Jerry Bryant's Security Blog : Security Bulletins

Security Bulletin(s) for November 2005

jbmsft — Tue, 08 Nov 2005 20:17:00 GMT

November 8, 2005

Today Microsoft released the following Security Bulletin(s).

Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-Nov.mspx

Critical Bulletins:

Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution (896424)
http://www.microsoft.com/technet/security/Bulletin/ms05-053.mspx

This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so. If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary.

Issues with MS05-051?

jbmsft — Tue, 18 Oct 2005 17:20:00 GMT

SYMPTOMS
On a computer that is running Microsoft Windows XP, Microsoft Windows 2000 Server, or Windows Server 2003, one or more problems may occur after you install the critical update that is discussed in Microsoft Security Bulletin MS05-051. These problems include the following: • The Windows Installer service may not start.
• The Windows Firewall Service may not start.
• The Network Connections folder is empty.
• The Windows Update Web site may incorrectly recommend that you change the Userdata persistence setting in Microsoft Internet Explorer.
• Active Server Pages (ASP) pages that are running on Microsoft Internet Information Services (IIS) return an “HTTP 500 – Internal Server Error” error message.
• The Microsoft COM+ EventSystem service will not start.
• COM+ applications will not start.
• The computers node in the Microsoft Component Services Microsoft Management Console (MMC) tree will not expand.
• Authenticated users cannot log on, and a blank screen appears after the users apply the October Security Updates.

For the Cause and Resolution, see:

http://support.microsoft.com/Default.aspx?id=909444

Security Bulletins for October 2005

jbmsft — Tue, 11 Oct 2005 15:47:00 GMT

October 11, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-Oct.mspx

Critical Bulletins:

Vulnerability in DirectShow Could Allow Remote Code Execution (904706)
http://www.microsoft.com/technet/security/Bulletin/ms05-050.mspx

Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400)
http://www.microsoft.com/technet/security/Bulletin/ms05-051.mspx

Cumulative Security Update for Internet Explorer (896688)
http://www.microsoft.com/technet/security/Bulletin/ms05-052.mspx

Important Bulletins:

Vulnerability in the Client Services for Netware Could Allow Remote Code Execution (899589)
http://www.microsoft.com/technet/security/Bulletin/ms05-046.mspx

Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749)
http://www.microsoft.com/technet/security/Bulletin/ms05-047.mspx

Vulnerability in the Microsoft Collaboration Objects Could Allow Remote Code Execution (907245)
http://www.microsoft.com/technet/security/Bulletin/ms05-048.mspx

Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725)
http://www.microsoft.com/technet/security/Bulletin/ms05-049.mspx

Moderate Bulletins:

Vulnerability in the Windows FTP Client Could Allow File Transfer Location and Tampering (905495)
http://www.microsoft.com/technet/security/Bulletin/ms05-044.mspx

Vulnerability in Network Connection Manager Could Allow Denial of Service (905414)
http://www.microsoft.com/technet/security/Bulletin/ms05-045.mspx

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary.

MS05-038 Cumulative Patch for IE - Issues

jbmsft — Wed, 10 Aug 2005 12:59:00 GMT

There were some issues with the digital signatures on some of the IE updates that were preventing installation. For that reason the updates were removed from the download center. Windows Update, Microsoft Update, SUS and WSUS are not affected. Will try to post an update as soon as more information is available.

Update: the bulletin was updated today and the downloads restored to the download center.

