**03-024Buffer Overrun in Windows Could Lead to Data Corruption

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ smallbiz
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - SP4 install I have installed SP4 for W2K and now my print spooler services terminates unexpectedly. I have exchange SP3 running. Has anyone else run into this problem? Beware of the SP4 "HOT FIX"! Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115396
  - 2
    - ** 03-023 Buffer Overrun in HTML [It's Wednesday Patch day] - - --------------------------------------------------------------- Title: Buffer Overrun In HTML Converter Could Allow Code Execution (823559) Date: 09 July 2003 Software: Microsoft(r) Windows (r) 98 Microsoft Windows 98 Second Edition Microsoft Windows Me Microsoft Windows NT 4.0 Microsoft Windows NT 4.0 Terminal Services Edition Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003 Impact: Allow an attacker to execute code of their choice Max Risk: Critical Bulletin: MS03-023 Microsoft encourages customers to review the Security Bulletins at: http://www.microsoft.com/technet/security/bulletin/MS03-023.asp http://www.microsoft.com/security/security_bulletins/ms03-023.asp - - --------------------------------------------------------------- Issue: ====== All versions of Microsoft Windows contain support for file conversion within the operating system. This functionality allows users of Microsoft Windows to convert file formats from one to another. In particular, Microsoft Windows contains support for HTML conversion within the operating system. This functionality allows users to view, import, or save files as HTML. There is a flaw in the way the HTML converter for Microsoft Windows handles a conversion request during a cut-and-paste operation. This flaw causes a security vulnerability to exist. A specially crafted request to the HTML converter could cause the converter to fail in such a way that it could execute code in the context of the currently logged-in user. Because this functionality is used by Internet Explorer, an attacker could craft a specially formed Web page or HTML e-mail that would cause the HTML converter to run arbitrary code on a user's system. A user visiting an attacker's Web site could allow the attacker to exploit the vulnerability without any other user action. To exploit this vulnerability, the attacker would have to create a specially-formed HTML e-mail and send it to the user. Alternatively, an attacker would have to host a malicious Web site that contains a Web page designed to exploit this vulnerability. The attacker would then have to persuade a user to visit that site. Mitigating factors: ==================== - By default, Internet Explorer on Windows Server 2003 runs in Enhanced Security Configuration. This default configuration of Internet Explorer blocks automatic exploitation of this attack. If Internet Explorer Enhanced Security Configuration has been disabled, the protections put in place that prevent this vulnerability from being automatically exploited would be removed. - In the Web-based attack scenario, the attacker would have to host a Web site that contained a Web page used to exploit this vulnerability. An attacker would have no way to force users to visit a malicious Web site outside the HTML e-mail vector. Instead, the attacker would need to lure them there, typically by getting them to click a link that would take them to the attacker's site. - Exploiting the vulnerability would allow the attacker only the same privileges as the user. Users whose accounts are configured to have few privileges on the system would be at less risk than ones who operate with administrative privileges. Risk Rating: ============ Critical Patch Availability: =================== - A patch is available to fix this vulnerability. Please read the Security Bulletins at http://www.microsoft.com/technet/security/bulletin/ms03-023.asp http://www.microsoft.com/security/security_bulletins/ms03-023.asp for information on obtaining this patch. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115395
  - 3
    - differences between SBS2000 and it's individual components... Greetings, A small business client of mine is purchasing a new properly management package to replace their old DOS based package. The new package is web based and runs on Win2k, IIS, SQL Server 2000 and Exchange 2000. The small business client currently runs an old Novell server and about 6 older Win95 and 98. The vendor of the new software made recommendation regarding the new server (Dell 2x Xeon, 2GB RAM, Raid 5) and also recommended the purchase of individual packages of Windows 2000, Exchange 2000, and SQL Server 2000 and the appropriate numer of CAL's for each. The vendor also stated that the backup program shipped with Win2k Server is more than adequate to back up this server properly. I came back with the recommendation that they consider the purchase and use of SBS2000 instead of the individual components. Purchasing SBS2000 would save about $3000 over the individual components so it's not a trivial sum. I also recommended the purchase of a third party server backup package (Backup Exec, Arcserve, etc.) to take care of the system backup needs. The vendor responded that SBS2000 wasn't the same as the individual components and that they've had lot of problems when using SBS2000, but could not provide specifics about these problems when asked. The vendor also stated that the level of support from MS was different and inadequate for the SBS products when compared to the individual components so that was another reason to not use SBS2000. The vendor also stated that they would allow the use of SBS2000, but would charge an additional 8-16 hours of install labor if SBS2000 was used. As a seasoned veteran of the consulting and small business technology support profession, I know what my feelings are towards what this vendor has to say. I'm interested in hearing from anyone who cares to comment regarding this vendors recommendations. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115392
  - 4
    - Please keep away from Symantec corporate 8.1 Hi all, Had a very bad experience with the latest Symantec Corporate Multi-tier version 8.1. You need to register it on Symantec site and they are supposed to send you a license file by e-mail which permits you to run liveupdate, I'm still waiting for the license file after 8 hours - the symantec support is pathetic (here in Europe). The problem is that even if you manually update to the latest virus pattern files, Symantec keeps on reverting to original pattern file i.e. 23/03/2003 so the server and clients are not fully protected. If tomorrow I don't get the license file, I'll revert back to old version and probably order Trend. If anybody is thinking of buying one please be aware. IK . Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115390
  - 5
    - POP3 and Exchange Hi All Are there any specific issues I should be aware of using POP3 for incoming mail on our SBS2k Server. Are their any disadvantages in using POP3 instead of SMTP. Does POP3 make us any more likely to receive junk mail or have any other security implications. Regards ........ Fred Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115389
  - 6
    - Remote connection The only remote connection that can currently connect onto my SBS from an external location is one using the administrator account. When another user trys to connect their access is denied. Their account has had the appropriate changes made to it (i think) but do i also need to change something within the server (i.e. a list of useres that are allowd to connect remotley). Help Thanks Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115373
  - 7
    - VPN and SBS2000 I need to impliment VPN on the server so clients can access the server remotely (from Home) through VPN. Where can I get help on this issue on how to accomplish this project. YOur help will be appreciated. kiki@soservice.com Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115366
  - 8
    - RAS users passwords keep going invalid We have several outworkers who have laptops, and who can connect to our network in the usual way when they come into the office, and they can do so without any difficulty. However, if they try and use RAS to dial into the server, their passwords become invalid,and they can't log on. Once their passwords have been reset on the server, they can RAS in again. Their accounts are set up as 'passwords never expire'. Does anybody know why their passwords keep getting invalidated, and how to stop it? Thanks Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115356
  - 9
    - SBS default install was an open relay until I removed the SMTP Connector All settings were as specified by TechNet on both the Virtual Server and Connector. The relay was testing as open until I removed the connector. Has anyone run in to this? If so, what could be the problem? I used the ICW to set up the server's connection. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115355
  - 10
    - upgrade nt4 to sbs 2k Is it possible to upgrade an NT4 server to SBS 2k? Can you point me to any documentation to perform this or to move the current NT4 server to SBS 2k? The reason is to use the added components of SBS, like exchange. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115354
  - 11
    - Exchange SBS and Hard Drive Space I am relatively new to working with Exchange and have followed the directions on installing and setting up SBS 2000. After 2 weeks of being in use, I have noticed that both partitions on my 120 Gig hard drive are full. We are a small 5-person office and do not received near enough email or other data to have filled this hard drive. The larger partition (100 gig) had almost no data on it, so I removed the data and had the partition reformatted. This cleared up the space and was fine. To better utilize the public folders and some data we wanted stored there, I moved the logs and database to the empty partition. After the next reboot, 95 Gig has vanished. The Public folders and the email boxes on the server have been disconnected from all of the Client systems and all the email was put on Local PST files to clear up space on the server prior to formatting the secondary partition as a precaution. I am at a serious loss on how to proceed. Any help that anyone can offer is greatly appreciated. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115346
  - 12
