In a message dated 03/08/2002 3:33:50 AM Eastern Standard Time,
[log in to unmask] writes:


> Got a message from Microsoft Security ("Thank you for using Microsoft
> products. With friendly greetings, MS Internet Security Center.") about
> "this is the latest version of security update, the  "2 Mar 2002 Cumulative
> Patch" update which eliminates all known security vulnerabilities affecting
> Internet Explorer and MS Outlook/Express as well as six new
> vulnerabilities,
> and is discussed in Microsoft Security Bulletin MS02-005. Install now to
> protect your computer from these vulnerabilities, the most serious of which
> could allow an attacker to run code on your computer."
>
> I haven't touched the .exe file that is attached because I'm paranoid.
> Microsoft has never sent me anything telling me their software is faulty
> and
> offering me help.
>
> Is this one of the viri going around?
>
> TIA,
> Brenda

Hi,
  This is a legitimate *patch*. However, you may want to get the official
patch from Microsoft, and NOT run the one sent you (as it *might* be
something else...)
  You can get the official patch here:
 <A HREF="http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS02-005.asp">Microsoft TechNet</A>
or the regular URL:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bu

lletin/MS02-005.asp

HTH,
Peter Hogan
[log in to unmask]

               The NOSPIN Group Promotions is now offering
              Mandrake Linux or Red Hat Linux CD sets along
         with our NOSPIN Power Linux CD...  at a great price!!!
             http://freepctech.com/goodies/promotions.shtml