[BigFix-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: EnterpriseSecurity

autonotify at bigfix.com autonotify at bigfix.com
Wed Jun 15 02:01:40 PDT 2005 

Fixlet Site - EnterpriseSecurity
Current Version: 588	Published: Wed, 15 Jun 2005 03:37:27 GMT


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - Windows Server 2003
Severity: Critical
Fixlet ID: 502501
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - Windows Server 2003
Severity: Critical
Fixlet ID: 502502
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - IE 5.01 - Windows 2000 SP3
Severity: Critical
Fixlet ID: 502503
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - Windows 2000 SP3
Severity: Critical
Fixlet ID: 502504
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - IE 5.01 - Windows 2000 SP4
Severity: Critical
Fixlet ID: 502505
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - Windows 2000 SP4
Severity: Critical
Fixlet ID: 502506
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - IE 6.0 SP1 - Windows 2000/XP
Severity: Critical
Fixlet ID: 502507
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - Windows 2000/XP
Severity: Critical
Fixlet ID: 502508
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - IE 6.0 - Windows XP SP2
Severity: Critical
Fixlet ID: 502509
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - Windows XP SP2
Severity: Critical
Fixlet ID: 502510
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - IE 5.5 SP2 - Windows ME
Severity: Critical
Fixlet ID: 502511
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - IE 5.5 SP2 - Windows ME
Severity: Critical
Fixlet ID: 502512
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-025: Cumulative Security Update for Internet Explorer - IE 6.0 SP1 - Windows ME/98
Severity: Critical
Fixlet ID: 502513
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

Fixlet Description: Microsoft has released a cumulative patch for Internet Explorer that eliminates two newly-discovered security vulnerabilities, as well as eliminating all vulnerabilities covered by earlier patches. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-025: CORRUPT PATCH - IE 6.0 SP1 - Windows ME/98
Severity: Critical
Fixlet ID: 502514
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx


***************************************************************
Title: MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution - Windows Server 2003
Severity: Critical
Fixlet ID: 502601
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx

Fixlet Description: Microsoft has released a security update for HTML Help that eliminates a newly discovered security vulnerability. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system, and then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-026: CORRUPT PATCH - Windows Server 2003
Severity: Critical
Fixlet ID: 502602
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx


***************************************************************
Title: MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution - Windows XP
Severity: Critical
Fixlet ID: 502603
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx

Fixlet Description: Microsoft has released a security update for HTML Help that eliminates a newly discovered security vulnerability. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system, and then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-026: CORRUPT PATCH - Windows XP
Severity: Critical
Fixlet ID: 502604
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx


***************************************************************
Title: MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution - Windows 2000
Severity: Critical
Fixlet ID: 502605
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx

Fixlet Description: Microsoft has released a security update for HTML Help that eliminates a newly discovered security vulnerability. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system, and then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.  

***************************************************************
Title: MS05-026: CORRUPT PATCH - Windows 2000
Severity: Critical
Fixlet ID: 502606
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx


***************************************************************
Title: MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution - Windows ME
Severity: Critical
Fixlet ID: 502607
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx

Fixlet Description: Microsoft has released a security update for HTML Help that eliminates a newly discovered security vulnerability. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system, and then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.  

***************************************************************
Title: MS05-026: CORRUPT PATCH - Windows ME
Severity: Critical
Fixlet ID: 502608
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx


***************************************************************
Title: MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution - Windows 98
Severity: Critical
Fixlet ID: 502609
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx

Fixlet Description: Microsoft has released a security update for HTML Help that eliminates a newly discovered security vulnerability. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system, and then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.  

***************************************************************
Title: MS05-027: Vulnerability in Server Message Block Could Allow Remote Code Execution - Windows Server 2003
Severity: Critical
Fixlet ID: 502701
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in SMB. A remote code execution vulnerability exists in Server Message Block (SMB) that could allow an attacker who successfully exploited this vulnerable to take complete control of the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-027: CORRUPT PATCH - Windows Server 2003
Severity: Critical
Fixlet ID: 502702
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx


***************************************************************
Title: MS05-027: Vulnerability in Server Message Block Could Allow Remote Code Execution - Windows XP
Severity: Critical
Fixlet ID: 502703
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in SMB. A remote code execution vulnerability exists in Server Message Block (SMB) that could allow an attacker who successfully exploited this vulnerable to take complete control of the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-027: CORRUPT PATCH - Windows XP
Severity: Critical
Fixlet ID: 502704
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx


***************************************************************
Title: MS05-027: Vulnerability in Server Message Block Could Allow Remote Code Execution - Windows 2000
Severity: Critical
Fixlet ID: 502705
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in SMB. A remote code execution vulnerability exists in Server Message Block (SMB) that could allow an attacker who successfully exploited this vulnerable to take complete control of the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-027: CORRUPT PATCH - Windows 2000
Severity: Critical
Fixlet ID: 502706
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx


***************************************************************
Title: MS05-028: Vulnerability in Web Client Service Could Allow Remote Code Execution - Windows Server 2003
Severity: Moderate
Fixlet ID: 502801
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-028.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in the Web Client service. A remote code execution vulnerability exists in the way that Windows processes Web Client requests that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.

