not initiate
> due to a memory sharing error.
>
> Has anyone else been effected by this and any suggested on
> how to uninstall it?
>
> Thanks

Top

September 2003, Cumulative Patch - Possible Warning! by Jerry

Jerry
Thu Sep 18 14:27:38 CDT 2003

We just recieved one also. Luckily our Mcafees virus
protection caught it before it got in. The virus report
stated that it contained the Exploit-MIME.gen.b virus. If
you get it don't open it. As for how to get rid of it
http://us.mcafee.com/virusInfo/default.asp?
id=description&virus_k=99273

Good Luck!
JErry
>-----Original Message-----
>I've received this patch in a very authentic MS looking
>email and downloaded it. Now my Norton anti-virus
>software and ZoneAlarm firewall software will not
initiate
>due to a memory sharing error.
>
>Has anyone else been effected by this and any suggested
on
>how to uninstall it?
>
>Thanks
>.
>
Top

Re: September 2003, Cumulative Patch - Possible Warning! by Bill

Bill
Thu Sep 18 15:00:27 CDT 2003

Below describes what you opened, and has links to vendor sites for further
information.


PSS Security Response Team Alert - New E-Mail Worm: W32/Swen@MM

SEVERITY: MODERATE
DATE: September 18, 2003
PRODUCTS AFFECTED: Microsoft Outlook, Microsoft Outlook Express, and
Web-based e-mail

**********************************************************************

WHAT IS IT?
W32/Swen@MM spreads via e-mail and network shares. The Microsoft Product
Support Services Security Team is issuing this alert to advise customers to
be on the alert for this virus as it spreads in the wild. Customers are
advised to review the information and take the appropriate action for their
environments.

IMPACT OF ATTACK: Mass Mailing, disabling processes related to security
software such as antivirus and firewall software

TECHNICAL DETAILS:
For additional details on this worm from anti-virus software vendors
participating in the Microsoft Virus Information Alliance (VIA) please visit
the following links:

Network Associates:

http://vil.nai.com/vil/content/v_100662.htm

Trend Micro:

http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_SWEN.A

Symantec

http://securityresponse.symantec.com/avcenter/venc/data/w32.swen.a@mm.html

Computer Associates:

http://www3.ca.com/virusinfo/virus.aspx?ID=36939

For more information on Microsoft's Virus Information Alliance please visit
this link: http://www.microsoft.com/technet/security/virus/via.asp

Please contact your Antivirus Vendor for additional details on this virus.


PREVENTION:

1. This worm is exploiting a previously patched vulnerability. The
vulnerability exploited is related to the following Microsoft Security
Bulletin:
http://www.microsoft.com/technet/security/bulletin/ms01-020.asp

As always, customers are advised to install the latest security patch for
Internet Explorer. Information on the latest cumulative security patch for
Internet Explorer can be found here:
http://www.microsoft.com/technet/security/bulletin/MS03-032.asp

2. Outlook 2000 post SP2 and Outlook XP SP1 include the most recent updates
to improve the security in Outlook and other Office programs. This includes
the functionality to block potentially harmful attachment types. If you are
running either of these versions, they will (by default) block the
attachment, and you will be unable to open it.

To ensure you are using the latest version of Office click here:
http://office.microsoft.com/ProductUpdates/default.aspx

By default, Outlook 2000 pre SR1 and Outlook 98 did not include this
functionality, but it can be obtained by installing the Outlook E-mail
Security Update. More information about the Outlook E-mail Security Update
can be found here:

http://office.microsoft.com/Downloads/2000/Out2ksec.aspx

Outlook Express 6 can be configured to block access to potentially-damaging
attachments. Information about how to configure this can be found here:

http://support.microsoft.com/default.aspx?scid=kb;en-us;Q291387

Outlook Express all other versions: Previous versions of Outlook Express do
not contain attachment-blocking functionality. Please exercise extreme
caution when opening unsolicited e-mail messages with attachments.

Web-based e-mail programs: Use of a program-level firewall can protect you
from being infected with this virus through Web-based e-mail programs.

RECOVERY:
If your computer has been infected with this virus, please contact your
preferred antivirus vendor or Microsoft Product Support Services for
assistance with removing it.

TECHNET SECURITY LINK:
http://www.microsoft.com/technet/security/virus/alerts/swen.asp

As always please make sure to use the latest Anti-Virus detection from your
Anti-Virus vendor to detect new viruses and their variants.

If you have any questions regarding this alert please contact your Microsoft
representative or 1-866-727-2338 (1-866-PCSafety) within the US, outside of
the US please contact your local Microsoft Subsidiary. Support for virus
related issues can also be obtained from the Microsoft Virus Support
Newsgroup which can be located by clicking on the following link
news://msnews.microsoft.com/microsoft.public.security.virus.

PSS Security Response Team


--
Regards,

Jerry Bryant - MCSE, MCDBA
Microsoft IT Communities

Get Secure! www.microsoft.com/security


This posting is provided "AS IS" with no warranties, and confers no rights.



Top