Hey guys,

also here.. i mange a dozen of PC and, yesterday, every PC with KB951748

lost internet connection... today, after removing it, it's ok!

(do you think it's a conflict with Zone alarm (free)?)

 

 

"Hawkins" wrote:

> On one computer with Comodo Firewall KB951748 installed and internet

> connection was fine. On another computer with Zone Alarm free KB 951748

> caused internet connection to be lost.

>

>

>

ZoneAlarm has just emailed saying it has a permanent solution that it will

release in a few days. In the meantime suggests KB951748 is uninstalled and

not reinstalled until ZA update is installed.

 

Thank you ZoneAlarm. Would MS be that fast in providing solutions?

 

"Chipete" wrote:

> I, too, could not get on the net after the KB951748 update. I encourage

> Microsoft to do a search on the update so they could see how many hits there

> are already, and to take this update off of the critical list. T

> hankfully, I do not allow XP to automatically download and install updates.

> Otherwise, I might have not been able to find the source of the problem so

> quickly.

you would have thought microsoft would have checked to see if any update

would cause a problem before they put them on the chritical list.

 

"Chipete" wrote:

> I, too, could not get on the net after the KB951748 update. I encourage

> Microsoft to do a search on the update so they could see how many hits there

> are already, and to take this update off of the critical list. T

> hankfully, I do not allow XP to automatically download and install updates.

> Otherwise, I might have not been able to find the source of the problem so

> quickly.

On Thu, 10 Jul 2008 00:51:01 -0700, George wrote:

> ZoneAlarm has just emailed saying it has a permanent solution that it will

> release in a few days. In the meantime suggests KB951748 is uninstalled and

> not reinstalled until ZA update is installed.

>

> Thank you ZoneAlarm.

 

What for? For providing a horribly broken software to their uninformed

users?

> Would MS be that fast in providing solutions?

 

It's not MSFT's responsibility providing solutions for broken 3rd party

software.

On Thu, 10 Jul 2008 01:11:00 -0700, iamalittledevil2003 wrote:

> you would have thought microsoft would have checked to see if any update

> would cause a problem before they put them on the chritical list.

>

 

You would have thought ZA would have checked their software to see if it is

properly coded prior releasing it to their uninformed users.

Rest assured that ZA was fully aware of the 'Patch Tuesday' security

updates but chose to do nothing about it.

Best solution:

http://zonealarm.donhoover.net/uninstall.html

Go Kayman. Is that a chip on your shoulder or do you just believe that MS is

God and can do no wrong?

 

Your attitude toward third party vendors only compounds the anger people

feel when their perfectly operating PCs are totally stuffed up by MS updates.

 

A little tact and diplomacy may make the great "uniformed" slightly more

sympathetic to the great way MS treats its customers.

 

Cheers mate. Have a cup of tea and a good lie down.

 

 

 

"Kayman" wrote:

> On Thu, 10 Jul 2008 00:51:01 -0700, George wrote:

>

> > ZoneAlarm has just emailed saying it has a permanent solution that it will

> > release in a few days. In the meantime suggests KB951748 is uninstalled and

> > not reinstalled until ZA update is installed.

> >

> > Thank you ZoneAlarm.

>

> What for? For providing a horribly broken software to their uninformed

> users?

>

> > Would MS be that fast in providing solutions?

>

> It's not MSFT's responsibility providing solutions for broken 3rd party

> software.

>

"Kenzeitak" wrote:

> ZONEALARM BLOCKS INTERNET BROWSER ACCESS WITH KB951748

>

> After updating from XP patch KB951748 ZoneAlarm can no longer interpret the

> difference between programs trying to access the internet.

> This causes all DNS packets to be blocked.

>

> TEMPORARY SOLUTION

> The only solution is to lower Internet Zone Security to Medium in the

> Firewall options tab or disabling the Firewall.

>

> LONG TERM SOLUTION

> Uninstall KB951748, do a system restore to 2008-07-07 or wait for another

> update from Microsoft or Zone Labs ZoneAlarm.

>

> Kind Regards Ken

 

How can I stop KB951748 repeatedly installing itself? Uninstalling manually

is a pain. Its killing my ZoneAlarmpro that has worked pefectly till now, and

losing my net access and emails, and keeps reinstalling itself when I'm not

looking!

Many thanks for info.

"Xanifred" wrote:

>

> The problem is with Zone Alarm. They are aware of the issue, and are working

> on it:

>

> http://forum.zonelabs.org/zonelabs/board/message?board.id=cfg&thread.id=52785

>

> For ZA Free, there are two possible fixes: uninstall KB951748, or reset your

> internet security level to Medium in ZA. Neither is ideal. Uninstalling the

> update is preferable, but only just.

