Is GDI+ Detection Tool really necessary if on XP?

The September 2004 Security Bulletin isn't very clear on what to do about
this thing. The way it is written, it sounds like you only need to install
the tool if you aren't running Windows XP. If you are, it just tells you to
go to Windows Update, but doesn't say anything about running the tool. Is
this right? Or should I install the tool as well? WU gives me one update
concerning the problem, but do I need more? I don't think I have any of the
other programs affected. (I do have Picture It! Express, but it doesn't look
like that version is on the list.)

Thanks for any help.

Zoe wrote:

> The September 2004 Security Bulletin isn't very clear on what to do about
> this thing. The way it is written, it sounds like you only need to install
> the tool if you aren't running Windows XP. If you are, it just tells you to
> go to Windows Update, but doesn't say anything about running the tool. Is
> this right? Or should I install the tool as well? WU gives me one update
> concerning the problem, but do I need more? I don't think I have any of the
> other programs affected. (I do have Picture It! Express, but it doesn't look
> like that version is on the list.)
>
> Thanks for any help.
>
Hi

Forget about the GDI+ Detection Tool, it isn't very reliable anyway.

Go to the bulletin below and see if you have any of the vulnerable
products listed there installed on your computer. If so, you can
download and install relevant updates from there as well.

Microsoft Security Bulletin MS04-028
Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution
http://www.microsoft.com/technet/sec.../MS04-028.mspx


--
torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
Administration scripting examples and an ONLINE version of
the 1328 page Scripting Guide:
http://www.microsoft.com/technet/scr...r/default.mspx