04.25.10

Gemini version available ♊︎

Microsoft Serves Patch to Windows Servers Which Can Compromise These Servers Rather Than Secure Them

Posted in Boycott Novell, Microsoft, Security, Servers, Vista 7, Windows at 6:12 am by Dr. Roy Schestowitz

Antique hammers

Summary: Latest Windows Update can actually create holes rather than close them; Vista 7 is disliked by another business, which may dump it for another operation system (or XP)

MICROSOFT IS not so good at patching those serious flaws which it deliberately hides; every now and then we find a story about Microsoft delivering bad patches that break Windows rather than fix it (sometimes even breaking mathematics in Office). Microsoft then issues a patch to fix the damage caused by the first patch, assuming that Windows can boot at all or connect to the network after the first patch.

According to this report, Microsoft has just done that again and it’s retracting the patch (a little too late though).

Microsoft has withdrawn an update for Windows Server because the patch, issued eight days ago, does not treat the root cause of the problem it was meant to fix.

This is why so many users — including businesses — refuse to accept Windows patches, at least immediately (some take a wait-and-see approach). They have no confidence in them.

As Terry Porter put it, “Windows Server fix pulled after failing to patch flaws.” He cites this interesting article which goes further than the above.

Windows Server fix pulled after failing to patch flaws.

Microsoft has taken down a recent security patch for Windows 2000 Server.

The company said that it would be working on an update for the MS10-025 patch, released last week as part of the monthly ‘Patch Tuesday’ update package.

The update was taken down amidst reports that the fix Microsoft had released was not properly patching vulnerabilities in the Windows Media Services component for Windows 200 Server.

The company has the vulnerabilities rated as ‘critical,’ and a successful update could allow an attacker to remotely execute code on a targeted system. No attacks targeting the flaw have been reported in the wild, however.

Be sure to read that last part again. It says that “a successful update could allow an attacker to remotely execute code on a targeted system.”

Gotta love Windows, eh?

“Business is far too important to entrust to Windows, get a clue and look at GNU/Linux TODAY!”
      –Terry Porter
Porter has actually shared another anecdote, quoting what he titled “Windows 7 described as a disaster by small business owner, may switch to another OS!

“This business user had Autocad,” he explains, “and MS Word compatibility problems,  no  printer drivers for a hp DeskJet 5850 (which is supported under Linux),  and describes his Windows 7 purchase as a “disaster”.

“Business is far too important to entrust to Windows, get a clue and look  at GNU/Linux TODAY!”

Here is the word directly from the source:

We [purchased] a new fully loaded HP desktop (three months ago) with all the goodies,” they wrote. “We are experiencing to many problems to list but here are some; video very unstable, incompatibility problems with ACAD 14, MS Word 2003, Macromedia drivers, Easy Innkeeper etc., etc. not working at all or unstable, Microsoft Outlook 8 irregular load failures and no drivers for hp DeskJet 5850 (it will only work as a network printer).

We are small business owners and this is a disaster of a purchase we 
made.

We replaced our older HP Pavilion f1905 running XP pro/service pack 3 (hard drive problems) with an E154 running on Windows 7 Pro. They (MS) still do not get it – we do not have an IT department and service calls are getting expense. HP service technicians have been of very little help. We will be seriously looking at switching to brand X or go back to XP.

Why does Microsoft keep saying that everyone loves Vista 7 when obviously that’s not true?

Battery icon

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

A Single Comment

  1. Yuhong Bao said,

    April 25, 2010 at 8:58 pm

    Gravatar

    “Be sure to read that last part again. It says that “a successful update could allow an attacker to remotely execute code on a targeted system.””
    On the matter of this, remember MS06-042, which in some OSes introduced a vulnerablity, and it required two revisions before that was finally patched properly?

DecorWhat Else is New


  1. Links 18/1/2022: Deepin 20.4 and Qubes OS 4.1.0 RC4

    Links for the day



  2. Links 18/1/2022: GNOME 42 Alpha and KStars 3.5.7

    Links for the day



  3. IRC Proceedings: Monday, January 17, 2022

    IRC logs for Monday, January 17, 2022



  4. Links 17/1/2022: More Microsoft-Connected FUD Against Linux as Its Share Continues to Fall

    Links for the day



  5. The GUI Challenge

    The latest article from Andy concerns the Command Line Challenge



  6. Links 17/1/2022: digiKam 7.5.0 and GhostBSD 22.01.12 Released

    Links for the day



  7. IRC Proceedings: Sunday, January 16, 2022

    IRC logs for Sunday, January 16, 2022



  8. Links 17/1/2022: postmarketOS 21.12 Service Pack 1 and Mumble 1.4 Released

    Links for the day



  9. [Meme] Gemini Space (or Geminispace): From 441 Working Capsules to 1,600 Working Capsules in Just 12 Months

