Critical Windows patch may wreak PC havoc

Found on CNet News on Friday, 14 October 2005

A Microsoft patch meant to fix critical security flaws in Windows 2000, Windows XP and Windows Server 2003 is causing trouble for some users, the company said Friday.

The patch was released Tuesday to fix four Windows flaws, including one that experts predict will be exploited by a worm in the coming days. The flaw, tagged "critical" by Microsoft, lies in a Windows component for transaction processing called the Microsoft Distributed Transaction Coordinator, or MSDTC.

Installing the patch can cause serious problems, Microsoft said in an advisory posted to its Web site Friday. The patch could lock users out of their PC, prevent the Windows Firewall from starting, block certain applications from running or installing, and empty the network connections folder, among other things, the software maker said.

Even if users experience PC trouble after installing the patch, they will still be protected against any attack exploiting the Windows flaw, a Microsoft representative said. The patch was delivered with Microsoft security bulletin MS05-051.

I really was close to updating my home machine; I already visited their update site. But then I decided to read some more about the bug, and it's possible to fix this by disabling the MSDTC service, which I did. Seems like this was a good choice. Perhaps I will do a security rollup one day, but not without a full system image for rescue purposes.

Browse all articles« Previous « » Next »