Updates

[Capt K Ripendran]

I have a HP Pavilion 6511 preloaded with Windows 98 SE. Recently, I had
downloaded and installed Security Update KB891711, amongst others. Since
then I find that the PC is occasionally unstable.
I also have a HP Pavilion 4509 preloaded with Windows 98 SE and this PC
works as ever before!

What does this Update do? Is it required to keep this Update?

Thanking you
Capt K Ripendran

 

[MEB]

Re: Updates



"Capt K Ripendran" <ripendran@dataone.in> wrote in message
news:e1msTJfwHHA.3684@TK2MSFTNGP02.phx.gbl...
| I have a HP Pavilion 6511 preloaded with Windows 98 SE. Recently, I had
| downloaded and installed Security Update KB891711, amongst others. Since
| then I find that the PC is occasionally unstable.
| I also have a HP Pavilion 4509 preloaded with Windows 98 SE and this PC
| works as ever before!
|
| What does this Update do? Is it required to keep this Update?
|
| Thanking you
| Capt K Ripendran
|

Not a yes or no answer.

Here's what I saved from that time period [03/2005] for KB891711, note
there were two versions v1 and 2 [both had problems in certain
configurations]:
v2 file date is: 03/23/05 for the KB891711.exe. [Look in
%windir\system\KB891711]

http://www.microsoft.com/technet/security/bulletin/MS05-002.mspx
Microsoft Security Bulletin MS05-002
Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code
Execution (891711)

Related references:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1049

In a Web-based attack scenario, an attacker would have to host a Web site
that contains a Web page that is used to exploit this vulnerability. An
attacker could also attempt to compromise a Web site to have it serve up a
Web page with malicious content attempting to exploit this vulnerability. An
attacker would have no way to force users to visit a Web site. Instead, an
attacker would have to persuade them to visit the Web site, typically by
getting them to click a link that takes them to the attacker's site or a
site compromised by the attacker.

An attacker who successfully exploited this vulnerability could gain the
same user rights as the local user. Users whose accounts are configured to
have fewer user rights on the system could be less impacted than users who
operate with administrative user rights.

By default, Outlook Express 6, Outlook 2002, and Outlook 2003 open HTML
e-mail messages in the Restricted sites zone. Additionally, Outlook 2000
opens HTML e-mail messages in the Restricted sites zone if the Outlook
E-mail Security Update
(http://www.microsoft.com/office/previous/outlook/2002security.asp) has been
installed. Outlook Express 5.5 Service Pack 2 opens HTML e-mail messages in
the Restricted sites zone if Microsoft Security Bulletin MS04-018
(http://www.microsoft.com/technet/security/bulletin/ms04-018.mspx) has been
installed. The Restricted sites zone helps reduce attacks that could
attempt to exploit this vulnerability.

The risk of attack from HTML e-mail can be significantly reduced if you meet
all the following conditions:

1. Apply the update that is included with Microsoft Security Bulletin
MS03-040 (http://www.microsoft.com/technet/security/bulletin/MS03-040.mspx)
or later Cumulative Security Update for Internet Explorer.
2. Use Internet Explorer 6 or later.
3. Use the Microsoft Outlook E-mail Security Update, use Microsoft Outlook
Express 6 or later, or use Microsoft Outlook 2000 Service Pack 2 or later in
its default configuration.
4. Read e-mail messages in plain text format (Outlook 2002 or later, or
Outlook Express 6 SP1 or later).

The update removes the vulnerability by modifying the way that cursors,
animated cursor, and icon formats are validated prior to rendering.


Parties contacting Microsoft concerning the problems received this [or
similar]:

Thank you for contacting Microsoft Online Support Service. My name is
**********, and I'm glad to work with you. For your reference, the case ID
for
this service request is XXXXXXXXXXXX. You can contact me directly by
writing an email to xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx with the case ID in
the subject line.
To give the most accurate support possible, I would like to give a brief
summary of the problem as I understand it:
The computer did not work properly after you installed KB891711. You
have indicated that the issue has been resolved after you removed it
from Startup.
If there has been any misunderstanding, please let me know.