***************************************************************
Title: MS05-028: CORRUPT PATCH - Windows Server 2003
Severity: Moderate
Fixlet ID: 502802
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-028.mspx


***************************************************************
Title: MS05-028: Vulnerability in Web Client Service Could Allow Remote Code Execution - Windows XP
Severity: Important
Fixlet ID: 502803
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-028.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in the Web Client service. A remote code execution vulnerability exists in the way that Windows processes Web Client requests that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-028: CORRUPT PATCH - Windows XP
Severity: Important
Fixlet ID: 502804
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-028.mspx


***************************************************************
Title: MS05-029: Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks
Severity: Important
Fixlet ID: 502901
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS05-029.mspx

Fixlet Description: Microsoft has released a patch eliminating a cross-site scripting and spoofing vulnerability existing in the Outlook Web Access for Exchange Server 5.5. If successfully exploited, an attacker could perform cross-site scripting attacks. After downloading and installing this patch, affected computers will no longer be susceptible to this vulnerability. 

***************************************************************
Title: MS05-029: CORRUPT PATCH - Exchange Server 5.5
Severity: Important
Fixlet ID: 502902
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS05-029.mspx


***************************************************************
Title: MS05-030: Security Update for Outlook Express - OE 5.5 SP2 for Windows 2000
Severity: Important
Fixlet ID: 503001
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-030.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in Outlook Express. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-030: CORRUPT PATCH - Windows 2000
Severity: Important
Fixlet ID: 503002
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-030.mspx


***************************************************************
Title: MS05-030: Security Update for Outlook Express - OE 6 for Windows Server 2003
Severity: Important
Fixlet ID: 503003
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-030.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in Outlook Express. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-030: CORRUPT PATCH - Windows Server 2003
Severity: Important
Fixlet ID: 503004
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-030.mspx


***************************************************************
Title: MS05-030:  Security Update for Outlook Express - OE 6.0 SP1 for Windows 2000/XP
Severity: Important
Fixlet ID: 503005
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-030.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in Outlook Express. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.  

***************************************************************
Title: MS05-030: CORRUPT PATCH - Windows 2000/XP
Severity: Important
Fixlet ID: 503006
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-030.mspx


***************************************************************
Title: MS05-031: Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution
Severity: Important
Fixlet ID: 503101
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-031.mspx

Fixlet Description: Microsoft has released a security update for Interactive Training that eliminates a newly discovered security vulnerability. If successfully exploited, an attacker could take complete control of an affected system. After downloading and installing this patch, affected computers will no longer be susceptible to this vulnerability. 

***************************************************************
Title: MS05-031: CORRUPT PATCH - Step-by-Step Interactive Training
Severity: Important
Fixlet ID: 503102
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-031.mspx


***************************************************************
Title: MS05-032: Security Update for MSAgent ActiveX - Windows XP
Severity: Moderate
Fixlet ID: 503201
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in MSAgent ActiveX. This is a spoofing vulnerability that could enable an attacker to spoof trusted Internet content. Users could believe that they are accessing trusted Internet content. However, they are accessing malicious Internet content such as a malicious Web site. An attacker would first have to persuade a user to visit the attacker’s site to attempt to exploit this vulnerability. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-032: CORRUPT PATCH - Windows XP
Severity: Moderate
Fixlet ID: 503202
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx


***************************************************************
Title: MS05-032: Security Update for MSAgent ActiveX - Windows Server 2003
Severity: Low
Fixlet ID: 503203
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in MSAgent ActiveX. This is a spoofing vulnerability that could enable an attacker to spoof trusted Internet content. Users could believe that they are accessing trusted Internet content. However, they are accessing malicious Internet content such as a malicious Web site. An attacker would first have to persuade a user to visit the attacker’s site to attempt to exploit this vulnerability. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-032: CORRUPT PATCH - Windows Server 2003
Severity: Low
Fixlet ID: 503204
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx


***************************************************************
Title: MS05-032: Security Update for MSAgent ActiveX - Windows 2000
Severity: Moderate
Fixlet ID: 503205
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in MSAgent ActiveX. This is a spoofing vulnerability that could enable an attacker to spoof trusted Internet content. Users could believe that they are accessing trusted Internet content. However, they are accessing malicious Internet content such as a malicious Web site. An attacker would first have to persuade a user to visit the attacker’s site to attempt to exploit this vulnerability. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-032: CORRUPT PATCH - Windows 2000
Severity: Moderate
Fixlet ID: 503206
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx


***************************************************************
Title: MS05-033: Security Update for Telnet - Windows Server 2003
Severity: Moderate
Fixlet ID: 503301
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-033.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerability in the Telnet Client. An attacker who successfully exploited this information disclosure vulnerability could remotely read the session variables for users who have open connections to a malicious telnet server. After downloading and installing this patch, affected computers will no longer be susceptible to this vulnerability. 

***************************************************************
Title: MS05-033: CORRUPT PATCH - Windows Server 2003
Severity: Moderate
Fixlet ID: 503302
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-033.mspx


***************************************************************
Title: MS05-033: Security Update for Telnet - Windows XP
Severity: Moderate
Fixlet ID: 503303
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-033.mspx

Fixlet Description: Microsoft has released a patch eliminating security vulnerability in the Telnet Client. An attacker who successfully exploited this information disclosure vulnerability could remotely read the session variables for users who have open connections to a malicious telnet server. After downloading and installing this patch, affected computers will no longer be susceptible to this vulnerability.  

***************************************************************
Title: MS05-033: CORRUPT PATCH - Windows XP
Severity: Moderate
Fixlet ID: 503304
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-033.mspx


***************************************************************
Title: MS05-034: Cumulative Security Update for ISA Server 2000
Severity: Moderate
Fixlet ID: 503401
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-034.mspx

Fixlet Description: Microsoft has released a patch resolving several newly-discovered, privately reported security vulnerabilities in ISA Server 2000. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities. 

***************************************************************
Title: MS05-034: CORRUPT PATCH - ISA Server 2000
Severity: Moderate
Fixlet ID: 503403
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-034.mspx

More information about the BigFix-Announcements mailing list