User Group Network Resource Center for Apple Computer user groups

What's your
favorite MAC
Resource?
Add A Link

ALERT:
Links can
become inactive.
report broken links!

* Rumor Manager
* Shareware Manager
* UG Bookshelf

GOT OPINIONS?
Go vote!

Resource Manager
Help us out!
VOLUNTEER!

MUG Resource Center
featuring the hottest Macintosh links from the computer community
Resource Manager

Microsoft Security Announcement

According to the Microsoft Security Announcement, the latest version of security update, the "29 Mar 2002 Cumulative Patch" update which eliminates all known security vulnerabilities affecting Internet Explorer and MS Outlook/Express as well as six new vulnerabilities, and is discussed in Microsoft Security Bulletin MS02-005. Install now to protect your computer from these vulnerabilities, the most serious of which could allow an attacker to run code on your computer.

Description of several well-know vulnerabilities:

- "Incorrect MIME Header Can Cause IE to Execute E-mail Attachment" vulnerability.
If a malicious user sends an affected HTML e-mail or hosts an affected e-mail on a Web site, and a user opens the e-mail or visits the Web site, Internet Explorer automatically runs the executable on the user's computer.

- A vulnerability that could allow an unauthorized user to learn the location
of cached content on your computer. This could enable the unauthorized user to launch compiled HTML Help (.chm) files that contain shortcuts to executables, thereby enabling the unauthorized user to run the executables on your computer.

- A new variant of the "Frame Domain Verification" vulnerability could enable a malicious Web site operator to open two browser windows, one in the Web site's domain and the other on your local file system, and to pass information from your computer to the Web site.

- CLSID extension vulnerability. Attachments which end with a CLSID file extension do not show the actual full extension of the file when saved and viewed with Windows Explorer. This allows dangerous file types to look as though they are simple, harmless files - such as JPG or WAV files - that do not need to be blocked.

System requirements:
Versions of Windows no earlier than Windows 95.

This update applies to:
Versions of Internet Explorer no earlier than 4.01
Versions of MS Outlook no earlier than 8.00
Versions of MS Outlook Express no earlier than 4.01

For more information about these issues, read Microsoft Security Bulletin MS02-005, or
Microsoft Critical Downloads
If you have some questions about this article contact us at rdquest12@microsoft.com

Notes: Look for the Resource Manager's ranking system... when you see red "stars" in a listing you know it's a top-gun site! (***** Five stars is the highest rank!)
* Reader submitted links!Yes, we invite you to supply us with your favorite Macintosh support web sites... show us one we haven't seen and you might just win books, posters, T-shirts or other great prizes from the MUG Resource Center. From any page, just click the " Add A Link" button!
* Warning: to surf faster, you may want to turn off the graphics in your browser. Many of these have heavy duty screen-spam and intense graphics. Always be careful where you leave your email address. While the User Group Network practices safe computing with the highest degree of security, we cannot be responsible for spam, stalkers, preditors and other evil stuff you'll run into at some of these sites. Particularly bad spam sites have been removed. We strive to provide you with the best stuff we can find. Some links are UGN Supporter links and will guarantee the very best experience for your time.
* Report Broken Links: as is with the web, people change email addresses, pages, ISPs, and domains as often as they change their pants -- and think nothing of it. So, you may run into some broken links along the way. We check Resource Manager each month through the NetMechanic.com. But there may be some you'll catch before we do.

Back to the top ... Resource Manager ... User Group Network
.

This site is sponsored in part by: The Association of Apple Computer User Groups: providing a global organization of user group to user group services and benefits for both user groups and individuals with an interest in Apple Computers, Macintosh, iMac, iBook, G3, G4, and Powerbooks ~ The User Group Academy: user group service organization recognizing outstanding accomplishments in the user group community, featuring the annual user group Academy Awards ~ The Graphic Design Network: graphic design community hosting servers providing online presence for all these organizations featuring Creative FOLIO services and vortal portfolios for creative designers, illustrators, photographers, writers, and anyone involved creatively in the visual arts or design communications fields ~ The Design & Publishing Center: content portal for creative designers, illustrators, photographers, writers, web designers, and anyone involved creatively in the visual arts or design communications fields ~ The News Serve Network providing news and newsletter content to newsletter editors in the user group community ~ 60-Second Window: the longest running syndicated column in the user group community, since 1990 ~ DT&G: Design, Type & Graphics Magazine serving the visual communications community since 1990 ~ the Designers' Bookshelf: with all the best books for designers, illustrators, layout artists, web designers, photographers and the creative visual community~ the Publishers' Warehouse: reviewed shareware, fonts, clip art, and design templates from around the world, since 1987. For information about the UGNetwork, to get involved or have your own groups' home page located at user-groups.net, please contact us. Send an e-mail message to: UGNetwork at user-groups.net copyright 1994 - 2001; ALL RIGHTS RESERVED - The User Group Network c/o Showker Graphic Arts & Design, a Corporation of the Commonwealth of Virginia, 22801, established in 1972.