reproducible IE crashes from KB918899

Discussion in 'Internet Explorer' started by Brian S. Bergin, Aug 11, 2006.

  1. Sandi - Microsoft MVP, Aug 13, 2006
    #21
    1. Advertisements

  2. I agree that DL'ing from an unknown source is risky, but for some,
    dealing with PSS is a RPITA and while I wouldn't do it, some do and
    rely on digital signatures to prove who is who. The fact here is MS
    screwed up here and should have pulled 918899 before they broke any
    more systems, fixed the 3 (there are at least 3 major IE bugs
    confirmed by my L3 PSS rep) bugs, and release the update via normal
    channels not requiring people call in to get a patch. MS needs to own
    up to their failure here and fix it. In our case we may have to
    manually patch 2000+ systems in dozens of companies in the US and
    Canada because of MS's inability to test their updates. Who pays for
    that? MS has a way to get it out to every one if those systems in a
    matter of a day via automatic updates but so far they're resisting
    this as it would cause a PR stir. MS is more concerned about their
    image than customers' ability to work.

    Brian Bergin
    Terabyte Computers, Inc.
     
    Brian S. Bergin, Aug 13, 2006
    #22
    1. Advertisements

  3. Yes, but I believe he was asking for a link to the MS DL site. While
    his choice of words may have been poor, he didn't ask for a 3rd party
    link. Don't be so defensive. Ask. You also don't know if he's even
    in the US and if he has easy access to PSS where he is. I know many
    in countries with limited PSS access and when they do get there
    getting what you need is all but impossible. I've heard of people
    that pay to call the US to get PSS patches because of this. There's
    just no reason to limit access to this .dll in this manner, they broke
    it, now we have to pay to fix it.

    Sincerely,
    Brian S. Bergin


    Please post replies here so everyone may benefit.

    msdndotnntpdotnospamdot1atcomceptdotnet (replace dot with .)
     
    Brian S. Bergin, Aug 13, 2006
    #23
  4. Brian S. Bergin

    Glen Guest

    Thank you, and yes that's what I was asking for.
     
    Glen, Aug 13, 2006
    #24
  5. Brian S. Bergin

    Charlie Tame Guest


    Well I've got 2003 and XP Pro here and couldn't help you if I wanted to
    because neither has that version, and this machine has versions from way
    back in the uninstall folder.

    Charlie
     
    Charlie Tame, Aug 13, 2006
    #25
  6. MS confirms our javascript should run just fine (and in fact does with
    a private hotfix as well as previous to 918899) and that they have a
    bug. We expect MS to release a hotfix to correct this today. They've
    admitted to numerous problems with 918899 and this is one of them.

    Brian
     
    Brian S. Bergin, Aug 16, 2006
    #26
  7. Brian S. Bergin

    PA Bear Guest

    I wouldn't hold my breath but who knows?

    <QP>
    A new version of security update 918899 is currently in development and will
    be released to all Microsoft Internet Explorer 6 Service Pack 1 customers by
    August 22, 2006. The new update will be available on the Microsoft Download
    Center and by using Windows Update. Customers who are using any version of
    Internet Explorer other than Internet Explorer 6 Service Pack 1 together
    with any Windows version are not affected by this release and do not have to
    take any action. We recommend that customers who are not experiencing this
    issue continue to deploy security update 918899 in their environments to
    receive protection from the vulnerabilities that are documented in security
    bulletin MS06-042. Customers who experience this issue should apply the new
    security update when it is available. Customers who want to avoid the issue
    before the new security update is available may apply hotfix 923762.
    </QP>
    Source: http://support.microsoft.com/?kbid=918899
     
    PA Bear, Aug 16, 2006
    #27
  8. Brian S. Bergin

    Glen Guest

    Gotta love the way they phrased this. As if most of the
    world is using something other than IE6 SP1 :)
     
    Glen, Aug 16, 2006
    #28
  9. Brian S. Bergin

    PA Bear Guest

    The native IE6 SP1 is only supported in WinXP SP1 and Win2K SP4...and
    support for the former OS ends Oct-06.
     
    PA Bear, Aug 17, 2006
    #29
  10. Brian S. Bergin

    Glen Guest

    Happen to know what percentage of MS installations
    are Win2K SP4? ;-)
     
    Glen, Aug 17, 2006
    #30
  11. Brian S. Bergin

    MikeV06 Guest

    By former, I assume you mean the latter in your list, or Win2K SP4. Hard to
    believe they are going to shut it down considering the huge number of
    2000/sp4 systems still in use.
     
    MikeV06, Aug 17, 2006
    #31
  12. Brian S. Bergin

    PA Bear Guest

    No idea, but I'm sure that information's out there somewhere.
     
    PA Bear, Aug 17, 2006
    #32
  13. Brian S. Bergin

    Glen Guest

    No, he means the former. Win2K SP4 is under extended
    support until 7/13/2010. WinXP SP1/1A are end-of-lifed
    as of 10/10/2006.
     
    Glen, Aug 17, 2006
    #33
  14. Yes. The private fix I have does indeed fix this. MS is, however,
    dragging their feet on creating an installer. IMHO, MS is playing
    favourites by getting the PeopleSoft installer out in a day but taking
    over a week to get the next patch out.

    Sincerely,
    Brian S. Bergin


    Please post replies here so everyone may benefit.

    msdndotnntpdotnospamdot1atcomceptdotnet (replace dot with .)
     
    Brian S. Bergin, Aug 18, 2006
    #34
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.