I would like to explain that Microsoft releases new updates to fix bugs
and increase the stability of Windows Operating System, and we have
tested as much of the software environment as we could to improve the
performance of updates. However, we cannot guarantee that every update
can install perfectly in all computers because every computer has a
different software and hardware environment. I highly appreciate your
understanding.
Regarding your concern, I would like to explain that it is a security
updates for the computer. If you have an antivirus or firewall program,
you do not need to run this update in the background currently.
If you have any further questions, don't hesitate to let me know.
Thank you for your time. I am standing by for your reply.
Best Regards,
-------

NOTE THE LAST PARAGRAPH

In this forum [and elsewhere], some had no problems, but many did. If
problems were associated to the fix, you can test by disabling it in
MSconfig or uninstalling.

It is regarded by most as a kludge / crutch, since its just a work-around
rather than a fix. Microsoft produced two (2) of these, the second is
KB918547. Likely produced as such because End Of Support was coming due.

More Information / Downloads: More information on this vulnerability could
be found in links provided below

http://support.microsoft.com/default.aspx?scid=kb;en-us;891711

http://www.microsoft.com/technet/security/Bulletin/MS05-002.mspx

http://support.microsoft.com/default.aspx?pr=LifeAn1

http://go.microsoft.com/fwlink/?LinkId=21130

http://go.microsoft.com/fwlink/?LinkId=21742

http://go.microsoft.com/fwlink/?LinkId=21140

http://go.microsoft.com/fwlink/?LinkId=33327

http://go.microsoft.com/fwlink/?LinkId=33328

http://go.microsoft.com/fwlink/?LinkId=33330

http://go.microsoft.com/fwlink/?LinkId=21134

http://go.microsoft.com/fwlink/?LinkId=33332

http://go.microsoft.com/fwlink/?LinkId=21158

http://go.microsoft.com/fwlink/?LinkId=33329

http://go.microsoft.com/fwlink/?LinkId=21129

http://go.microsoft.com/fwlink/?LinkId=21131

http://go.microsoft.com/fwlink/?LinkId=21132

http://go.microsoft.com/fwlink/?LinkId=21133

http://go.microsoft.com/fwlink/?LinkId=21134

http://support.microsoft.com/kb/323166

http://go.microsoft.com/fwlink/?LinkId=21135

http://go.microsoft.com/fwlink/?LinkId=22939

http://go.microsoft.com/fwlink/?LinkId=33340

http://go.microsoft.com/fwlink/?LinkId=21158

http://go.microsoft.com/fwlink/?LinkId=33341

http://go.microsoft.com/fwlink/?LinkId=33387

http://go.microsoft.com/fwlink/?LinkId=21161

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1049

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1305

http://go.microsoft.com/fwlink?linkid=18866

--
MEB
http://peoplescounsel.orgfree.com
________

 

[glee]

Re: Updates

Hi Cap'n,

Are you sure that update is responsible for the instability you see? You stated
that you installed other updates along with this one.

When did you install the updates, and did you install them through the Windows
Update web site? There were two versions of this update....the first version caused
problems for a number of folks but the second version seemed to fix the issues for
all but a relative handful of people, and those usually had another program that was
involved with the issues. IIRC, using an older version of Zone Alarm may have been
one of the problem scenarios with the second version, and upping to a later version
of ZA fixed it for those.

You can remove the update temporarily to determine if it is responsible for your
problem.
If you still have the old one (v.1) installed, press Ctrl+Alt+Delete, and End Task
on Kb891711, if shown there; then uninstall the update through Add/Remove Programs.