Microsoft Security Bulletin(s) for August 2005

jbmsft — Tue, 09 Aug 2005 15:36:00 GMT

August 9, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-Aug.mspx

Critical Bulletins:

Cumulative Security Update for Internet Explorer (896727)
http://www.microsoft.com/technet/security/Bulletin/ms05-038.mspx

Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588)
http://www.microsoft.com/technet/security/Bulletin/ms05-039.mspx

Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423)
http://www.microsoft.com/technet/security/Bulletin/ms05-043.mspx

Important Bulletins:

Vulnerability in Telephony Service Could Allow Remote Code Execution (893756)
http://www.microsoft.com/technet/security/Bulletin/ms05-040.mspx

Moderate Bulletins:

Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591)
http://www.microsoft.com/technet/security/Bulletin/ms05-041.mspx

Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587)
http://www.microsoft.com/technet/security/Bulletin/ms05-042.mspx

Re-Released Bulletins:

Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169)
http://www.microsoft.com/technet/security/Bulletin/ms05-023.mspx

Vulnerability in Microsoft Agent Could Allow Spoofing (890046) (890169)http://www.microsoft.com/technet/security/Bulletin/ms05-032.mspx

Microsoft Security Bulletin(s) for July 2005

jbmsft — Tue, 12 Jul 2005 15:08:00 GMT

July 12, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-Jul.mspx

Critical Bulletins:

Vulnerability in Microsoft Word Could Allow Remote Code Execution (903672)
http://www.microsoft.com/technet/security/Bulletin/ms05-035.mspx

Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214)
http://www.microsoft.com/technet/security/Bulletin/ms05-036.mspx

Vulnerability in JView Profiler Could Allow Remote Code Execution (903235)
http://www.microsoft.com/technet/security/Bulletin/ms05-037.mspx

Re-Released Bulletins:

Vulnerability in Telnet Client Could Allow Information Disclosure (896428)
http://www.microsoft.com/technet/security/Bulletin/ms05-033.mspx

Microsoft Security Bulletin(s) for June 2005

jbmsft — Tue, 14 Jun 2005 15:29:00 GMT

June 14, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-Jun.mspx

Critical Bulletins:

Cumulative Security Update for Internet Explorer (883939)
http://www.microsoft.com/technet/security/Bulletin/ms05-025.mspx

Vulnerability in HTML Help Could Allow Remote Code Execution (896358)
http://www.microsoft.com/technet/security/Bulletin/ms05-026.mspx

Vulnerability in Server Message Block Could Allow Remote Code Execution (896422)
http://www.microsoft.com/technet/security/Bulletin/ms05-027.mspx

Important Bulletins:

Vulnerability in Web Client Service Could Allow Remote Code Execution (896426)
http://www.microsoft.com/technet/security/Bulletin/ms05-028.mspx

Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179)
http://www.microsoft.com/technet/security/Bulletin/ms05-029.mspx

Cumulative Security Update in Outlook Express (897715)
http://www.microsoft.com/technet/security/Bulletin/ms05-018.mspx

Cumulative Security Update in Outlook Express (897715)
http://www.microsoft.com/technet/security/Bulletin/ms05-030.mspx

Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458)
http://www.microsoft.com/technet/security/Bulletin/ms05-031.mspx

Moderate Bulletins:

Vulnerability in Microsoft Agent Could Allow Spoofing (890046)
http://www.microsoft.com/technet/security/Bulletin/ms05-032.mspx

Vulnerability in Telnet Client Could Allow Information Disclosure (896428)
http://www.microsoft.com/technet/security/Bulletin/ms05-033.mspx

Cumulative Security Update for ISA Server 2000 (899753)
http://www.microsoft.com/technet/security/Bulletin/ms05-034.mspx

Re-Released Bulletins:

SQL Server Installation Process May Leave Passwords on System (Q263968)
http://www.microsoft.com/technet/security/Bulletin/ms02-032.mspx

ASP.NET Path Validation Vulnerability (887219)
http://www.microsoft.com/technet/security/Bulletin/ms05-004.mspx

Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179)
http://www.microsoft.com/technet/security/Bulletin/ms05-029.mspx

Microsoft Security Bulletin(s) for May 2005

jbmsft — Tue, 10 May 2005 15:20:00 GMT

May 10, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-may.mspx

Important Bulletins:

Vulnerability in Web View Could Allow Remote Code Execution (894320)
http://www.microsoft.com/technet/security/Bulletin/ms05-024.mspx

Microsoft Security Bulletins for April 2005

jbmsft — Tue, 12 Apr 2005 16:29:00 GMT

April 12, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-apr.mspx

Critical Bulletins:

Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066)

http://www.microsoft.com/technet/security/Bulletin/ms05-019.mspx

Cumulative Security Update for Internet Explorer (890923)
http://www.microsoft.com/technet/security/Bulletin/ms05-020.mspx

Vulnerability in Exchange Server Could Allow Remote Code Execution (894549)
http://www.microsoft.com/technet/security/Bulletin/ms05-021.mspx

Vulnerability in MSN Messenger Could Lead to Remote Code Execution (896597)
http://www.microsoft.com/technet/security/Bulletin/ms05-022.mspx

Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169)
http://www.microsoft.com/technet/security/Bulletin/ms05-023.mspx

Important Bulletins:

Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086)
http://www.microsoft.com/technet/security/Bulletin/ms05-016.mspx

Vulnerability in Message Queuing Could Allow Code Execution (892944)
http://www.microsoft.com/technet/security/Bulletin/ms05-017.mspx

Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859)
http://www.microsoft.com/technet/security/Bulletin/ms05-018.mspx

Microsoft Security Bulletins for March 8, 2005

jbmsft — Tue, 08 Mar 2005 16:44:00 GMT

March 8, 2005
Today, no new security bulletins were released.

Bulletin Summary:

For March 2005 there are no new security bulletins being release so there will not be a summary bulletin.

Revised Bulletins:

Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711)
http://www.microsoft.com/technet/security/Bulletin/ms05-002.mspx

Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113)
http://www.microsoft.com/technet/security/Bulletin/ms05-015.mspx

Microsoft Security Bulletins for 2/8/05

jbmsft — Tue, 08 Feb 2005 16:28:00 GMT

February 8, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-feb.mspx

Critical Bulletins:

Vulnerability in Microsoft Office XP could allow Remote Code Execution (873352)
http://www.microsoft.com/technet/security/Bulletin/ms05-005.mspx

Vulnerability in PNG Processing Could Allow Remote Code Execution (890261)
http://www.microsoft.com/technet/security/Bulletin/ms05-009.mspx

Vulnerability in the License Logging Service Could Allow Code Execution (885834)
http://www.microsoft.com/technet/security/Bulletin/ms05-010.mspx

Vulnerability in Server Message Block Could Allow Remote Code Execution (885250)
http://www.microsoft.com/technet/security/Bulletin/ms05-011.mspx

Vulnerability in OLE and COM Could Allow Remote Code Execution (873333)
http://www.microsoft.com/technet/security/Bulletin/ms05-012.mspx

Vulnerability in the DHTML Editing Component ActiveX Control Could Allow Remote Code Execution (891781)
http://www.microsoft.com/technet/security/Bulletin/ms05-013.mspx

Cumulative Security Update for Internet Explorer (867282)
http://www.microsoft.com/technet/security/Bulletin/ms05-014.mspx

Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113)
http://www.microsoft.com/technet/security/Bulletin/ms05-015.mspx

Important Bulletins:

ASP.NET Path Validation Vulnerability (887219)
http://www.microsoft.com/technet/security/Bulletin/ms05-004.mspx

Vulnerability in Windows Could Allow Information Disclosure (888302)
http://www.microsoft.com/technet/security/Bulletin/ms05-007.mspx

Vulnerability in Windows Shell Could Allow Remote Code Execution (890047)
http://www.microsoft.com/technet/security/Bulletin/ms05-008.mspx

Moderate Bulletins:

Vulnerability in Windows SharePoint Services and SharePoint Team Services Could Allow Cross-Site Scripting and Spoofing Attacks (887981)
http://www.microsoft.com/technet/security/Bulletin/ms05-006.mspx

Re-released Bulletins:

Vulnerability in SMTP Could Allow Remote Code Execution (885881)
http://www.microsoft.com/technet/security/Bulletin/ms04-035.mspx

Security bulletin summary for October 2004
http://www.microsoft.com/technet/security/Bulletin/ms04-oct.mspx

