It's not the risk level I worry about as much as it is the required actions by the attacker. I look at things like:
"...vulnerability cannot be exploited remotely. An attacker would require the ability to log onto the system interactively"
"...user would need to visit a website under the...
I've already said SP2 is a worthwhile upgrade for those using IE, OE, and other programs it affects. I just don't consider it worth installing on MY systems.
The risk is MEDIUM. This vulnerability cannot be exploited remotely. An attacker would require the ability to log onto the system interactively in order to run programs that use the Windows Redirector. http://www.ciac.org/ciac/bulletins/n-039.shtml
IE is not used on any of my systems...
Why don't you go ahead and tell us how you do have your computers set up, since you want a critique :)
I've not asked for a critique. I've seen lots of encouragement to install SP2 but with no explanations how my specific systems might be exploited. In reading some of the subsequent posts I...
Do you mean Data Execution Prevention?
Got some more info on this? How did SP2 specifically address this?
How are my systems open to RPC exploits? How do you know what measures I have taken?
My 'bug list' as you refer to it, seems quite detailed compared to the overview you...
And I've not found a specific one that pertains to my computer systems the way I have them set up. Can you point out some specific fixes I should be aware of?
One could argue it's people who run around waving their hands proclaiming the sky is falling that are causing a great deal of the FUD...
Nah, maybe you're just a little more secure in your computing habits. I have three home systems running Win XP and I haven't installed any updates on any of them. All systems connect daily to internet for extended periods of time, none have encountered any problems. I don't anticipate any...
Do you mean the updates it contains, or future updates? None of the updates SP2 contains seem to affect any of my day-to-day computing, ergo my reason for not rushing to embrace it.
I chalk SP2 up to mostly hype for those people that don't know how to secure their computer. It might be ok for...
The question was: is SP2 for XP a must install?
I'm not convinced it is. For those relying on IE and OE I would recommend it. Me? I consider it optional at this time and haven't seen anything to convince me that I must install it or horrible consequences will befall my computer systems.
Realistically, new worms can infect the patched machine, so SP2 is no guarantee. Can you specifically point out how a worm/virus/trojan will not be allowed entry by installing SP2?
One should always practice safe-computing, I agree. I am not convinced that SP2 is the nirvana that some seem...
No compelling reason to do so. All systems access the internet daily and I don't anticipate any problems with any of them. Can anyone give me a ~really~ good reason why I need to update at this time? None of the systems in question use IE or OE, the SP2 firewall is not required, and I have...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.