[BigFix-Announcements] BES Auto Notification: New Fixlets Published
in Fixlet Site: EnterpriseSecurity
autonotify at bigfix.com
autonotify at bigfix.com
Wed Feb 15 02:02:35 PST 2006
Fixlet Site - EnterpriseSecurity
Current Version: 693 Published: Wed, 15 Feb 2006 06:41:13 GMT
***************************************************************
Title: MS06-006: Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution - Windows XP/2003 (x64)
Severity: Important
Fixlet ID: 600603
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/ms06-006.mspx
Fixlet Description: Microsoft has released a patch eliminating security vulnerabilities in a Windows Media Player Plugin. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-008: Vulnerability in Web Client Service Could Allow Remote Code Execution - Windows XP/2003 (x64)
Severity: Important
Fixlet ID: 600805
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS06-008.mspx
Fixlet Description: A remote code execution vulnerability exists in the way that Windows processes Web Client requests that could allow an attacker who successfully exploited this vulnerable to take complete control of the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-009: Vulnerability in the Korean IME Could Allow Elevation of Privilege - Windows XP/2003 (x64)
Severity: Important
Fixlet ID: 600930
Fixlet Link: http://www.microsoft.com/technet/security/bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege elevation vulnerability in the Korean Input Method Editor (IME) Language Bar in Windows. An attacker who successfully exploited this vulnerability could take complete control of an affected system. For an attack to be successful, the attacker must be able to interactively logon to the affected system. After downloading and installing this patch, affected computers will no longer be susceptible to this vulnerability.After downloading and installing this patch, affected computers will no longer be susceptible to these vulnerabilities.
More information about the BigFix-Announcements
mailing list