Microsoft Security Bulletins for 1/11/2005

jbmsft — Tue, 11 Jan 2005 16:10:00 GMT

January 11, 2005
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms05-jan.mspx

Critical Bulletins:

Vulnerability in HTML Help Could Allow Code Execution (890175)
http://www.microsoft.com/technet/security/Bulletin/ms05-001.mspx

Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711)
http://www.microsoft.com/technet/security/Bulletin/ms05-002.mspx

Important Bulletins:

Vulnerability in the Indexing Service Could Allow Remote Code Execution (871250)
http://www.microsoft.com/technet/security/Bulletin/ms05-003.mspx

Microsoft Security Bulletins for 12/14/04

jbmsft — Tue, 14 Dec 2004 16:28:00 GMT

December 14, 2004
Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms04-dec.mspx

Important Bulletins:

Vulnerability in WordPad Could Allow Code Execution (885836)
http://www.microsoft.com/technet/security/Bulletin/ms04-041.mspx

Vulnerability in DHCP Could Allow Remote Code Execution and Denial of Service (885249)
http://www.microsoft.com/technet/security/Bulletin/ms04-042.mspx

Vulnerability in HyperTerminal Could Allow Code Execution (873339)
http://www.microsoft.com/technet/security/Bulletin/ms04-043.mspx

Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835)
http://www.microsoft.com/technet/security/Bulletin/ms04-044.mspx

Vulnerability in WINS Could Allow Remote Code Execution (870763)
http://www.microsoft.com/technet/security/Bulletin/ms04-045.mspx

Re-released Bulletins:

Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)
http://www.microsoft.com/technet/security/Bulletin/ms04-028.mspx

Microsoft Security Bulletin for December 1, 2004

jbmsft — Wed, 01 Dec 2004 16:34:00 GMT

Today Microsoft released the following Security Bulletin(s).

Bulletin Summaries:

Windows : http://www.microsoft.com/technet/security/bulletin/ms04-dec.mspx

Critical Bulletins:

MS04-040 - Cumulative Security Update for Internet Explorer (889293)
http://www.microsoft.com/technet/security/bulletin/MS04-040.mspx

This DOES NOT represent our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

Microsoft Security Bulletin(s) for November 9, 2004

jbmsft — Tue, 09 Nov 2004 16:02:00 GMT

November 9, 2004
Today Microsoft released the following Security Bulletin(s).

Bulletin Summaries:

October Summary
http://www.microsoft.com/technet/security/Bulletin/ms04-nov.mspx

Important Bulletins:

MS04-039 – Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow Internet Content Spoofing (888258)
http://www.microsoft.com/technet/security/Bulletin/ms04-039.mspx

Microsoft Security Bulletins for October 12, 2004

jbmsft — Tue, 12 Oct 2004 15:34:00 GMT

October 12, 2004
Today Microsoft released the following Security Bulletins.

Bulletin Summaries:

October Summary
http://www.microsoft.com/technet/security/Bulletin/ms04-oct.mspx

Critical Bulletins:

MS04-032 – Security Update for Microsoft Windows (840987)
http://www.microsoft.com/technet/security/Bulletin/ms04-032.mspx

MS04-033 – Vulnerability in Microsoft Excel Could Allow Code Execution (886836)
http://www.microsoft.com/technet/security/Bulletin/ms04-033.mspx

MS04-034 – Vulnerability in Compressed (zipped) Folders Could Allow Code Execution (873376)
http://www.microsoft.com/technet/security/Bulletin/ms04-034.mspx

MS04-035 - Vulnerability in SMTP Could Allow Remote Code Execution (885881)
http://www.microsoft.com/technet/security/Bulletin/ms04-035.mspx

MS04-036 - Vulnerability in NNTP Could Allow Code Execution (883935)
http://www.microsoft.com/technet/security/Bulletin/ms04-036.mspx

MS04-037 - Vulnerability in Windows Shell Could Allow Remote Code Execution (841356)
http://www.microsoft.com/technet/security/Bulletin/ms04-037.mspx

