From: http://www.theregister.co.uk/content/55/29857.html

"A patch for a serious flaw in Windows 2000, which prompted a major Microsoft alert earlier this week, is causing problems for a small percentage of users.

Applying the patch on top of earlier Win2K hot fixes can sometimes result in the dreaded Blue Screen of Death. The problem arises only for W2K SP2 machines which had unspecified Hotfixes applied which were received directly from Microsoft Product Support Services (PSS).

Russ Cooper, Surgeon-General of TruSecure Corporation and editor of the NTBugtraq mailing list, has published a support pagedocumenting the problem.

The ISS WebDAV (World Wide Web Distributed Authoring and Versioning) is one of many Windows components
which uses ntdll.dll. So although most of the coverage of the problem thus far has concentrated on IIS as a vector for the attack, the patch needs to be applied to all potentially vulnerable Windows 2000 boxes."



Right, that's like saying you can prove something via example. You can only DISprove via example... that if your data leds itself to reliable conclusions, which is, at best, questionable. Nice try anyways.

Just because your patching of '250' went flawlessly, does that mean every one's will.

/-----



[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/152/19202#19202