    Gemini space now boasts 1,600 working capsules, a massive growth compared to last January, as we noted the other day (1,600 is now official)



  10. [Meme] European Patent Office Space

    The EPO maintains a culture of illegal surveillance, inherited from Benoît Battistelli and taken to a whole new level by António Campinos



  11. Gemini Rings (Like Webrings) and Shared Spaces in Geminspace

    Much like the Web of 20+ years ago, Gemini lets online communities — real communities (not abused tenants, groomed to be ‘monetised’ like in Facebook or Flickr) — form networks, guilds, and rings



  12. Links 16/1/2022: Latte Dock 0.11 and librest 0.9.0

    Links for the day



  13. The Corporate Cabal (and Spy Agencies-Enabled Monopolies) Engages in Raiding of the Free Software Community and Hacker Culture

    In an overt attack on the people who actually did all the work — the geeks who built excellent software to be gradually privatised through the Linux Foundation (a sort of price-fixing and openwashing cartel for shared interests of proprietary software firms) — is receiving more widespread condemnation; even the OSI has been bribed to become a part-time Microsoft outsourcer as organisations are easier to corrupt than communities



  14. EPO's Web Site Constantly Spammed by Lies About Privacy While EPO Breaks the Law and Outsources Data to the United States

    The António Campinos-led EPO works for imperialism, it not only protects the rich; sadly, António’s father isn’t alive anymore and surely he would blast his son for doing what he does to progress his career while lying to staff and European citizens



  15. Links 16/1/2022: Tsunami and Patents

    Links for the day



  16. IRC Proceedings: Saturday, January 15, 2022

    IRC logs for Saturday, January 15, 2022



  17. Links 16/1/2022: Year of the GNU/Linux Desktop and Catch-up With Patent Misinformation

    Links for the day



  18. Patrick Breyer, Unlike Most German Politicians, Highlights the Fact That Unified Patent Court (UPC) and Unitary Patent Are Incompatible With EU Law

    A longtime critic of EPO abuses (under both Benoît Battistelli and António Campinos leadership), as well as a vocal critic of software patents, steps in to point out the very obvious



  19. Links 15/1/2022: Flameshot 11.0 and Libvirt 8.0

    Links for the day



  20. Blogging and Microblogging in Geminispace With Gemini Protocol

    Writing one’s thoughts and other things in Geminispace — even without setting up a Gemini server — is totally possible; gateways and services do exist for this purpose



  21. Links 15/1/2022: Raspberry Pi in Business

    Links for the day



  22. IRC Proceedings: Friday, January 14, 2022

    IRC logs for Friday, January 14, 2022



  23. Gemini Clients: Comparing Moonlander, Telescope, Amfora, Kristall, and Lagrange (Newer and Older)

    There are many independent implementations of clients (similar to Web browsers) that deal with Gemini protocol and today we compare them visually, using Techrights as a test case/capsule



  24. 2022 Starts With Censorship of Christmas and Other Greetings at the EPO

    The nihilists who run the EPO want a monopoly on holiday greetings; to make matters worse, they’re censoring staff representatives in their intranet whilst inconsistently applying said policies



  25. Links 14/1/2022: FFmpeg 5.0 and Wine 7.0 RC6

    Links for the day



  26. White House Asking Proprietary Software Companies That Add NSA Back Doors About Their Views on 'Open Source' Security

    The US government wants us to think that in order to tackle security issues we need to reach out to the collective 'wisdom' of the very culprits who created the security mess in the first place (even by intention, for imperialistic objectives)



  27. Links 14/1/2022: EasyOS 3.2.1 and Qt 6.3 Alpha

    Links for the day



  28. Scientific Excellence and the Debian Social Contract

    The Debian Project turns 30 next year; in spite of it being so ubiquitous (most of the important distros of GNU/Linux are based on Debian) it is suffering growing pains and some of that boils down to corporate cash and toxic, deeply divisive politics



  29. Links 14/1/2022: openSUSE Leap 15.2 EoL, VFX Designers Are Using GNU/Linux

    Links for the day



  30. IRC Proceedings: Thursday, January 13, 2022

    IRC logs for Thursday, January 13, 2022


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts