[BigFix-Announcements] New Fixlets Published in Fixlet Site:
EnterpriseSecurity
Tim Tsai
tim_tsai at bigfix.com
Wed Feb 15 10:31:52 PST 2006
The automated email notification sent out earlier today (Feb 15th, 2006) at
2AM PST did not include all newly published Fixlet messages. Below is the
list of new Fixlet messages that were published yesterday. Please contact
BigFix Technical Support (enterprisesupport at bigfix.com) if you have any
questions regarding the new content.
Tim Tsai
Content Manager
BigFix, Inc.
-----Original Message-----
Fixlet Site - EnterpriseSecurity
Current Version: 693 Published: Wed, 15 Feb 2006 06:41:13 GMT
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Korean MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600905
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean IME Language Bar in Office 2003 MUI.
An attacker who successfully exploited this vulnerability could take
complete control of an affected system. For an attack to be successful, the
attacker must be able to interactively logon to the affected system. After
downloading and installing this patch, affected computers will no longer be
susceptible to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
French MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600906
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Chinese MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600911
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Arabic MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600912
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Bulgarian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600913
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Chinese (Traditional) MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600914
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Czech MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600915
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Danish MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600916
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
German MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600917
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Greek MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600918
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Spanish MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600919
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Estonian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600920
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Finnish MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600921
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Hebrew MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600922
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Hindi MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600923
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Croatian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600924
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Hungarian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600925
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Italian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600926
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Japanese MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600927
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Lithuanian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600928
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Latvian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600929
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Dutch MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600940
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Norwegian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600941
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Polish MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600942
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Portuguese (Brazil) MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600943
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Portuguese MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600944
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Romanian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600945
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Russian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600946
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Slovak MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600947
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Slovanian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600948
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Serbian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600949
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Swedish MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600950
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Thai MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600951
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Turkish MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600952
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
Ukrainian MUI (Local/Network Install)
Severity: Important
Fixlet ID: 600953
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in Office 2003. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-009: Security Update for Korean IME Language Bar - Office 2003
MUI (Administrative Install)
Severity: Important
Fixlet ID: 600960
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean IME Language Bar in Office 2003 MUI.
An attacker who successfully exploited this vulnerability could take
complete control of an affected system. For an attack to be successful, the
attacker must be able to interactively logon to the affected system. After
downloading and installing this patch, affected computers will no longer be
susceptible to this vulnerability. After downloading and installing this
patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-004: Cumulative Security Update for Internet Explorer - IE 5.01
SP4 - Windows 2000 SP4
Severity: Critical
Fixlet ID: 600401
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-004.mspx
Fixlet Description: Microsoft has released a cumulative security update for
Internet Explorer that eliminates newly discovered security vulnerabilities.
An attacker who successfully exploited these vulnerabilities could take
complete control of an affected system. After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-004: CORRUPT PATCH - Windows 2000 SP4
Severity: Critical
Fixlet ID: 600402
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-004.mspx
***************************************************************
Title: MS06-005: Vulnerability in Windows Media Player Could Allow Remote
Code Execution - Windows Media Player 8 - Windows XP SP1
Severity: Important
Fixlet ID: 600501
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in Windows Media Player. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights. After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-005: CORRUPT PATCH - Windows Media Player 8 - Windows XP SP1
Severity: Important
Fixlet ID: 600502
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