    - Question for a skulker... Good Morning, I have been skulking in this group for almost six months gleaning information since I was chosen to look after our companies install of SBS2K. I will give you a profile of me and my install before I ask my question so that you can respond accordingly. I am NOT A NETWORK or IT PROFESSIONAL, I am a programmer that has a very good overall working knowledge. I have also done much reading, worked through this newgroup and Harry Brelsfords book. I did one istall based on Harrys Book, a second based on our comany and I am now live and fully operational. We have 9 users: 2 laptops that travel, 3 W2k and 4 NT4. Our interent is modem dial up. We are using sql (with accessXP as the front end on the workstations) We are also using exchange. The two laptops I have left with thier own interst e-mail for now as we do not have a full time connection that would allow them OWA. We have installed Trend AV, have a RAID5 (three + hot spare) with C: for system and D: for selected data and E: for exchage there is a separate mirror (2 drives)F: for other data and sql logs/back-ups etc. We do a COMPLETE back-up to tape every night. Everything is working... I don't even have any perflib errors! My first question (the first one I will have more as I move ahead) is this: When I make a TS connection (Admin Mode) to the server a complete copy of "My Documents" is copied to the server c:\documents and settings etc... I have read several posts and thay all refer to "Group Policy" and redirection. All the "security" postings sound scary since I have no knowledge or experience in this area. What I need is a step by step walk through of exactly what I need to to to make all users "My Documents" not get dragged across the network and "synchronized" every login/out. Thanks in adance MM Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115334
  - 13
    - Run software remotely? Hello all, This question is related to previous post I made, but I wanted to restate the problem more directly (and not presume a solution). I have a piece of technical software (Matlab) which I would like to run remotely on another computer. I use it to develop fairly complex computer models which can take a while to run and really bog things down when they do. So I would like to install the software on another, reasonably power PC I have and run it remotely so I can do other work on my machine while it's crunching away. I also have a coworker (off site) who will need to access this occasionally (its an engineering tool) -but not at the same time. All the machines are connected on a small, SBS2000 network. So my question is what's the best way to accomplish this (assuming it can be done)? Thanks for any advice. -Pat Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115332
  - 14
    - create a folder in shared fax console? Can I create additional folders in the Shared Fax console? My Sent Items is getting a little unruly, and I'd like to start organizing my sent faxes, as I have to keep them around for a while. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115331
  - 15
    - SBS shared fax address book Shared Fax cannot see my address books. I created a contacts folder in Public Folders, set the permissions accordingly, had each user set Outlook to see it as an "Outlook Address Book". Now Outlook and Shared Fax can use this address book - great - but on our XP machines only. On the server itself however (W2K Server), neither Outlook nor Shared Fax can see it as an address book. When I click "Address Book" in Shared Fax, I get Global Address List, All Address Lists, All Contacts, All Groups, All Users, and Public Folders. Not even my normal mailbox Exchange contacts show up. How on Earth can I get this contacts folder to show up in Shared Fax? What am I missing? I even checked that IE is using Outlook for email (another setting I saw in a post here). Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115329
  - 16
    - Fax Blacklisted number on SBS 2000 Hi When fax has beeing unsuccesfully sent, the faxnumber is beeing marked as Blacklisted. How can this be reverced, and faxes can be sent again ? Thanks Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115328
  - 17
    - Can't resolve web page? When I ping a web address I get the normal response, but internet explorer won't bring up the web page, it just seems to keep searching but eventually fails, I'm using small business server 2k. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115327
  - 18
    - sbs server and raid array currently have an sbs 2k server running at a client's place with only one scsi drive in it. would like to stick in another 2 drives to give RAID functionality. can i use any scsi drives or do they have to be by the same manufacturer? it's a dell server tia Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115326
  - 19
    - software assurance we purchased software assurance when you purchased our microsoft small business server 2000. in order to upgrade do we just have to purchase the media for server 2003? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115325
  - 20
    - Netmeeting remote control Hello, I have an SBS 2000 server configured with two network cards, and all is fine. I now have a firewall installation that has been configured to allow VPN, and all is working well. The result is, I have connectivity to the external NIC of my SBS server. Is it possible to therefore use netmeeting to remote control an SBS client sat on the internal LAN from a machine connected to the external NIC? I have mastered the art of remote control via netmeeting on the internal LAN. I think my questions are more in the ISA 2000 and routing interface area. Thank You Alan Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115322
  - 21