Whether or not you have uninstalled it previously, make sure to delete this folder,
and all its contents:
C:\WINDOWS\SYSTEM\KB891711

If the stability issues disappear, it may be that update, or its incompatibility
with an app on your system, that is the cause. You can try reinstalling it via
Windows Update, or better, go to Windows Update Catalog and download the update
alone, saved to you hard drive, then run it from there to install.
Windows98-KB891711-v2-ENU.EXE

Info on the update and the vulnerability it patches:
Microsoft Security Bulletin MS05-002: Vulnerability in Cursor and Icon Format
Handling Could Allow Remote Code Execution (891711)
http://www.microsoft.com/technet/security/bulletin/ms05-002.mspx

--
Glen Ventura, MS MVP Shell/User, A+
http://dts-l.org/
http://dts-l.org/goodpost.htm


"Capt K Ripendran" <ripendran@dataone.in> wrote in message
news:e1msTJfwHHA.3684@TK2MSFTNGP02.phx.gbl...
>I have a HP Pavilion 6511 preloaded with Windows 98 SE. Recently, I had
> downloaded and installed Security Update KB891711, amongst others. Since
> then I find that the PC is occasionally unstable.
> I also have a HP Pavilion 4509 preloaded with Windows 98 SE and this PC
> works as ever before!
>
> What does this Update do? Is it required to keep this Update?
>
> Thanking you
> Capt K Ripendran
>
>
>

 

[Capt K Ripendran]

Re: Updates

Thank you for your input. No, I was NOT certain that this Update was the
problem, except that I read somewhere that it can be a problem - perhaps in
one of your posts! I had removed this Update from the Add/Remove Programs
Properties but even thereafter the problem continued.

I then found out that the Processor fan was going too slow and consequently
there was the heating up problem. I changed the fan. I also found out that
one 128 mb RAM was not working - perhaps this was due to the heating
problem! I removed this from the 2nd DIMM socket and now all seems well
except that it is too slow with only the original 64 mb RAM. I am thinking
of getting a new 128 mb RAM.


"glee" <glee29@spamindspring.com> wrote in message
news:u%23daoFowHHA.3796@TK2MSFTNGP04.phx.gbl...
> Hi Cap'n,
>
> Are you sure that update is responsible for the instability you see? You
stated
> that you installed other updates along with this one.
>
> When did you install the updates, and did you install them through the
Windows
> Update web site? There were two versions of this update....the first
version caused
> problems for a number of folks but the second version seemed to fix the
issues for
> all but a relative handful of people, and those usually had another
program that was
> involved with the issues. IIRC, using an older version of Zone Alarm may
have been
> one of the problem scenarios with the second version, and upping to a
later version
> of ZA fixed it for those.
>
> You can remove the update temporarily to determine if it is responsible
for your
> problem.
> If you still have the old one (v.1) installed, press Ctrl+Alt+Delete, and
End Task
> on Kb891711, if shown there; then uninstall the update through Add/Remove
Programs.
>
> Whether or not you have uninstalled it previously, make sure to delete
this folder,
> and all its contents:
> C:\WINDOWS\SYSTEM\KB891711
>
> If the stability issues disappear, it may be that update, or its
incompatibility
> with an app on your system, that is the cause. You can try reinstalling
it via
> Windows Update, or better, go to Windows Update Catalog and download the
update
> alone, saved to you hard drive, then run it from there to install.
> Windows98-KB891711-v2-ENU.EXE
>
> Info on the update and the vulnerability it patches:
> Microsoft Security Bulletin MS05-002: Vulnerability in Cursor and Icon
Format
> Handling Could Allow Remote Code Execution (891711)
> http://www.microsoft.com/technet/security/bulletin/ms05-002.mspx
>
> --
> Glen Ventura, MS MVP Shell/User, A+
> http://dts-l.org/
> http://dts-l.org/goodpost.htm
>
>
> "Capt K Ripendran" <ripendran@dataone.in> wrote in message
> news:e1msTJfwHHA.3684@TK2MSFTNGP02.phx.gbl...
> >I have a HP Pavilion 6511 preloaded with Windows 98 SE. Recently, I had
> > downloaded and installed Security Update KB891711, amongst others. Since
> > then I find that the PC is occasionally unstable.
> > I also have a HP Pavilion 4509 preloaded with Windows 98 SE and this PC
> > works as ever before!
> >
> > What does this Update do? Is it required to keep this Update?
> >
> > Thanking you
> > Capt K Ripendran

