Microsoft Security Bulletin Summary for July, 2006

Discussion in 'Software' started by NICK ADSL UK, Jul 11, 2006.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK MajorGeeks Forum Administrator Staff Member

    Microsoft Security Bulletin Summary for July, 2006
    Published: July 11, 2006 | Updated: July 11, 2006


    Bulletin Summary:
    http://www.microsoft.com/technet/security/Bulletin/ms06-Jul.mspx


    Critical (5)

    Bulletin Identifier Microsoft Security Bulletin MS06-035
    Bulletin Title
    Vulnerability in Server Service Could Allow Remote Code Execution (917159)
    Executive Summary
    This update resolves two vulnerabilities in the Server service, the most serious of which could allow remote code execution
    http://www.microsoft.com/technet/security/Bulletin/ms06-035.mspx

    Bulletin Identifier Microsoft Security Bulletin MS06-036
    Bulletin Title
    Vulnerability in DHCP Client Service Could Allow Remote Code Execution (914388)
    Executive Summary
    This update resolves a vulnerability in the DHCP Client service that could allow remote code execution
    http://www.microsoft.com/technet/security/Bulletin/ms06-036.mspx

    Bulletin Identifier Microsoft Security Bulletin MS06-037
    Bulletin Title
    Vulnerability in Microsoft Excel Could Allow Remote Code Execution (917285)
    Executive Summary
    This update resolves several vulnerabilities in Excel, the most serious of which could allow remote code execution.
    http://www.microsoft.com/technet/security/Bulletin/ms06-037.mspx

    Bulletin Identifier Microsoft Security Bulletin MS06-038
    Bulletin Title
    Vulnerability in Microsoft Office Could Allow Remote Code Execution (915384)
    Executive Summary
    This update resolves two vulnerabilities in Office, the most serious of which could allow remote code execution.
    http://www.microsoft.com/technet/security/Bulletin/ms06-038.mspx

    Bulletin Identifier Microsoft Security Bulletin MS06-039
    Bulletin Title
    Vulnerability in Microsoft Office Could Allow Remote Code Execution (915384)
    Executive Summary
    This update resolves two vulnerabilities in Office, the most serious of which could allow remote code execution.
    http://www.microsoft.com/technet/security/Bulletin/ms06-038.mspx


    Important (1)
    Bulletin Identifier Microsoft Security Bulletin MS06-033
    Bulletin Title
    Vulnerability in ASP.NET Could Allow Information Disclosure (917283)
    Executive Summary
    This vulnerability could allow an attacker to bypass ASP.Net security and gain unauthorized access to objects in the Application folder explicitly by name. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to produce useful information that could be used to try to further compromise the affected system.
    http://www.microsoft.com/technet/security/Bulletin/ms06-033.mspx


    Moderate Bulletins:

    Bulletin Identifier Microsoft Security Bulletin MS06-034
    Bulletin Title
    Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (917537)
    Executive Summary
    This vulnerability could allow an attacker to take complete control of an affected system. Note that the attacker must have valid logon credentials, but if a server has been purposely configured to allow users, either anonymous or authenticated, to upload web content such as .ASP pages to web sites, the server could be exploited by this vulnerability.
    http://www.microsoft.com/technet/security/Bulletin/ms06-034.mspx

    This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

    If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338 International customers should contact their local subsidiary.
     
  2. NICK ADSL UK

    NICK ADSL UK MajorGeeks Forum Administrator Staff Member

    The updated version of Windows Malicious Software Removal Tool is also available. You may download from Microsoft Download center.

    File Name: Windows-KB890830-V1.18.exe
    Version: 1.18
    Knowledge Base (KB) Articles: KB890830
    Date Published: 7/11/2006
    Language: English


    Please review KB890830 for the list of malicious software that the current version of the tool is capable of removing as well as usage instructions. Also, please be aware that this tool reports anonymous information back to Microsoft in the event that an infection is found or an error is encountered. The above KB article contains information on how to disable this functionality and what specific information is sent to Microsoft.
     
Thread Status:
Not open for further replies.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds