[BigFix-Announcements] BES Auto Notification: New Fixlets Published
in Fixlet Site: EnterpriseSecurity
autonotify at bigfix.com
autonotify at bigfix.com
Thu Oct 13 02:02:02 PDT 2005
Fixlet Site - EnterpriseSecurity
Current Version: 643 Published: Thu, 06 Oct 2005 22:31:45 GMT
***************************************************************
Title: MS05-050: Vulnerability in DirectShow Could Allow Remote Code Execution - DirectX 8.0/8.1/8.2 on Windows 98/ME
Severity: Critical
Fixlet ID: 505017
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-050.mspx
Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in DirectShow. A remote code execution vulnerability exists in DirectShow that could allow an attacker who successfully exploited this vulnerability to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS05-050: CORRUPT PATCH - DirectX 8.0/8.1/8.2 on Windows 98/ME
Severity: Critical
Fixlet ID: 505018
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-050.mspx
***************************************************************
Title: MS05-050: Vulnerability in DirectShow Could Allow Remote Code Execution - DirectX 9.0 on Windows 98/ME
Severity: Critical
Fixlet ID: 505019
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-050.mspx
Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in DirectShow. A remote code execution vulnerability exists in DirectShow that could allow an attacker who successfully exploited this vulnerability to take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS05-050: CORRUPT PATCH - DirectX 9.0 on Windows 98/ME
Severity: Critical
Fixlet ID: 505020
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS05-050.mspx
***************************************************************
Title: MS05-052: Cumulative Security Update for Internet Explorer - IE 5.5 SP2 - Windows ME
Severity: Critical
Fixlet ID: 505211
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS05-052.mspx
Fixlet Description: Microsoft has released a cumulative patch to resolves a newly-discovered public vulnerability and other privately-reported variations of the same vulnerability. The Microsoft DDS Library Shape Control (Msdds.dll) and other COM objects could, when instantiated in Internet Explorer, allow an attacker to take complete control of an affected system. Because these COM objects were not designed to be instantiated in Internet Explorer, this update sets the kill bit for the affected Class Identifiers (CLSID) in these COM objects.
***************************************************************
Title: MS05-052: CORRUPT PATCH - IE 5.5 SP2 - Windows ME
Severity: Critical
Fixlet ID: 505212
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS05-052.mspx
***************************************************************
Title: MS05-052: Cumulative Security Update for Internet Explorer - IE 6.0 SP1 - Windows 98/ME
Severity: Critical
Fixlet ID: 505213
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS05-052.mspx
Fixlet Description: Microsoft has released a cumulative patch to resolves a newly-discovered public vulnerability and other privately-reported variations of the same vulnerability. The Microsoft DDS Library Shape Control (Msdds.dll) and other COM objects could, when instantiated in Internet Explorer, allow an attacker to take complete control of an affected system. Because these COM objects were not designed to be instantiated in Internet Explorer, this update sets the kill bit for the affected Class Identifiers (CLSID) in these COM objects.
***************************************************************
Title: MS05-052: CORRUPT PATCH - IE 6.0 SP1 - Windows 98/ME
Severity: Critical
Fixlet ID: 505214
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS05-052.mspx
More information about the BigFix-Announcements
mailing list