    - SBS moving exchange public folders Hi Group, I had been trying to move exchange 2000 to a new server but had to revert back temporarilty as we wern't able to send e-mails from the new server externally through port 25, had some problems, which may have taken a few to fix. Anyway,We had replicated folders etc to the new mail server though. I use MS SBS 2000 along with Exchange server 2000 and keep getting the following messages into my own personal inbox. From Public Folder Store (OurServerName) Subject Conflict message - (Whatever Message subject was) When i double click to open these messages i get Multiple edits have been made to "RE: Here it is" conflicting edits have been attached to a conflict message in "2001 - Customer- E-mails". If i then click the open message in conflict button i can see two e-mails NT AUTHORITY/SYSTEMRe:Here it is I then have two options keep this item or keep all. I do not know what will happen if i select the keep all tab or keep this only tab. I have a total of 300+ e-mails in my inbox from the last four days. I can see that the e-mails changed times are somehting like 5 minutes apart frrom when the system states they are being changed. Any ideas on why i am the only user receiving this error message and also how to fix the fault? Any help/advice much appreciated. Regards Cath Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115294
  - 22
    - System crashes at regular time My system crashes almost every night within the same 20 minute window. The physical server has the normally green on/off switch glowing orange as though it's in a power save mode but the server has to be unplugged to get it going again. The server is on a UPS so I don't thinks it's due to an external problem and the regularity makes me thinks it's not power supply. Has anyone come across this type of problems before or does anyone have any ideas as to how I might track down possible causes. Thanks Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115293
  - 23
    - ISA, newbie Hi, i created some rules to deny access to certain website, all is great... but i want to disable streaming media and any audio/video to be downloaded.. so... I Have Created in : Policy Elements > Content group an item that includes Audio/* and Video/* i called it media files i want to use this item so that lan users but i dont where to go from here any ideas? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115292
  - 24
    - Service Control Manager I am receiving tons of messages in the event log all saying the following : Service Control Manager: Timeout(3000 miliseconds) waiting for a transaction from the VxSvc service. What is this and how can I stop it ? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115286
  - 25
    - Newbie post - printer set up question Sorry for the basic question. We are a small company just implementing its first server on SBS 2000 and don't _yet_ have a networked printer. We would like to connect one of our current DeskJet printers directly to the server and use it as a pseudo _networked_ printer rather than directly into the switch. Is it possible to set up the DeskJet in this way and for it to be addressable by the client computers? If not can anyone recommend a cheap networked mono laser printer, preferably HP? TIA Tony Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115282
- Next
  - 1
    - RDC to another workstation Hello all, I can use my workstation's Remote Desktop Conncetion (in WinXP) to connect to the server without any problem, but for some reason I can not connect to other Workstations on the LAN. When I try, a message comes back saying "The client could not connect to the remote computer ... Remote connection might not be enables or the computer might be too busy...". It's definitely not busy, so I was wondering how to enable this on a Workstation running Win2K Professional (assuming that's the problem). Thanks for any help. -Pat Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115278
  - 2
    - How to undo xp pro client install Hi, Ok i goofed! I used the sbs2000 client floppy disk to install two xp pro clients. I now understand that I shouldn't have installed them this way. How would I undo this and reinstall the clients manually? Should I use the delete client computer in sbs2000 and then reinstall??? Thanks, Ricky Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115268
  - 3
    - Open Relay We were bombarded with email this morning (5100 emails). How can we stop this? How can I check if we have an open relay? Thank you :-) Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115265
  - 4
    - ²×·¥´îªÎp¹º(¤ºªþ¯u¹ê´îªÎÓ®×) ¤º¦³¯u¹ê´îªÎ«e«á·Ó¤ù¤ÎÄ«ªG¤é³ø±MÄæ§@®a¦¨¥\´îªÎÓ®×!! 23¦~¸gÅç¥ÎÀç¾i¤Î¯ó¥»¾Ç©ó¥þ²y58Ó°ê®aÀ°§U¶W¹L¤T¥a¥î¨Õ¸U¤H¥K¦¨¥\´î¥h¦h¾l¯×ªÕ (´¿À°§U¤@¦ì¨k¥K¦¨¥\´î¥h402½S¯×ªÕ) http://efit.gotowise.com Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115264
  - 5
    - One User Multiple Mailboxes Peoples, I have a user who needs to have access to another mailbox. For example their current email address is joe@domain.com I also need to be able to give them access to a mailbox called accountsdept@domain.com so that they can send and receive email on this address as well. How do I go about doing this without creating an accountsdept user account? Or as an alternative do I need to create an accountsdept user account and if so how do I give the user Joe access to the accountsdept mailbox so that they can send and receive email as the accountsdept user as well. With many thanks. -Corey Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115254
  - 6
    - connection problems I have about 10 computers running SBS2000 It seems only two machines are able to use internet access right now. Any ideas what to check for...Thanks Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115224
  - 7
