The
Latest Hot Fixes (for NT, 2000, & XP systems)
Patching The
Latest Vulnerabilities
Downloads
<<
Back to Windows Security
_____________
The
Latest Hotfixes
For IIS 4.0 running on NT 4.0. SP6a is the latest (plus there
are some post SP hotfix rollups).
For Windows 2000, SP3 is the most recent (some post SP3
hotfix rollups are now available).
For Windows XP Professional users, the most recent post
SP1 patches are now available (plus some post SP1 hotfix rollups).
Patching
the Latest Vulnerabilities
Instructions
on Downloading the Latest Systems Security Patches (Windows
NT, 2000, and XP)
If you have a Windows NT, Windows 2000, or Windows
XP system, it
needs to be running the most recent Service Pack (SP), plus
any cumulative post-SP hot fixes, which will be covered shortly,
if it is to be secure.
Here are the most recent Service Packs:
Windows NT - SP6a (Note: you will not see the "a"
when you do a "winver")
Windows 2000 - SP3
Windows XP - SP1
To determine
what SP ("fix level") you are running, go to the
Start menu, click Run, and then enter "winver".
Click OK. A window appears on your screen, with information
about your system's current SP.
To download the most recent SP for your system, go to http://www.lbl.gov/download/,
and scroll down to the "Security" section. When
you are through doing this, download the post-SP hot fixes
for your particular system. You can obtain them from the same
section of the download page. The only possible complication
is the Windows 2000 post-SP hot fixes. There is one for the
server version of Windows 2000, and another for the workstation
version. (Opening the menu that appears when you go to Start
will also tell you whether you have a server or a workstation.)
Be sure to download the appropriate post-SP hot fix if you
have a Windows 2000 system.
Once you download an SP, double click on the icon, and follow
the instructions. It doesn't take long to install an SP. The
same is true of post-SP hot fixes.
10/03: Five New Windows Security Vulnerabilities
Need to Be Patched
Microsoft has recently announced five new vulnerabilities
in Windows operating systems such as Windows NT 4.0, 2000,
and XP, as well as Microsoft Exchange 5.5 and 2000. These
vulnerabilities could enable unauthorized persons to completely
take over your system! The best course of action is to download
the appropriate cumulative patch ("megapatch") from
the Lab's download site. Go to http://www.lbl.gov/download/
and then to Security/Service Packs. Assuming your system is
running the latest Service Pack (SP), go to the appropriate
link and click on it. For example, if your system is a Windows
NT workstation running SP6a (the latest SP for NT), click
on "Windows NT 4.0 post SP6a Hot Fixes for Workstations."
If your system runs Windows 2000 with SP4 (the latest for
Windows 2000), click on "Windows 2000 Post SP4 Hotfixes."
If you have an XP system with SP1 (the latest for XP), click
on "Windows XP Pro post SP1 Hot Fixes." (To discover
what SP your system has, go to the Run menu and enter winver.)
Go here
for more information about these vulnerabilities. For assistance
concerning how to install these hot fixes or SPs, contact
the Help Desk at 486-4357 or help@lbl.gov.
|
