Bogus MS 'critical update'

Martin Hepworth martinh at SOLID-STATE-LOGIC.COM
Mon Jul 25 11:30:15 IST 2005


    [ The following text is in the "ISO-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

Nigel kendrick wrote:
> I have just had a bogus Microsoft update slip through the net. Is there a
> rule to combat these? In any case, here's the info in case it's of use:
> 
> 
> From: MS Technical Services [fdgekwamzwrzj at technet.com]
> Subject line: "Newest Microsoft Critical Pack"
> The attachment was "Upgrade9591.exe"
> 
> Here's the body, minus HTML formatting:
> 
>   Microsoft    All Products |  Support |  Search |  Microsoft.com Guide   
> Microsoft Home    
>  
> MS Customer
> 
> this is the latest version of security update, the "July 2005, Cumulative
> Patch" update which eliminates all known security vulnerabilities affecting
> MS Internet Explorer, MS Outlook and MS Outlook Express as well as three
> newly discovered vulnerabilities. Install now to continue keeping your
> computer secure from these vulnerabilities, the most serious of which could
> allow an malicious user to run executable on your computer. This update
> includes the functionality of all previously released patches.  
> 
> 
>  System requirements  Windows 95/98/Me/2000/NT/XP 
>  This update applies to  MS Internet Explorer, version 4.01 and later
> MS Outlook, version 8.00 and later
> MS Outlook Express, version 4.01 and later  
>  Recommendation Customers should install the patch at the earliest
> opportunity. 
>  How to install Run attached file. Choose Yes on displayed dialog box. 
>  How to use You don't need to do anything after installing this item. 
> 
> Microsoft Product Support Services and Knowledge Base articles can be found
> on the Microsoft Technical Support web site. For security-related
> information about Microsoft products, please visit the Microsoft Security
> Advisor web site, or Contact Us. 
> 
> Thank you for using Microsoft products.
> 
> Please do not reply to this message. It was sent from an unmonitored e-mail
> address and we are unable to respond to any replies.
> 

Nigel

what's the attachment and what Anti-virus are you running. By defauly MS 
should block .exe's so have you 'tweaked' the filetype scanning on your 
system??

-- 
--
Martin Hepworth
Senior Systems Administrator
Solid State Logic Ltd
tel: +44 (0)1865 842300

**********************************************************************

This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote confirms that this email message has been swept
for the presence of computer viruses and is believed to be clean.	

**********************************************************************

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).

Support MailScanner development - buy the book off the website!



More information about the MailScanner mailing list