>

> For those using ZA Pro, here's a suggested solution. IDK if it works, since

> I'm running ZA Free, but it's worth a try:

>

> http://www.dslreports.com/forum/r20762892-

 

 

This link doesn't work!

>

> For the rest of us, you can always try Comodo Firewall instead:

>

> http://www.personalfirewall.comodo.com/download_firewall.html

>

> Comodo is not tweaking over the expanded range of ports this update appears

> to implement.

>

> For those folks suggesting you drop ZA and all other 3rd-party firewalls and

> rely on the Windows firewall, I suggest *you* go right ahead. Then call me to

> fix your computer when you get overrun by malware. Be sure to tell me how

> proud you are to have ditched those evil 3rd-party firewalls for the Windows

> Crayola version, so I can charge you extra for stupidity.

"Kayman" <kaymanDeleteThis@operamail.com> wrote in message

news:OMroxEn4IHA.4856@TK2MSFTNGP02.phx.gbl...

> On Thu, 10 Jul 2008 01:11:00 -0700, iamalittledevil2003 wrote:

>

>> you would have thought microsoft would have checked to see if any update

>> would cause a problem before they put them on the chritical list.

>>

>

> You would have thought ZA would have checked their software to see if it

> is

> properly coded prior releasing it to their uninformed users.

> Rest assured that ZA was fully aware of the 'Patch Tuesday' security

> updates but chose to do nothing about it.

> Best solution:

> http://zonealarm.donhoover.net/uninstall.html

 

Zone Alarm have now issued a patch that will restore internet connectivity.

I am not using it so have not tested it. I did not notice the free version

of ZA mentioned. Anyway check with zone alarm.

 

Richard Hawkins.

On Thu, 10 Jul 2008 03:36:27 -0700, George wrote:

> Go Kayman. Is that a chip on your shoulder or do you just believe that MS is

> God and can do no wrong?

 

Two chips, one on each side actually Enables me to walk straight. In this

particular case the manufacturer of this 3rd party application is most

definitely wrong.

> Your attitude toward third party vendors only compounds the anger people

> feel when their perfectly operating PCs are totally stuffed up by MS updates.

 

Which vendor are you representing? Can't you handle the truth?

I knew about KB951748 prior its release on 'Patch Tuesday' (an information

which is easily obtainable if one is interested). Rest assured ZA were well

aware of this security patch also but chose to ignore it.

George, go and complain to ZA!

> A little tact and diplomacy may make the great "uniformed" slightly more

> sympathetic to the great way MS treats its customers.

 

And what is that supposed to mean? Did MSFT request you or anybody else to

install this application?

I can't help if the facts are hurting. MSFT has nothing to do with this

issue [PERIOD]!

George, go and direct your frustration to ZA.

> Cheers mate. Have a cup of tea and a good lie down.

 

Now that is good advice, I am cracking a can right now.

 

Hooroo

On Thu, 10 Jul 2008 04:46:00 -0700, sparks68 wrote:

 

<snip for brevity>

>

> How can I stop KB951748 repeatedly installing itself? Uninstalling manually

> is a pain. Its killing my ZoneAlarmpro that has worked pefectly till now, and

> losing my net access and emails, and keeps reinstalling itself when I'm not

> looking!

 

ZA never worked 'perfectly'! It's an illusion and gives the user a warm &

fuzzy (secure) feeling - don't fall for it!

 

Use this:

http://zonealarm.donhoover.net/uninstall.html

 

Then, in your OS activate the in-build f/w application You'll be glad you

did!

Microsoft should remove this update off their critical list....until they

can fix the update to work with Zone alarm

 

"Chipete" wrote:

> I, too, could not get on the net after the KB951748 update. I encourage

> Microsoft to do a search on the update so they could see how many hits there

> are already, and to take this update off of the critical list. T

> hankfully, I do not allow XP to automatically download and install updates.

> Otherwise, I might have not been able to find the source of the problem so

> quickly.

On Thu, 10 Jul 2008 07:19:05 -0700, Marc wrote:

> Microsoft should remove this update off their critical list....until they

> can fix the update to work with Zone alarm

>

You are completely out of line. It is ZA, the maker of this 3rd party

application, who is at fault! They were well aware of this issue prior the

release of KB951748. Do yourself a favor and uninstall this horribly broken

thing.

FYI:

http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/

 

....Mr. Kaminsky immediately reported the issue to major authorities,

including the United States Computer Emergency Response Team (part of the

Department of Homeland Security), and began working on a coordinated fix.