 

[glee]

Re: Updates

Heh-heh....no, that doesn't sound like it was the update. ;-)

Is this the same system with which you now have the Add/Remove Programs list
problem?
--
Glen Ventura, MS MVP Shell/User, A+
http://dts-l.org/
http://dts-l.org/goodpost.htm


"Capt K Ripendran" <ripendran@dataone.in> wrote in message
news:uotCsK$0HHA.484@TK2MSFTNGP06.phx.gbl...
> Thank you for your input. No, I was NOT certain that this Update was the
> problem, except that I read somewhere that it can be a problem - perhaps in
> one of your posts! I had removed this Update from the Add/Remove Programs
> Properties but even thereafter the problem continued.
>
> I then found out that the Processor fan was going too slow and consequently
> there was the heating up problem. I changed the fan. I also found out that
> one 128 mb RAM was not working - perhaps this was due to the heating
> problem! I removed this from the 2nd DIMM socket and now all seems well
> except that it is too slow with only the original 64 mb RAM. I am thinking
> of getting a new 128 mb RAM.
>
>
> "glee" <glee29@spamindspring.com> wrote in message
> news:u%23daoFowHHA.3796@TK2MSFTNGP04.phx.gbl...
>> Hi Cap'n,
>>
>> Are you sure that update is responsible for the instability you see? You
> stated
>> that you installed other updates along with this one.
>>
>> When did you install the updates, and did you install them through the
> Windows
>> Update web site? There were two versions of this update....the first
> version caused
>> problems for a number of folks but the second version seemed to fix the
> issues for
>> all but a relative handful of people, and those usually had another
> program that was
>> involved with the issues. IIRC, using an older version of Zone Alarm may
> have been
>> one of the problem scenarios with the second version, and upping to a
> later version
>> of ZA fixed it for those.
>>
>> You can remove the update temporarily to determine if it is responsible
> for your
>> problem.
>> If you still have the old one (v.1) installed, press Ctrl+Alt+Delete, and
> End Task
>> on Kb891711, if shown there; then uninstall the update through Add/Remove
> Programs.
>>
>> Whether or not you have uninstalled it previously, make sure to delete
> this folder,
>> and all its contents:
>> C:\WINDOWS\SYSTEM\KB891711
>>
>> If the stability issues disappear, it may be that update, or its
> incompatibility
>> with an app on your system, that is the cause. You can try reinstalling
> it via
>> Windows Update, or better, go to Windows Update Catalog and download the
> update
>> alone, saved to you hard drive, then run it from there to install.
>> Windows98-KB891711-v2-ENU.EXE
>>
>> Info on the update and the vulnerability it patches:
>> Microsoft Security Bulletin MS05-002: Vulnerability in Cursor and Icon
> Format
>> Handling Could Allow Remote Code Execution (891711)
>> http://www.microsoft.com/technet/security/bulletin/ms05-002.mspx
>>
>> --
>> Glen Ventura, MS MVP Shell/User, A+
>> http://dts-l.org/
>> http://dts-l.org/goodpost.htm
>>
>>
>> "Capt K Ripendran" <ripendran@dataone.in> wrote in message
>> news:e1msTJfwHHA.3684@TK2MSFTNGP02.phx.gbl...
>> >I have a HP Pavilion 6511 preloaded with Windows 98 SE. Recently, I had
>> > downloaded and installed Security Update KB891711, amongst others. Since
>> > then I find that the PC is occasionally unstable.
>> > I also have a HP Pavilion 4509 preloaded with Windows 98 SE and this PC
>> > works as ever before!
>> >
>> > What does this Update do? Is it required to keep this Update?
>> >
>> > Thanking you
>> > Capt K Ripendran
>
>
>
>