Possible bad Microsoft patch!!

Strange issue!

To patch a security flaw, MS has released patch kb980232. This has stopped our clients being able to save files from office 2007 directly to an NT4 network drive!

Anyone else experiencing this?

Find more posts tagged with

Free for TechExams community: Cybersecurity salary guide

Compare cert salaries and plan your next career move

Button

Comments

astorrs

That would make some sense given the SMB (CIFS) vulnerabilities covered by the patch. Microsoft Security Bulletin MS10-020 - Critical: Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232)

Not sure if you can really say it's a bad patch (perhaps bad for you though) given that Microsoft doesn't test patches against NT4 (and hasn't for quite a while now). Time to upgrade the file server perhaps?

mrmcmint

astorrs wrote: »

That would make some sense given the SMB (CIFS) vulnerabilities covered by the patch. Microsoft Security Bulletin MS10-020 - Critical: Vulnerabilities in SMB Client Could Allow Remote Code Execution (980232)

Not sure if you can really say it's a bad patch (perhaps bad for you though) given that Microsoft doesn't test patches against NT4 (and hasn't for quite a while now). Time to upgrade the file server perhaps?

Haha I was waiting for that

Server upgrade time indeed. Getting clients to put their hands in their pockets is easier said than done at the mo

blargoe

LOL... yeah, I wouldn't necessarily call this a "bad" patch. I don't expect MS to support his in legacy environments. However I'm surprised they didn't at least test the scenario and make a disclaimer. Still seems to be a lot of companies either running NT4 or some other old NAS based on obsolete implementations of MS file sharing.

Known issue, by the way...

KB980232 (MS10-020) problem: users can't save anymore from Office 2007 applications to servers

mrmcmint

Agreed, my fault, bad terminology. It's not a bad patch, but as you say quite bad on Microsofts part that the consequences of installing this patch were not well documented prior to release.

Must get rid of that server.