The Microsoft® Windows® security updates for April 2004 address newly discovered issues in Windows, including Microsoft Outlook Express, a component of Windows. If you have any of the listed software installed on your computer, you should visit the Windows Update Web site to install related updates.
	Skip the details and go to Windows Update now

Security Bulletin MS04-011

Severity	Software affected	Update number
	Windows NT® Workstation 4.0 Windows NT Server 4.0 Windows NT Server 4.0, Terminal Server Edition Windows 2000 Windows XP Windows Server™ 2003	835732
Get more information in the technical bulletin

Security Bulletin MS04-012

Severity	Software affected	Update number
	Windows NT Workstation 4.0 Windows NT Server 4.0 Windows NT Server 4.0, Terminal Server Edition Windows 2000 Windows XP Windows Server 2003	828741
Get more information in the technical bulletin

Security Bulletin MS04-013

Severity	Software affected	Update number
	Windows NT Workstation 4.0 Windows NT Server 4.0 Windows NT Server 4.0, Terminal Server Edition Windows 2000 Windows XP Windows Server 2003 Windows 98 Windows 98 Second Edition (SE) Windows Millennium Edition (Windows Me) Note  This issue affects Outlook Express, a component of Windows.	837009
Get more information in the technical bulletin

Security Bulletin MS04-014

Severity	Software affected	Update number
	Windows NT Workstation 4.0 Windows NT Server 4.0 Windows NT Server 4.0, Terminal Server Edition Windows 2000 Windows XP Windows Server 2003	837001
Get more information in the technical bulletin

% cat 20040413.txt

-----BEGIN PGP SIGNED MESSAGE-----

MICROSOFT SECURITY UPDATES ALERT

April 13, 2004

SECURITY UPDATES SUMMARY FOR APRIL 2004
   This month's security updates address newly discovered issues
in Microsoft(R) Windows(R), including Microsoft Outlook Express,
a component of Windows.

LEARN MORE ...
   To learn about these updates and which software is affected,
review this notice on Microsoft.com:
   http://go.microsoft.com/?LinkID=466770

__________________________________________________

VIRUS ALERTS
   There are no new virus alerts, although we encourage you to use
our Mydoom and Doomjuice scanning and cleaning tool to help make sure
that your computer is free from infection by Mydoom.A, Mydoom.B,
Doomjuice.A, and Doomjuice.B.
http://www.microsoft.com/security/antivirus/mydoom.asp

BEWARE OF BOGUS BULLETINS
   If you get e-mail that claims to contain a Microsoft software
update, it is probably a virus trying to trick you into infecting
your computer. Microsoft never widely distributes software in e-mail.
Learn how to spot a bogus bulletin:
http://www.microsoft.com/security/antivirus/authenticate_mail.asp

__________________________________________________

ADDITIONAL RESOURCES

SECURITY WEB SITE
   http://www.microsoft.com/security/

HELP PROTECT YOUR PC FROM MASS MAILER WORMS LIKE BAGLE AND NETSKY
   http://www.microsoft.com/security/incident/mass_mailer.asp

SECURITY BULLETIN SEARCH TOOL
   http://www.microsoft.com/technet/security/current.aspx

SECURITY NEWSGROUPS
   http://go.microsoft.com/?LinkID=436862

SECURITY NEWSGROUPS TOP 10 QUESTIONS AND ANSWERS
   http://go.microsoft.com/?LinkID=436863

PROTECT YOUR PC
   http://www.microsoft.com/security/protect/

__________________________________________________

ABOUT THE MICROSOFT SECURITY UPDATE
   The Microsoft Security Update is an e-mail alert service designed
for home users and small businesses that provides information about
Microsoft security updates and virus alerts. Microsoft also uses this
service to make subscribers aware that they might need to take action
to guard against a circulating security threat.

