Microsoft Security Advisory (930181): Exploit Code Published Affecting Windows Client Server Run-Time Subsystem – 11/16/2006,Revision Note: Advisory published. Advisory Summary:Security Advisory
Tags: Microsoft Security AdvisoryPosted under Microsoft Security Alerts
This post was written by Ted on December 21, 2007
-->Microsoft Security Advisory (925444): Vulnerability in the Microsoft DirectAnimation Path ActiveX Control Could Allow Remote Code Execution – 11/14/2006,Revision Note: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS06-067 to address this issue. For more information about this issue, including download links for an available security update, please review MS06-067. The vulnerability addressed is the DirectAnimation Path ActiveX Vulnerability – CVE-2006-4777.
Tags: Microsoft Security AdvisoryPosted under Microsoft Security Alerts
This post was written by Ted on December 21, 2007
-->Microsoft Security Advisory (927892): Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution – 11/14/2006,Revision Note: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS06-071 to address this issue. For more information about this issue, including download links for an available security update, please review MS06-071.
Tags: Microsoft Security AdvisoryPosted under Microsoft Security Alerts
This post was written by Ted on December 21, 2007
-->Microsoft Security Advisory (925143): Adobe Security Bulletin: APSB06-11 Flash Player Update to Address Security Vulnerabilities – 11/14/2006,Revision Note: Advisory updated to reflect publication of security bulletin. Advisory Summary:Microsoft has completed the investigation of security vulnerabilities in Macromedia Flash Player from Adobe, a third party software application that also was redistributed with Windows XP Service Pack 2 and Windows XP Professional x64 Edition. We have issued MS06-069 to address these issues. For more information about these issues, including download links for an available security update, please review MS06-069. This bulletin is for customers using Macromedia Flash Player version 6 from Adobe. The vulnerabilities addressed are the Macromedia Flash Player Vulnerabilities – CVE-2006-3014, CVE-2006-3311, CVE-2006-3587, CVE-2006-3588, and CVE-2006-4640. Customers that have followed the guidance in Adobe Security Bulletin APSB06-11, issued September 12, 2006, are not at risk from these vulnerabilities.
Tags: Microsoft Security AdvisoryPosted under Microsoft Security Alerts
This post was written by Ted on December 21, 2007
-->Microsoft Security Advisory (917021): Description of the Wi-Fi Protected Access 2 support for Wireless Group Policy in Windows XP Service Pack 2 – 10/17/2006,Revision Note: Advisory Published. Advisory Summary:Microsoft is releasing this security advisory to inform customers about an update that enables Wi-Fi Protected Access 2 (WPA2) support for Wireless network Group Policy settings in Windows XP Service Pack 2. This update is being released to provide parity between Windows XP Service Pack 2 (before a broad release vehicle, like a service pack, is released) and the upcoming release of Windows Server 2003 Service Pack 2. With this update, customers can create Wireless network Group Policy settings to simultaneously manage WPA2 on systems running Windows XP Service Pack 2 and for any versions of Windows targeted by the upcoming Windows Server 2003 Service Pack 2. Also included in this update are Wireless client behavior changes for non-broadcast and ad-hoc networks. These defense-in-depth changes are intended to help prevent systems from connecting to networks other than those a user intends to connect to. The reason these defense-in-depth changes are included in this update in addition to the WPA2 support for Wireless network Group Policy is to provide parity between the two Windows versions. This makes it possible to manage WPA2 settings for wireless clients on different Windows versions using the same Wireless Group Policy. These defense-in-depth changes will be included in Windows 2003 Service Pack 2 as part of the same WPA2 support for Wireless network Group Policy settings. For more information about the upcoming Windows 2003 Service Pack 2 see the Windows Service Pack Road Map. The broad release vehicle is still considered to be a service pack for Windows XP for the defense-in-depth changes included in update 917021.
Tags: Microsoft Security AdvisoryPosted under Microsoft Security Alerts
This post was written by Ted on December 21, 2007
-->