Thanks but the SSDP Discovery Service is still Enabled
and on Start Automatic - the Port is shown as Open on
various Security Site Scans and Q315000 is not listed by
Qfecheck - thus it seems I don't have the Patch in spite
of having Installed SP1

Lesley
>-----Original Message-----
>If you've installed SP1, you don't have to worry about
>the patch. You won't see the Q315000 listed in
>Add/Remove Programs separately because it's part of SP1.
>
>
>>-----Original Message-----
>>
>>It has come to my notice that my Port 5000 (Universal
>>Plug and Play)is open
>>
>>Security Bulletin Ms01-059 states that the Patch for
>this
>>(Q315000)is included with SP1
>>
>>I have Installed SP1 a few months ago
>>
>>Therefore I'm wondering why the Patch seem not to have
>>been Installed\Applied
>>
>>I know how to Disable the SSDP Discovery Service
>>
>>I am just curious regarding the ? abscence of the Patch?
>>
>>Lesley
>>.
>>
>.
>

SSDP is patched by SP1, not disabled by it. SSDP is actually useful for
UPnP scenarios, so it wouldn't make sense to disable it, but go ahead if
you aren't using it. But you aren't subject to the vulnerability that
SP1 fixed, whether you run SSDP or not.

Patches fix vulnerabilities, they don't disable useful services.

--
Kent W. England, Microsoft MVP for Windows



"Lesley" > wrote in
message ...

> Thanks but the SSDP Discovery Service is still Enabled
> and on Start Automatic - the Port is shown as Open on
> various Security Site Scans and Q315000 is not listed by
> Qfecheck - thus it seems I don't have the Patch in spite
> of having Installed SP1
>
> Lesley
> >-----Original Message-----
> >If you've installed SP1, you don't have to worry about
> >the patch. You won't see the Q315000 listed in
> >Add/Remove Programs separately because it's part of SP1.
> >
> >
> >>-----Original Message-----
> >>
> >>It has come to my notice that my Port 5000 (Universal
> >>Plug and Play)is open
> >>
> >>Security Bulletin Ms01-059 states that the Patch for
> >this
> >>(Q315000)is included with SP1
> >>
> >>I have Installed SP1 a few months ago
> >>
> >>Therefore I'm wondering why the Patch seem not to have
> >>been Installed\Applied
> >>
> >>I know how to Disable the SSDP Discovery Service
> >>
> >>I am just curious regarding the ? abscence of the Patch?
> >>
> >>Lesley
> >>.
> >>
> >.
> >

Thanks - ok - I understand that - so why do all the
online Security Scans show my Port 5000 as being Open ??

Lesley


>-----Original Message-----
>SSDP is patched by SP1, not disabled by it. SSDP is
actually useful for
>UPnP scenarios, so it wouldn't make sense to disable it,
but go ahead if
>you aren't using it. But you aren't subject to the
vulnerability that
>SP1 fixed, whether you run SSDP or not.
>
>Patches fix vulnerabilities, they don't disable useful
services.
>
>--
>Kent W. England, Microsoft MVP for Windows
>
>
>
>"Lesley" > wrote in
>message ...
>
>> Thanks but the SSDP Discovery Service is still Enabled
>> and on Start Automatic - the Port is shown as Open on
>> various Security Site Scans and Q315000 is not listed
by
>> Qfecheck - thus it seems I don't have the Patch in
spite
>> of having Installed SP1
>>
>> Lesley
>> >-----Original Message-----
>> >If you've installed SP1, you don't have to worry about
>> >the patch. You won't see the Q315000 listed in
>> >Add/Remove Programs separately because it's part of
SP1.
>> >
>> >
>> >>-----Original Message-----
>> >>
>> >>It has come to my notice that my Port 5000 (Universal
>> >>Plug and Play)is open
>> >>
>> >>Security Bulletin Ms01-059 states that the Patch for
>> >this
>> >>(Q315000)is included with SP1
>> >>
>> >>I have Installed SP1 a few months ago
>> >>
>> >>Therefore I'm wondering why the Patch seem not to
have
>> >>been Installed\Applied
>> >>
>> >>I know how to Disable the SSDP Discovery Service
>> >>
>> >>I am just curious regarding the ? abscence of the
Patch?
>> >>
>> >>Lesley
>> >>.
>> >>
>> >.
>> >
>
>.
>

No, you still don't quite understand. The port scans show that port open
because it still is open. "Open" means "available for use", not
"vulnerable to X". I think you had better disable the SSDP service. That
way it will be both unavailable and invulnerable.

--
Kent W. England, Microsoft MVP for Windows



"Lesley" <sheles@homeonsundays> wrote in
message ...

> Thanks - ok - I understand that - so why do all the
> online Security Scans show my Port 5000 as being Open ??
>
> Lesley
>
>
> >-----Original Message-----
> >SSDP is patched by SP1, not disabled by it. SSDP is
> actually useful for
> >UPnP scenarios, so it wouldn't make sense to disable it,
> but go ahead if
> >you aren't using it. But you aren't subject to the
> vulnerability that
> >SP1 fixed, whether you run SSDP or not.
> >
> >Patches fix vulnerabilities, they don't disable useful
> services.
> >
> >--
> >Kent W. England, Microsoft MVP for Windows
> >
> >
> >
> >"Lesley" > wrote in
> >message ...
> >
> >> Thanks but the SSDP Discovery Service is still Enabled
> >> and on Start Automatic - the Port is shown as Open on
> >> various Security Site Scans and Q315000 is not listed
> by
> >> Qfecheck - thus it seems I don't have the Patch in
> spite
> >> of having Installed SP1
> >>
> >> Lesley
> >> >-----Original Message-----
> >> >If you've installed SP1, you don't have to worry about
> >> >the patch. You won't see the Q315000 listed in
> >> >Add/Remove Programs separately because it's part of
> SP1.
> >> >
> >> >
> >> >>-----Original Message-----
> >> >>
> >> >>It has come to my notice that my Port 5000 (Universal
> >> >>Plug and Play)is open
> >> >>
> >> >>Security Bulletin Ms01-059 states that the Patch for
> >> >this
> >> >>(Q315000)is included with SP1
> >> >>
> >> >>I have Installed SP1 a few months ago
> >> >>
> >> >>Therefore I'm wondering why the Patch seem not to
> have
> >> >>been Installed\Applied
> >> >>
> >> >>I know how to Disable the SSDP Discovery Service
> >> >>
> >> >>I am just curious regarding the ? abscence of the
> Patch?
> >> >>
> >> >>Lesley
> >> >>.
> >> >>
> >> >.
> >> >
> >
> >.
> >