Engineers from *major technology vendors* around the world converged on the

Microsoft campus in March to coordinate their response. All of the vendors

began repairing their products and agreed that a synchronized release, on a

single day, would minimize the risk that malicious individuals could figure

out the vulnerability before all vendors were able to offer secure versions

of their products...

On Jul 9, 6:34 am, "PA Bear [MS MVP]" <PABear...@gmail.com> wrote:

> I can assure you that ZA had the opportunity to testKB951748before it was

> released.  Ask ZA why they didn't.

>

 

WHat leads you to beleive this was an issue with ZA? Only because

Microsoft didn't apparently affect any other firewalls???

 

I put the blame on the lack of QA from the "company" that released the

patch! So if I have various 3rd-party software on my "windows"

machine, it's there responsibility to figure out if they can play well

with my "fix"??? Really wow that is so lame...

 

Some software companies get bought out or are no longer in business,

which does indicate EOL on their products but for general software

release the party responsible for releasing the "fix" has a

responsiblity to test, test, test aka QA their so called fixes.

 

Let's just say you run a medical practice, stock trader, or some other

financial programs and you need to get their blessing whenever MSFT

will be releasing a fix????

Msft can't test all the 3rd party software in available but I can

assure you they have their QA test beds setup which run most of not

all the "security" apps on them, unfortunately they probably rushed

this one out the door...

Third-party firewalls need to be compatible with the OS, not the other way

around.

 

Checkpoint was fully aware of the vulnerability addressed by KB915748 (which

didn't cause the same problem in Comodo or Online Armor firewalls).

 

 

FuRoSh@gmail.com wrote:

> On Jul 9, 6:34 am, "PA Bear [MS MVP]" <PABear...@gmail.com> wrote:

>> I can assure you that ZA had the opportunity to testKB951748before it was

>> released. Ask ZA why they didn't.

>>

>

> WHat leads you to beleive this was an issue with ZA? Only because

> Microsoft didn't apparently affect any other firewalls???

>

> I put the blame on the lack of QA from the "company" that released the

> patch! So if I have various 3rd-party software on my "windows"

> machine, it's there responsibility to figure out if they can play well

> with my "fix"??? Really wow that is so lame...

>

> Some software companies get bought out or are no longer in business,

> which does indicate EOL on their products but for general software

> release the party responsible for releasing the "fix" has a

> responsiblity to test, test, test aka QA their so called fixes.

>

> Let's just say you run a medical practice, stock trader, or some other

> financial programs and you need to get their blessing whenever MSFT

> will be releasing a fix????

> Msft can't test all the 3rd party software in available but I can

> assure you they have their QA test beds setup which run most of not

> all the "security" apps on them, unfortunately they probably rushed

> this one out the door...

ZA just released an updated Version of the Firewall:

Ver 7.0.483.000

 

It solves the problem.

 

Congratulations for their responsibility and quick response.

 

 

"Chipete" wrote:

> I, too, could not get on the net after the KB951748 update. I encourage

> Microsoft to do a search on the update so they could see how many hits there

> are already, and to take this update off of the critical list. T

> hankfully, I do not allow XP to automatically download and install updates.

> Otherwise, I might have not been able to find the source of the problem so

> quickly.

Read:

http://download.zonealarm.com/bin/free/pressReleases/2008/LossOfInternetAccessIssue.html

 

"MSUser100" <MSUser100@discussions.microsoft.com> wrote in message

news:99B50894-CD0C-4F4F-9074-DC8370CD5F19@microsoft.com...

>

> ZA just released an updated Version of the Firewall:

> Ver 7.0.483.000

>

> It solves the problem.

>

> Congratulations for their responsibility and quick response.

>

>

> "Chipete" wrote:

>

>> I, too, could not get on the net after the KB951748 update. I encourage

>> Microsoft to do a search on the update so they could see how many hits

>> there

>> are already, and to take this update off of the critical list. T

>> hankfully, I do not allow XP to automatically download and install

>> updates.

>> Otherwise, I might have not been able to find the source of the problem

>> so

>> quickly.

FuRoSh@gmail.com wrote:

> I put the blame on the lack of QA from the "company" that released the

> patch! So if I have various 3rd-party software on my "windows"

> machine, it's there responsibility to figure out if they can play well

> with my "fix"??? Really wow that is so lame...

 

Perhaps this will give you some idea of why Microsoft don't test monthly updates

with every piece of third party software:

 

<http://secunia.com/product/>

 

Harry.

George wrote:

> A little tact and diplomacy may make the great "uniformed" slightly more

> sympathetic to the great way MS treats its customers.

 

Seriously, the bug was in Zone Alarm's software, only they can fix it. That's

not a chip, it's a fact.

