We recently had a security consultant come and review our environment and one of the things he found was a hotfix that had not been applied; namely MS10-039: Vulnerabilities in Microsoft SharePoint could allow elevation of privilege . I want to make sure that what I have been told is correct, as we have had Microsoft's first line of tech support break our environments on more than one occasion. Do we actually need to run the SharePoint Technologies and Configuration Wizard after applying the hotfix for WSS 3.0 and MOSS 2007? Are there any other gotchas, like needing to stop any services that we should be aware of? Thanks in advance, Veronica