MS04-038 - Cumulative Security Update for Internet Explorer (834707)
http://www.microsoft.com/technet/security/Bulletin/ms04-038.mspx

Important Bulletins:

MS04-029 – Vulnerability in RPC Runtime Library Could Allow Information Disclosure and Denial of Service (873350)
http://www.microsoft.com/technet/security/Bulletin/ms04-029.mspx

MS04-030 – Bulletin Title Vulnerability in WebDAV XML Message Handler Could Lead to a Denial of Service (824151)
http://www.microsoft.com/technet/security/Bulletin/ms04-030.mspx

MS04-031 – Vulnerability in NetDDE Could Allow Remote Code Execution (841533)
http://www.microsoft.com/technet/security/Bulletin/ms04-031.mspx

Re-Released Bulletins:

MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)
http://www.microsoft.com/technet/security/Bulletin/ms04-028.mspx

Microsoft Security Bulletin(s) for 9/14/2004

jbmsft — Tue, 14 Sep 2004 16:09:00 GMT

September 14, 2004
Today Microsoft released the following Security Bulletins.

Bulletin Summaries:

September Summary
http://www.microsoft.com/technet/security/Bulletin/ms04-sep.mspx

Critical Bulletins:

MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)
http://www.microsoft.com/technet/security/Bulletin/MS04-028.mspx

Important Bulletins:

MS04-027 - Vulnerability in WordPerfect Converter Could Allow Code Execution (884933)
http://www.microsoft.com/technet/security/Bulletin/MS04-027.mspx

Microsoft Security Bulletins for August 2004

jbmsft — Tue, 10 Aug 2004 15:30:00 GMT

August 10, 2004
Today Microsoft released the following Security Bulletins.

Bulletin Summaries:

August Summary
http://www.microsoft.com/technet/security/Bulletin/ms04-aug.mspx

Moderate Bulletins:

MS04-026 - Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842463)
http://www.microsoft.com/technet/security/Bulletin/MS04-026.mspx

Microsoft Security Bulletin for July 30, 2004

jbmsft — Fri, 30 Jul 2004 14:58:00 GMT

Today Microsoft released the following Security Bulletin(s).

Bulletin Summaries:

Windows : http://www.microsoft.com/technet/security/bulletin/ms04-jul.mspx

Critical Bulletins:

MS04-025 - Cumulative Security Update for Internet Explorer (867801)
http://www.microsoft.com/technet/security/bulletin/ms04-025.mspx

Microsoft Security Bulletins for July 2004

jbmsft — Wed, 14 Jul 2004 12:00:00 GMT

13 July 2004

Today Microsoft released the following Security Bulletins.

Bulletin Summaries: http://www.microsoft.com/technet/security/bulletin/ms04-jul.mspx

Critical Bulletins:

MS04-022 – Vulnerability in Task Scheduler Could Allow Code Execution (841873)
http://www.microsoft.com/technet/security/bulletin/ms04-022.mspx

MS04-023 – Vulnerability in HTML Help Could Allow Code Execution (840315)
http://www.microsoft.com/technet/security/bulletin/ms04-023.mspx

Important Bulletins:

MS04-019 – Vulnerability in Utility Manager Could Allow Code Execution (842526)
http://www.microsoft.com/technet/security/bulletin/ms04-019.mspx

MS04-020 – Vulnerability in POSIX Could Allow Code Execution (841872)
http://www.microsoft.com/technet/security/bulletin/ms04-020.mspx

MS04-021 – Security Update for IIS 4.0 (841373)
http://www.microsoft.com/technet/security/bulletin/ms04-021.mspx

MS04-024 - Vulnerability in Windows Shell Could Allow Remote Code Execution (839645)
http://www.microsoft.com/technet/security/bulletin/ms04-024.mspx

Moderate Bulletins:

MS04-018 - Cumulative Security Update for Outlook Express (823353)
http://www.microsoft.com/technet/security/bulletin/ms04-018.mspx