    - Microsoft-WebDAV-MiniRedir/5.1.2600 Hi, Discovered another thing last night that concerns me a bit. I was looking through my ISA logs and I found lots of entries containing the line "Microsoft-WebDAV-MiniRedir/5.1.2600". Can someone give me an indication as to whether I should be panicking now? I have ISA blocking port 80 but I got a shock when I discovered that IIS was running on the SBS box (a result of some internal OWA testing I think). Anyway, all these entries contain the SBS box internal IP or the IP of another internal box on the LAN. So...is this just something happening internally? or am I being pinged? or have I been hacked? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115215
  - 8
    - lsass.exe system error !!HELP!! Hi, Had a power outage today and the ups shutdown the server gracefully. When power was restored, powered on server and I get the lsass.exe system error. So I run the directory services restore and come up in safe mode. Well I power down again and it comes up with the same error. Any ideas or help would be great. Already searched the knowledge base and the one I found had me check the permisions, they are ok. Help, Jerry Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115213
  - 9
    - Cable Modem My company is finaly getting fast internet service. We won't be able to get a static IP address. what is the best way to use this service. Through a router that has a firewall connected to my network hubs? or through the SB server (2000) and using their security setup? thanks in advance stephen. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115203
  - 10
    - removing software` Is there any other way to remove software other than the add or remove section in the control panel? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115199
  - 11
    - No SBS 2000 disks provided The people (who shall remain nameless)who originally installed our SBS 2000 network did not provide the installation disks for us. We were provided with the license numbers and a license from Microsoft. Now, we want to change our sever hardware and have no disks. Is this a normal practice for Microsoft certified partners? A friend who also runs SBS 2000 has the disks, but they have a Product Key sticker on them. Can I install on our new hardware with his disks and our license numbers? Any help would be appreciated. Thanks Jesse Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115198
  - 12
    - Address book for shared fax on Windows 2000 Server Help! What am I missing? I created a contacts folder in Public Folders, set the permissions accordingly, had each user set Outlook to see it as an "Outlook Address Book". Now Outlook and Shared Fax can use this address book - great - but on our XP machines only. On the server itself however (W2K Server), neither Outlook nor Shared Fax can see it as an address book. When I click "Address Book" in Shared Fax, I get Global Address List, All Address Lists, All Contacts, All Groups, All Users, and Public Folders. Not even my normal mailbox Exchange contacts show up. How on Earth can I get this contacts folder to show up in Shared Fax? I even checked that IE is using Outlook for email (another setting I saw in a post here). Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115197
  - 13
    - TS is "too busy" What are some steps to get rid of the following error message: "The client could not connect to the Terminal Server. The server may be too busy. Please try connecting later." TS has been working for months and has decided to stop working lately. Thanks in advance. JK Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115193
  - 14
    - XP and Win2k clients cannot logon to the domain Hi all! At a customer site I have three computers that can't logon to the SBS domain. It is two Win XP Pro and on Win 2000 that can't logon. There's also three other Win XP Pro clients and a bunch of Win 98 clients that work as normal. The affected computers hangs at either the Applying personal settings or just a blue screen with the mouse pointer on. The problem occured this morning, previously there haven't been any problems. The server is just a week and a half old, and the onl thing I changed yesterday was to add the WINS-server in the DHCP-server broadcast to speed up the connection on the XP-clients. Of course I have tried to remove that entry, but that didn't help at all All computers have their IP-address via DHCP, and I have verified that they get the right DNS-settings, WINS-server, Netbios and so on. There are no strange entries in the event logs and I have removed the computers from the domain and added them under another name, tried different user accounts and so on. Logging on to the local machine is possible and then you can connect to the shared resources on the server. Do anyone have any suggestions to what to try next, I don't want reformat the computers. Thanks in advance Johan Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115192
  - 15
    - ISA Report Error Hi All, I'm getting errors with the Monthly Reporting. Daily logs (to file) & Weekly reoprts both seem to work OK. When the Monthly Summary tries to run I get: Event Type: Error Event Source: Microsoft ISA report generator Event Category: None Event ID: 21028 Date: 9/07/2003 Time: 8:04:53 a.m. User: N/A Computer: MYSERVER Description: ISA report generation error: The Microsoft Jet database engine cannot find the input table or query 'Server Participation'. Make sure it exists and that its name is spelled correctly. Followed by : Event Type: Error Event Source: Microsoft ISA report generator Event Category: None Event ID: 21016 Date: 9/07/2003 Time: 8:04:53 a.m. User: N/A Computer: CVSSERVER Description: The action to summarize all the daily summaries into a monthly summary for month "06/2003" failed. "Standard" SBS2000 install, no other problems. Your help would be appreciated, Thanks, Clive Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115190