 

Harry.

On Thu, 10 Jul 2008 10:59:35 -0700 (PDT), FuRoSh@gmail.com wrote:

> On Jul 9, 6:34 am, "PA Bear [MS MVP]" <PABear...@gmail.com> wrote:

>> I can assure you that ZA had the opportunity to testKB951748before it was

>> released.  Ask ZA why they didn't.

>>

>

> WHat leads you to beleive this was an issue with ZA? Only because

> Microsoft didn't apparently affect any other firewalls???

>

<snip drivel>

 

Do your homework before mouthing off!

 

http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/

 

....Mr. Kaminsky immediately reported the issue to major authorities,

including the United States Computer Emergency Response Team (part of the

Department of Homeland Security), and began working on a coordinated fix.

Engineers from *major technology vendors* around the world converged on the

Microsoft campus in March to coordinate their response. All of the vendors

began repairing their products and agreed that a synchronized release, on a

single day, would minimize the risk that malicious individuals could figure

out the vulnerability before all vendors were able to offer secure versions

of their products...

On Thu, 10 Jul 2008 12:26:06 -0700, MSUser100 wrote:

> ZA just released an updated Version of the Firewall:

> Ver 7.0.483.000

>

> It solves the problem.

>

> Congratulations for their responsibility and quick response.

>

Responsibilty?? Quick response?? Ha, you've got to be kidding!

ZA's ignorance is inexcusable, their arrogance is shameful - UNINSTALL this

horribly broken software and use the WinXP or Vista in-build application!

 

http://securosis.com/2008/07/08/dan-kaminsky-discovers-fundamental-issue-in-dns-massive-multivendor-patch-released/

 

....Mr. Kaminsky immediately reported the issue to major authorities,

including the United States Computer Emergency Response Team (part of the

Department of Homeland Security), and began working on a coordinated fix.

Engineers from *major technology vendors* around the world converged on the

Microsoft campus in March to coordinate their response. All of the vendors

began repairing their products and agreed that a synchronized release, on a

single day, would minimize the risk that malicious individuals could figure

out the vulnerability before all vendors were able to offer secure versions

of their products...

I have an ASUS Wlan card 138G v2 together with the ASUS Control Center v

2.3.7.0 and that did not work anymore after this update. Uninstalling the

updated fixed it but I found that out only after trying all kinds of other

things... :(

On Fri, 11 Jul 2008 13:00:03 -0700, Bert wrote:

> I have an ASUS Wlan card 138G v2 together with the ASUS Control Center v

> 2.3.7.0 and that did not work anymore after this update. Uninstalling the

> updated fixed it but I found that out only after trying all kinds of other

> things... :(

 

Uninstalling KB951748 is definitely *not* right course of action.

Kayman wrote:

> On Fri, 11 Jul 2008 13:00:03 -0700, Bert wrote:

>

>> I have an ASUS Wlan card 138G v2 together with the ASUS Control Center v

>> 2.3.7.0 and that did not work anymore after this update. Uninstalling the

>> updated fixed it but I found that out only after trying all kinds of other

>> things... :(

>

> Uninstalling KB951748 is definitely *not* right course of action.

I believe that you are incorrect. The proper procedure is to un install

the offending update determine what it is interfering with get the

appropriate update and reinstall the update. It seems to me that no

problems will occur following this sequence. There is no evidence that

anyone has availed themselves to exploiting the DNS hole so in the short

term un installing it should pose no problem.

 

--

 

Rick

Fargo, ND

N 46°53'251"

W 096°48'279"

 

Remember the USS Liberty

http://www.ussliberty.org/

On Sat, 12 Jul 2008 16:40:47 -0500, Rick wrote:

> Kayman wrote:

>> On Fri, 11 Jul 2008 13:00:03 -0700, Bert wrote:

>>

>>> I have an ASUS Wlan card 138G v2 together with the ASUS Control Center v

>>> 2.3.7.0 and that did not work anymore after this update. Uninstalling the

>>> updated fixed it but I found that out only after trying all kinds of other

>>> things... :(

>>

>> Uninstalling KB951748 is definitely *not* right course of action.

> I believe that you are incorrect. The proper procedure is to un install

> the offending update determine what it is interfering with get the

> appropriate update and reinstall the update.

 

The update in question did/does not cause any 'offense'. On the contrary,

it provides vital security.

ZA *is/was* the culprit which caused the 'offensive' behavior.

> It seems to me that no

> problems will occur following this sequence. There is no evidence that

> anyone has availed themselves to exploiting the DNS hole so in the short

> term un installing it should pose no problem.

 

Google is your friend :)