   You have received this update because you are a subscriber. If you
would like to unsubscribe, follow the instructions at the bottom
of this page.
__________________________________________________

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2

iQEVAwUBQHwX9o0ZSRQxA/UrAQG0uAgArafw4QDPp95OwgF1GzIXUrWeiXauPAl2
wU0Z8UbgaAakw9XW1OxfmerVLtHQh5ETvfinQjazemGzjj6NJu3ouNK7yrOAT2+S
3HqyYP1b2LAg3LpqNEjHH/7B94J0+G8Ua1PK7ZiGJr3qd31lxq/QG/0bpoRUhbvN
zCG4UVhdtqqMbjMkp1lT4zL5yl95+M01tdO/yK1K2sNi9S1KTkRRyjBAZ04zN+g0
XXSqOnMHt4zfL/8ZSryLZJTWREJ9hWglI85q6BJkabC1NRzXFdoib25OyQpVC8nS
IgFvtyUN3/QZOMTz0AwDj6oI+/tv2tETyVOPnEBGqQZZfsoowaRYpg==
=z8Lf
-----END PGP SIGNATURE-----

To verify the digital signature on this bulletin, please download our PGP key at http://www.microsoft.com/technet/security/notify.asp.

http://www.microsoft.com/technet/security/bulletin/notify.mspx

Microsoft Security Notification Service

Register Here

Register for the Microsoft Security Notification Service at the Microsoft Profile Center.
You'll need to provide only your e-mail address, and select a location/country and a preferred language.

About this Service

This is a free e-mail notification service that Microsoft uses to send information to customers about the security of Microsoft products. The goal of this service is to provide our customers with accurate information that they can use to inform and protect themselves from malicious attacks.

This service supplements our existing security reporting procedures. You can continue to read security bulletins and other information about Microsoft product security on http://www.microsoft.com/technet/security/default.mspx.

Help with your Notification Service

If you have any problems registering, canceling, or receiving the security notifications, please contact us.

Verifying our Digital Signature

We digitally sign all security bulletins. To verify the signature, please download our PGP key here. The key's fingerprint is
5E39 0633 D6B3 9788 F776 D980 AB7A 9432.

----->   here URL
http://www.microsoft.com/technet/security/msrc.asc

-----> Register URL
http://go.microsoft.com/?linkid=275652
http://register.microsoft.com/subscription/subscribeme.asp?ID=135

Security Notification Service

	The Microsoft® Security Notification Service is a free e-mail alert service geared toward IT professionals. We use this service to notify subscribers when we release an important security bulletin or virus alert, and also to make them aware that they might need to take action to guard against a circulating threat. This service is available in U.S. English only, but we request that you indicate a language preference. We hope to offer translated versions in the future and your feedback will help us determine which languages to offer. By providing your personal information, you are signing up to receive only these alerts, which we send as necessary to update you with the latest Microsoft security news. (This e-mail service supplements our existing security reporting procedures. Please continue to refer to the TechNet Security site to learn of other important announcements and to get security tips and fixes.)
	...... Security Notification Service Thank you for signing up to receive the Microsoft® Security Notification Service. We will send you an e-mail shortly with a link to confirm your subscription. In addition to the Security Notification Service, you can take advantage of a range of information— news about services, products, events, and more—based on your needs and interests. By providing us with only a few additional details, you can take advantage of these benefits. Get started receiving information tailored to your needs and interests You may also be interested in a TechNet subscription, which will enable you to leverage industry-standard tools for planning, deploying, and troubleshooting your mission-critical systems. Learn more about what a subscription to TechNet can do for you "Microsoft Subscription" confirm@newsletters.microsoft.com Security Notification Service ...... Security Notification Service

Confirm Your Subscription Please click Submit to confirm that you wish to subscribe to the Microsoft Security Notification Service. If you do not wish to subscribe to these E-mails, please click Cancel below. ...... Security Notification Service Thank you! You have subscribed to the Microsoft Security Notification Service.

% cat msrc.asc    
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: PGP 6.0.2
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=3JpF
-----END PGP PUBLIC KEY BLOCK-----

% gpg --import msrc.asc

% gpg --list-keys
gpg: WARNING: --honor-http-proxy is a deprecated option.
gpg: please use "--keyserver-options honor-http-proxy" instead
/root/.gnupg/pubring.gpg
------------------------

......

pub  2048R/3103F52B 2000-01-22 Microsoft Security Response Center <secure@microsoft.com>

% gpg --verify 20040413.txt

gpg: WARNING: --honor-http-proxy is a deprecated option.
gpg: please use "--keyserver-options honor-http-proxy" instead
gpg: Signature made Wed 14 Apr 2004 12:40:22 AM CST using RSA key ID 3103F52B
gpg: Good signature from "Microsoft Security Response Center <secure@microsoft.com>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Fingerprint: 5E 39 06 33 D6 B3 97 88  F7 76 D9 80 AB 7A 94 32

相关文章
http://www.smth.edu.cn/pc/pccon.php?id=10&nid=20157&s=all