Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pc-cillin Found 'very High' Risk Vulnerability In Microsoft Office


  • Please log in to reply
5 replies to this topic

#1 DJuu

DJuu

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:05:49 AM

Posted 21 January 2006 - 01:16 AM

I have Trend Micro PC-cillin and a vulnerability check popped up on my screen. It locked up my computer but upon restart it came up again. It says 'Very High' risk level Target: Office w/ Related bulletin MS04-028. I found that Microsoft bulletin and read up on it, and I also attempted to download an update for Windows XP Service Pack 2 (which I have) but received an error message saying something to the effect of "The expected software was not found." I also tried a general Office update which PC-cillin suggested but it needs the Suite 2003 disk to complete and I can't find it at the moment.

Any explainations and tips would be greatly appreciated, and avoiding having to use the disk would be a plus.

BC AdBot (Login to Remove)

 


m

#2 acklan

acklan

    Bleepin' cat's meow


  • Members
  • 8,529 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Baton Rouge, La.
  • Local time:04:49 AM

Posted 21 January 2006 - 03:36 AM

The requirement of the disk is one of MicroSoft's clever (painful) ways of reducing piracy. I don't see a way around it that would be allow to be discussed on this forum, seeing it would involve circumventing the security features on the program.

Was this the bulletin you were talking about?
"2007 & 2008 Windows Shell/User Award"

#3 DJuu

DJuu
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:05:49 AM

Posted 21 January 2006 - 12:49 PM

Yes, that's the one, and while none of those updates require the disk...they don't install. I tried Microsoft Office 2003 Update and XP SP2 Update and both said "The expected software was not found".

#4 bar5

bar5

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Virginia
  • Local time:06:49 AM

Posted 25 January 2006 - 10:41 PM

I have Trend Micro PC-cillin and a vulnerability check popped up on my screen. It locked up my computer but upon restart it came up again. It says 'Very High' risk level Target: Office w/ Related bulletin MS04-028. I found that Microsoft bulletin and read up on it, and I also attempted to download an update for Windows XP Service Pack 2 (which I have) but received an error message saying something to the effect of "The expected software was not found." I also tried a general Office update which PC-cillin suggested but it needs the Suite 2003 disk to complete and I can't find it at the moment.

Any explainations and tips would be greatly appreciated, and avoiding having to use the disk would be a plus.


I have PC-cillin also and get the same message. Here is the bulletin 04-028:

04-028

Scroll down to non affected software and you will see Windows XP sp2, so I just ignore the alert
from PC-cillin. I'm assuming either it does not apply, included in sp2 or false reading???? What do you think?

Barb

oops, sorry I did not see where acklan had already posted the bulletin. My apologies. I'm going to have to clean my glasses. :thumbsup:

Edited by bar5, 25 January 2006 - 10:49 PM.


#5 DJuu

DJuu
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:05:49 AM

Posted 26 January 2006 - 12:08 AM

Wow, good find. I hadn't noticed that. Quite a relief if true. I've been going back and forth with Microsoft reps. They've had be download a GDI detector and I updated Office but the vulnerability still exists. Maybe I'll doublecheck with them as to whether or not SP2 truely is avoided in this mess. Thanks for the info and I'll update soon!

#6 bar5

bar5

  • Members
  • 71 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Virginia
  • Local time:06:49 AM

Posted 26 January 2006 - 08:34 AM

Wow, good find. I hadn't noticed that. Quite a relief if true. I've been going back and forth with Microsoft reps. They've had be download a GDI detector and I updated Office but the vulnerability still exists. Maybe I'll doublecheck with them as to whether or not SP2 truely is avoided in this mess. Thanks for the info and I'll update soon!


Here is list of what is included in SP2:

Microsoft KB811113

Scroll down until you see under security is KB833987 (04-028), so it is included. This , I think,
explains why you cannot find update 04-028 to D/L because we already have it.

I thought I read this before, but forgot about it. I feel confident that my computer is up to date, and it is PC-cillin giving a false reading of sorts. Hope this gives you some peace of mind.

Barb :thumbsup:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users