Security Update
The table below shows security patches issued between Oct. 25 and Dec. 9, 1999. Bulletins that describe these patches are at www.microsoft.com/Security/Bulletins/ except where indicated.
Several new viruses greet the New Year by masquerading as Y2K fixes and deleting users’ files. Microsoft is distributing free, time-limited antivirus software from third-party vendors (including Network Associates, Symantec, and Trend Micro) to help ward off these year-end viruses (see www.microsoft.com/y2k/antivirus/AntiVirus.htm for details).
| Threat | Systems Affected | Cause | Bulletin |
| A web site or e-mail message can crash or run arbitrary code on a machine. | Windows 95 and 98 | A buffer overflow bug causes Windows to overwrite executable code in memory when processing very long filenames. | ms99-049.asp |
| A Web site operator can view a file on a visitor’s PC, if the operator knows the filename. | Internet Explorer (IE) 4.01, 5, and 5.01 | IE sometimes |
Atlas Members have full access
Get access to this and thousands of other unbiased analyses, roadmaps, decision kits, infographics, reference guides, and more, all included with membership. Comprehensive access to the most in-depth and unbiased expertise for Microsoft enterprise decision-making is waiting.
Membership OptionsAlready have an account? Login Now