Security Home > Windows NT, 2000 & XP

Microsoft Releases Windows 2000 Service Pack 4 New

Windows 2000 Service Pack 4 (SP4) provides the latest updates to the Windows 2000 operating systems. These updates are a collection of fixes in the following areas: security, application compatibility, operating system reliability, and setup.

Issue

This service pack includes fully regression-tested versions of the patches for all security vulnerabilities affecting Windows 2000 found up to the closing date of Service Pack development. The following Microsoft Security Bulletins are included in Service Pack 4.

MS03-019 (817772) - Flaw in ISAPI extension for Windows Media Services could cause denial of service

MS03-018 (811114) - Cumulative Patch for Internet Information Service

MS03-014 (330994) - Cumulative Patch for Outlook Express

MS03-013 (811493) - Buffer Overrun in Windows Kernel Message Handling Could Lead to Elevated Privileges

MS03-010 (331953) - Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks

MS03-008 (814078) - Flaw in Windows Script Engine Could Allow Code Execution

MS03-007 (815021) - Unchecked buffer in Windows Component Could Cause Web Server Compromise

MS03-001 (810833) - Unchecked Buffer in Locator Service Could Lead to Code Execution

MS02-071 (328310) - Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation

MS02-070 (329170) - Flaw in SMB Signing Could Enable Group Policy to be Modified

MS02-065 (329414) - Buffer Overrun in Microsoft Data Access Components Could Lead to Code Execution

MS02-063 (329834) - Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks

MS02-055 (323255) - Unchecked Buffer in Windows Help Facility Could Enable Code Execution

MS02-053 (324096) - Buffer Overrun in SmartHTML Interpreter Could Allow Code Execution

MS02-051 (324380) - Cryptographic Flaw in RDP Protocol can Lead to Information Disclosure

MS02-050 (329115) - Certificate Validation Flaw Could Enable Identity Spoofing

MS02-048 (323172) - Flaw in Certificate Enrollment Control Could Allow Deletion of Digital Certificates

MS02-045 (326830) - Unchecked Buffer in Network Share Provider can Lead to Denial of Service

MS02-042 (326886) - Flaw in Network Connection Manager Could Enable Privilege Elevation

MS02-032 (320920) - Cumulative Patch for Windows Media Player

Affected Products

  • Microsoft Windows 2000

Solution

Download and install the latest Windows 2000 service pack from Microsoft.

Further Details

Reference: Microsoft Corporation

Updated: June 26, 2003

>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<