From: "Geo." 

Right, then everyone will complain it's 5 patches when it should be one so
it's easier to install, and then MS will want to do it ever 3 or 4 months
instead of every month and pretty soon we'll be back to quarterly service
packs which is RIGHT WHERE WE STARTED...

 they just don't understand the concepts. Hotfixes for exploits must
be done and released within a day or two of the exploit going public, they
are separate patches because they are untested and sometimes you have to
skip one to keep running, the tested version and anything else can wait for
the quarterly service pack. It was a method that WORKED, sure there were a
couple of nasty service packs but the changes haven't allowed them to avoid
that type of problem so what's the point to doing it any other way?

Geo.


"John Cuccia"  wrote in message
news:36frovc5546bm8pb8866pa7c9kmg2qbkoh{at}4ax.com...
> You won't have to worry about Wednesday updates anymore, MS is
> changing to a monthly schedule.  Here's partial text of a note from my
> company's Technical Account Manager:
>
> ============
> As you may have noticed today, I sent quite a number of security
> bulletins in a short time period.  (MS03-041 through MS03-047)  I have
> already received a number of questions concerning the volume.
>
> In response to extensive customer feedback, Microsoft is implementing
> changes in the way security bulletins are released. These changes will
> help enhance the manageability and predictability of the patch
> management process for customers.
>
> Moving forward, security bulletins will normally be released on the
> second calendar Tuesday of every month. However, the first monthly
> bulletins have been released today, Wednesday, October 15, 2003.
> ==============
>
>
> On Wed, 15 Oct 2003 16:00:01 -0400, "Geo."
 wrote:
>
> >count them and weep.. it's WINSday..
> >
> >MS03-047 : Vulnerability in Exchange Server 5.5 Outlook Web Access Could
Allow Cross-Site Scripting Attack (828489)
> >
> >MS03-046 : Vulnerability in Exchange Server Could Allow Arbitrary Code
Execution (822363)
> >
> >MS03-045 : Buffer Overrun in the ListBox and in the ComboBox Control
Could Allow Code Execution (824141)
> >
> >MS03-044 : Buffer Overrun in Windows Help and Support Center Could Lead
to System Compromise (825119)
> >
> >MS03-043 : Buffer Overrun in Messenger Service Could Allow Code Execution
(828035)
> >
> >MS03-042 : Buffer Overflow in Windows Troubleshooter ActiveX Control
Could Allow Code Execution (826232)
> >
> >MS03-041 : Vulnerability in Authenticode Verification Could Allow Remote
Code Execution (823182)
> >
> >
> >wow, they must have been saving up for this one...
> >
> >Geo.
>

--- BBBS/NT v4.01 Flag-5