***************************************************************
Title: MS06-005: Vulnerability in Windows Media Player Could Allow Remote
Code Execution - Windows Media Player 9 - Windows 2000/XP/2003
Severity: Critical
Fixlet ID: 600503
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in Windows Media Player. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights. After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-005: CORRUPT PATCH - Windows Media Player 9 - Windows
2000/XP/2003
Severity: Critical
Fixlet ID: 600504
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
***************************************************************
Title: MS06-005: Vulnerability in Windows Media Player Could Allow Remote
Code Execution - Windows Media Player 10 - Windows XP SP1/SP2
Severity: Critical
Fixlet ID: 600505
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in Windows Media Player. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights. After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-005: CORRUPT PATCH - Windows Media Player 10 - Windows XP
SP1/SP2
Severity: Critical
Fixlet ID: 600506
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
***************************************************************
Title: MS06-005: Vulnerability in Windows Media Player Could Allow Remote
Code Execution - Windows Media Player 7.1 - Windows 2000 SP4
Severity: Important
Fixlet ID: 600507
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in Windows Media Player. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights. After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-005: CORRUPT PATCH - Windows Media Player 7.1 - Windows 2000 SP4
Severity: Important
Fixlet ID: 600508
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
***************************************************************
Title: MS06-005: Vulnerability in Windows Media Player Could Allow Remote
Code Execution - Windows Media Player 9 - Windows 98/ME
Severity: Critical
Fixlet ID: 600509
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in Windows Media Player. If a user is logged on with
administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights. After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-005: CORRUPT PATCH - Windows 98/ME
Severity: Critical
Fixlet ID: 600510
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-005.mspx
***************************************************************
Title: MS06-006: Vulnerability in Windows Media Player Plug-in with
Non-Microsoft Internet Browsers Could Allow Remote Code Execution - Windows
2000/XP/2003
Severity: Important
Fixlet ID: 600601
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-006.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in a Windows Media Player Plugin. If a user is logged on
with administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-006: CORRUPT PATCH - Windows 2000/XP/2003
Severity: Important
Fixlet ID: 600602
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-006.mspx
***************************************************************
Title: MS06-007: Vulnerability in TCP/IP Could Allow Denial of Service -
Windows Server 2003
Severity: Important
Fixlet ID: 600701
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-007.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in TCP/IP. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-007: CORRUPT PATCH - Windows Server 2003
Severity: Important
Fixlet ID: 600702
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-007.mspx
***************************************************************
Title: MS06-007: Vulnerability in TCP/IP Could Allow Denial of Service -
Windows XP SP1/SP2
Severity: Important
Fixlet ID: 600703
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-007.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in TCP/IP. An attacker who successfully exploited this
vulnerability could execute code on an affected system. After downloading
and installing this patch, affected computers will no longer be susceptible
to this vulnerability.
***************************************************************
Title: MS06-007: CORRUPT PATCH - Windows XP SP1/SP2
Severity: Important
Fixlet ID: 600704
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-007.mspx
***************************************************************
Title: MS06-008: Vulnerability in Web Client Service Could Allow Remote Code
Execution - Windows Server 2003
Severity: Moderate
Fixlet ID: 600801
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-008.mspx
Fixlet Description: A remote code execution vulnerability exists in the way
that Windows processes Web Client requests that could allow an attacker who
successfully exploited this vulnerable to take complete control of the
affected system. After downloading and installing this patch, affected
computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-008: CORRUPT PATCH - Windows Server 2003
Severity: Moderate
Fixlet ID: 600802
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-008.mspx
***************************************************************
Title: MS06-008: Vulnerability in Web Client Service Could Allow Remote Code
Execution - Windows XP SP1/SP2
Severity: Important
Fixlet ID: 600803
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-008.mspx
Fixlet Description: A remote code execution vulnerability exists in the way
that Windows processes Web Client requests that could allow an attacker who
successfully exploited this vulnerable to take complete control of the
affected system. After downloading and installing this patch, affected
computers will no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-008: CORRUPT PATCH - Windows XP SP1/SP2
Severity: Important
Fixlet ID: 600804
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-008.mspx
***************************************************************
Title: MS06-009: Vulnerability in the Korean IME Could Allow Elevation of
Privilege - Windows XP SP1/SP2
Severity: Important
Fixlet ID: 600901
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean IME Language Bar in Windows XP. An
attacker who successfully exploited this vulnerability could take complete
control of an affected system. For an attack to be successful, the attacker
must be able to interactively logon to the affected system. After
downloading and installing this patch, affected computers will no longer be
susceptible to this vulnerability.
***************************************************************
Title: MS06-009: CORRUPT PATCH - Windows XP SP1/SP2
Severity: Important
Fixlet ID: 600902
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-009.mspx
***************************************************************
Title: MS06-009: Vulnerability in the Korean IME Could Allow Elevation of
Privilege - Windows Server 2003
Severity: Important
Fixlet ID: 600903
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean IME Language Bar in Windows Server
2003. An attacker who successfully exploited this vulnerability could take
complete control of an affected system. For an attack to be successful, the
attacker must be able to interactively logon to the affected system. After
downloading and installing this patch, affected computers will no longer be
susceptible to this vulnerability.
***************************************************************
Title: MS06-009: CORRUPT PATCH - Windows Server 2003
Severity: Important
Fixlet ID: 600904
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-009.mspx
***************************************************************
Title: MS06-009: Vulnerability in the Korean IME Could Allow Elevation of
Privilege - Visio 2003 Korean MUI
Severity: Important
Fixlet ID: 600907
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean IME Language Bar in Visio 2003 MUI. An
attacker who successfully exploited this vulnerability could take complete
control of an affected system. For an attack to be successful, the attacker
must be able to interactively logon to the affected system. After
downloading and installing this patch, affected computers will no longer be
susceptible to this vulnerability.
***************************************************************
Title: MS06-009: Vulnerability in the Korean IME Could Allow Elevation of
Privilege - Project 2003 Korean MUI
Severity: Important
Fixlet ID: 600909
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean IME Language Bar in Office 2003 MUI.
An attacker who successfully exploited this vulnerability could take
complete control of an affected system. For an attack to be successful, the
attacker must be able to interactively logon to the affected system. After
downloading and installing this patch, affected computers will no longer be
susceptible to this vulnerability.
***************************************************************
Title: MS06-010: Vulnerability in PowerPoint 2000 Could Allow Information
Disclosure (Local Install)
Severity: Important
Fixlet ID: 601001
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-010.mspx
Fixlet Link: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=129
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-010: Vulnerability in PowerPoint 2000 Could Allow Information
Disclosure - Windows NT/2000/XP/2003 (Network Install)
Severity: Important
Fixlet ID: 601002
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-010.mspx
Fixlet Link: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=129
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-010: Vulnerability in PowerPoint 2000 Could Allow Information
Disclosure - Windows 9x/ME (Network Install)
Severity: Important
Fixlet ID: 601003
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-010.mspx
Fixlet Link: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=129
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-010: Vulnerability in PowerPoint 2000 Could Allow Information
Disclosure - Windows NT/2000/XP/2003 (Administrative Install)
Severity: Important
Fixlet ID: 601004
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-010.mspx
Fixlet Link: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=129
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-010: Vulnerability in PowerPoint 2000 Could Allow Information
Disclosure - Windows 9x/ME (Administrative Install)
Severity: Important
Fixlet ID: 601005
Fixlet Link:
http://www.microsoft.com/technet/security/Bulletin/MS06-010.mspx
Fixlet Link: http://support.bigfix.com/cgi-bin/kbdirect.pl?id=129
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
Fixlet Description: Microsoft has released a patch eliminating a security
vulnerability in PowerPoint. An attacker who successfully exploited this
vulnerability could remotely attempt to access objects in the Temporary
Internet Files Folder (TIFF) explicitly by name. Note that this
vulnerability would not allow an attacker to execute code or to elevate
their user rights directly, but it could be used to produce useful
information that could be used to try to further compromise the affected
system. After downloading and installing this patch, affected computers will
no longer be susceptible to these vulnerabilities.
***************************************************************
Title: MS06-006: Vulnerability in Windows Media Player Plug-in with
Non-Microsoft Internet Browsers Could Allow Remote Code Execution - Windows
XP/2003 (x64)
Severity: Important
Fixlet ID: 600603
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/ms06-006.mspx
Fixlet Description: Microsoft has released a patch eliminating security
vulnerabilities in a Windows Media Player Plugin. If a user is logged on
with administrative user rights, an attacker who successfully exploited this
vulnerability could take complete control of an affected system. An attacker
could then install programs; view, change, or delete data; or create new
accounts with full user rights. Users whose accounts are configured to have
fewer user rights on the system could be less affected than users who
operate with administrative user rights After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
***************************************************************
Title: MS06-009: Vulnerability in the Korean IME Could Allow Elevation of
Privilege - Windows XP/2003 (x64)
Severity: Important
Fixlet ID: 600930
Fixlet Link:
http://www.microsoft.com/technet/security/bulletin/MS06-009.mspx
Fixlet Description: Microsoft has released a patch eliminating a privilege
elevation vulnerability in the Korean Input Method Editor (IME) Language Bar
in Windows. An attacker who successfully exploited this vulnerability could
take complete control of an affected system. For an attack to be successful,
the attacker must be able to interactively logon to the affected system.
After downloading and installing this patch, affected computers will no
longer be susceptible to this vulnerability.After downloading and installing
this patch, affected computers will no longer be susceptible to these
vulnerabilities.
More information about the BigFix-Announcements
mailing list