Date: Sun, 12 Jan 2003 15:22:18 +0100
From: Tomasz Ostrowski <[email protected]>
To: [email protected]Subject: A patch for "Windows WM_TIMER Message Handling flaw" causes random crashes on Windows NT
A patch for a flaw in "Windows WM_TIMER Message Handling", released
with "Microsoft Security Bulletin MS02-071" (Q328310), causes random
crashes (blue screens of death) on WindowsNT systems. Besides
annoyance it forces uninstallation of this patch leaving systems
vunerable for the flaw.
Microsoft was contacted by me today. Others has contacted MS earlier.
Crashes occur at about one in a day rate (on office computers). There
are some discussions about this issue on Usenet - please check for
example:
http://groups.google.com/groups?th=dba7c44ebd24239bhttp://groups.google.com/groups?th=27d31ba3ca01b4e0
Vulnerability identifier: CAN-2002-1230
Microsoft Security Bulletin MS02-071:
Flaw in Windows WM_TIMER Message Handling Could Enable Privilege
Elevation (328310)
http://www.microsoft.com/security/security_bulletins/ms02-071.asp
Best wishes
Tometzky
--
...although Eating Honey was a very good thing to do, there was a
moment just before you began to eat it which was better than when you
were...
Winnie the Pooh