  - 16
    - Email forwarding We are trying to forward email from a user to his pager going through SBS. Is there any reason a Rules in Error message appears and the item does not forward? Can we not forward to any email address using rules anymore? ALN Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115187
  - 17
    - Terminal Services I have a customer who has been told that they need to go to SBS 2000. They have an application that needs SQL Server and they only have 20 users. My question regarding Terminal Services is can they buy the TS CALs and operate in the application mode for 5 remote users. Also, there is a possiblility that they will need to setup a separate IIS server. Can SBS have two servers in the same AD? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115177
  - 18
    - DHCP? I know this has been asked before, what are the advantages of using DHCP over fixed IP's? Convince me. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115174
  - 19
    - IIS Services vanished I reinstalled IIS on SBS2000 and ran into the known problem where Exchange Server services fail to start, necessitating a re-install of Exchange Server. Now when open IIS Service Manager both my default web site and SMTP service are gone, with no apparent way of adding them back in again. Before I get myself into an endless loop, can someone suggest a way out? TIA Jeff Mowatt Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115173
  - 20
    - Mail Disclaimer Hi hope you can help I'm folowing the instructions on the SBS2000.info web site to set up a disclaimer on all outgoing mail. In the batch file "disclaimer.bat" you need to enter a "mail from=*@domain" is this domain our "company.local" domain or "company.co.uk" domain. Thanks .... Fred Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115169
  - 21
    - TCP/IP Problems Part 2 We'll I tried all the tricks from the previous suggestions, and unfortunately I'm going to have to reinstall TCP/IP on the domain controller. Of course I will be following http://support.microsoft.com/default.aspx?scid=kb;EN-US;299451 Before undertaking this challenge, anyone have any other idea's I haven't thought of? And secondly http://support.microsoft.com/default.aspx?scid=kb;EN-US;299451 mentions re-creating lost shares??? Will I have to reassign privileges to each folder or just share them and label them as they were before? Will this include printers? Let me just say HOLY COW! If anyone has had to do this process..pointers are welcome. Robert Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115168
  - 22
    - Replace Drive - now what? I had a SCSI drive fail, which I am replacing. It is not my primary drive, so my server does boot up. I don't have Raid. How should I proceed. I had two logical drives, and some development and test files on that hard drive. Must I manually create the logical drives, or is there a better way? Then what, restore from backup? Is there no reasonable way that I can repair that drive? I no longer see it on my server. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115156
  - 23
    - security, VPN, MAC or IP address If someone hacks into a Small Business Server, is there a log file which stores their Mac or IP address? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115154
  - 24
    - How to use the Guest account with (XP) roaming profiles? I'd like to utilize the Guest account/Group for, well, guests (Internet and printers access but no files or Exchange). Enabling the Guest account works but how do I customize the darn XP profile? It insists on recreating it anew every time I log on (as a guest). I insured that the Guest has access to it's user folder and the profile path is in the properties but it refuses to remember the settings. Any ideas? (Ordinary users use the roaming profiles without a hitch.) - Robert. Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115152
  - 25
    - Upgrade from NT4 to Windows 2000 Is it feasable to buy a new server and put Windows 2000 w/ Small Bus Server on it, then import all old files and settings from old NT 4.0 server? Should I just start from scratch? Tag: **03-024Buffer Overrun in Windows Could Lead to Data Corruption Tag: 115142

Title: Buffer Overrun in Windows Could Lead to Data Corruption (817606)
Date: July 09, 2003

Software: Microsoft Windows NT Server 4.0; Microsoft Windows NT Server
4.0;Terminal Server Edition; Microsoft Windows 2000;Windows XP
Professional
Impact: Allow an attacker to execute code of their choice
Maximum Severity Rating: IMPORTANT
Bulletin: MS03-024

The Microsoft Security Response Center has released Microsoft Security
Bulletin MS03-024

What Is It?
The Microsoft Security Response Center has released Microsoft Security
Bulletin MS03-024 which concerns a vulnerability in Windows. Customers
are advised to review the information in the bulletin and test and
deploy the patch in their environments, if applicable.

More information is now available at
http://www.microsoft.com/technet/security/bulletin/MS03-024.asp

If you have any questions regarding the patch or its implementation
after reading the above listed bulletin you should contact Product
Support Services in the United States at 1-866-PCSafety
(1-866-727-2338). International customers should contact their local
subsidiary.

Top