|
Bug fixes
Here are a list of a few bug fixes for windows , scanc0p put this together for me , so I would like to say thank you to him for this . Bug Name:
Windows 95/98 Dial-up Networking Save Password Bug
Dial up password bug
Large numbers of Windows 95/98 Dial-up Networking users are staying up late at night pulling their hair out over why the Save Password option in their Connect To dialog box doesn't work. Symptoms range from being able to select the box and it not working, to the box being completely grayed out and inaccessible.
Available Fixes:
Option available but not working: The first thing to note when trying to fix this problem is that for the Save Password option to work, you must successfully connect to the remote system at least once with the option checked before Windows 95 will save your password. This also means that if you have more than one connection profile, you need to establish at least one successful connection with each profile that you wish to save your password with, even if your password is the same across all the profiles.
Option not available (grayed out): There are a number of reasons why this may be occurring, and there are a number of ways you can try and get around the problem. One method is to change your Computer Name to the login ID you use for your Internet Service Provider (ISP). You can modify your computer name by double-clicking the Network icon in the Control Panel, then selecting the Identification tab (you'll have to reboot for the change to take affect).
Sometimes, uninstalling and re-installing Dial-up Networking can solve this problem. In the Control Panel, choose the Add/Remove Programs option. Then go to the Windows Setup tab, and uncheck the Dial-up Networking option. Press OK until all the dialog boxes are closed, then reboot. Follow these same instructions and re-check the Dial-up Networking option. Then try your connection again.
Some users have had luck solving this problem by installing the Client for Microsoft Networks. In the Control Panel, open the Network option. If the Client for Microsoft Networks is not at or near the top of the list, press the Add button, then choose Client, Microsoft, and then Client for Microsoft Networks. Press OK until all the dialog boxes are closed, then reboot.
The last thing to try is deleting your Windows password file. Do a search on your system for *.PWL, then delete or rename them. Reboot your system, and you'll notice that Windows will ask for a user name and password to log in. You're now re-creating this password information in your system. You don't have to enter a password here if you don't want to use one every time you log in, but you do need to enter a user name. This will rebuild the password file, and may allow your Dial-up Networking to save your dial-up password.
for more info click here
windows teardrop attack
This bug can allow a malicious user to crash your Windows machine.
Windows 95 fix Download and install the MS DUN 1.3 Upgrade, then reboot your machine.
NT Fix
1; Always make sure you have the most current Service Pack for Windows NT installed.
If you don't have the most current on you can download it here
2; Download and install the Teardrop2 Patch (Note: this patch incorporates the ICMP, OOB, Simptcp and Land attack Windows NT Hot Fixes).
Windows icmp/sping attack
There is a problem with the TCP/IP stack in Windows 95 and Windows NT when it receives fragmented ICMP messages from a remote source. These have to be sent maliciously, and the result is that the machine freezes up.
Windows 95 fix Download and install the MS DUN 1.3 Upgrade, then reboot your machine.
NT Fix
1; Always make sure you have the most current Service Pack for Windows NT installed.
If you don't have the most current on you can download it here
2; Download and install the Teardrop2 Patch (Note: this patch incorporates the ICMP, OOB, Simptcp and Land attack Windows NT Hot Fixes).
Windows OOB attack (winnuke)
A hole in NetBIOS on port 139 that allows malicious users to crash Windows machines. Malicious users can send OOB (Out Of Band) data to a user who is connected to a network, such as the Internet, which can crash Windows systems.
95/fix Download and install the MS DUN 1.3 Upgrade, then reboot your machine.
NT Fix
1; Always make sure you have the most current Service Pack for Windows NT installed.
If you don't have the most current on you can download it here
2; Download and install the Teardrop2 Patch (Note: this patch incorporates the ICMP, OOB, Simptcp and Land attack Windows NT Hot Fixes).
Windows NT DNS Server bug
There is a problem with the DNS server in Windows NT that causes it to crash upon receiving certain data from malicious users.
Information
http://winfiles.cnet.com/bugs/nt4hf.html
fix
ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/NT40/hotfixes-postSP3/dns-fix/
Internet Explorer fixes
Cross Frame Navigate Bug
This bug involves a vulnerability in Internet Explorer 3 and 4 that could allow a clever hacker to circumvent Internet Explorer's security safeguards.
Download fix here
JScript Window.External Bug
This bug could cause Internet Explorer 4 to terminate unexpectedly when the user visits a malicious Web site that uses JScript to invoke a specific function (Window.External) with a very long code string.
Windows 98 Users: Go to Windows Update, click Product Updates, and select the "Window.External" JScript vulnerability fix under Critical Updates.
Windows 95 and NT 4.0 Users: Install the updated version of the Microsoft Scripting Engines, which contains a fix for this problem.
Download here
Outlook File Attachment Bug
Malicious users could potentially send an email attachment that can execute commands on your computer if you're using Outlook 98 or Outlook Express.
Outlook 98 Users: A fix can be downloaded from Microsoft here
Outlook Express 4.x Users: A fix can be downloaded from Microsoft by clicking here You must first upgrade to Internet Explorer 4.01 SP1 before installing this patch.
MK Overrun Bug
This bug can allow a malicious user to crash Internet Explorer.
Available fix :
Windows 95 and NT Users: A fix can be downloaded from Microsoft here
IE Page Redirect Bug
This bug can allow a malicious user to capture your user name and password when accessing a password protected Web site.
Internet Explorer 4.0 Users: A fix can be downloaded from Microsoft here
Internet Explorer 3.02 Users: A fix can be downloaded from Microsoft here
IE Buffer Overrun Bug
This bug can cause Internet Explorer 4.0 to crash when a malicious Web site contains a certain kind of URL with more characters than the browser supports.
Download fix here
Freiburg Text-Viewing Bug
Malicious users could potentially view text files (such as .TXT or .HTML files) or graphics files on the hard drive of a user who is running Internet Explorer 4.0.
Download fix here
Internet Explorer 3.0 Security Holes
All Windows versions of Microsoft Internet Explorer prior to 3.02 are susceptible to serious system damage from malicious users. All users should either upgrade to IE 4.0, or download the fixes available here.
Download fix here
|
|
