New Windows vulnerabilities rounded up in Microsoft's February security update

@ 2005/02/09
A slew of bulletins has been released by Microsoft in its February security update.
There are twelve updates this month - ranging from a vulnerability in SharePoint Services, which could allow cross-site scripting, to a cumulative security update for Internet Explorer - and they span Windows and Office Systems.

We'll begin with the Windows bulletins deemed 'critical', which mainly involve vulnerabilities that could allow an attacker to execute code on a Windows machine. Once an attacker has such access, of course, the integrity of a system can be massively compromised.

Bulletin MS05-010 relates to a Vulnerability in the License Logging service, MS05-011 concerns Server Message Block (SMB) processing, MS05-012 is a vulnerability in OLE and COM that could, again, allow remote code execution, MS05-013 involves a vulnerability in the DHTML editing component of an ActiveX control and, finally, MS05-015 is a vulnerability in the Hyperlink Object Library that could allow remote code execution.

Bulletin MS05-008 also involves code execution - via a vulnerability in the Windows shell - but this is ranked as 'Important'.

Whereas a 'Critical' vulnerability is one whose 'exploitation could allow the propagation of an Internet worm without user action', an 'Important' one 'could result in compromise of the confidentiality, integrity, or availability of users data, or of the integrity or availability of processing resources'.

Bulletin MS05-009 is also deemed of Critical status. A vulnerability in processing PNG images could lead to buffer overruns. MS05-014, meanwhile, is a Critical cumulative security update for Internet Explorer

For completeness, bulletins MS05-004, MS05-007 are deemed Important and relate to validation of ASP.NET and an information disclose vulnerability.

Finally, MS05-006 relates to a vulnerability in Windows SharePoint Services and SharePoint Team Services that could allow cross-site scripting and spoofing attacks. This is rated as moderate, i.e. exploitability is mitigated to a significant degree by default settings or the difficulty of exploitation.

Moving away from Windows updates, there are also two February bulletins relating to Office systems.

As well as the MS05-006 vulnerability in Windows SharePoint Services, there is MS05-004, which is an ASP.NET path validation vulnerability. This is ranked as 'Important'.

For full details of which particular versions of Windows are affected by each bulletin, see http://www.microsoft.com/security/bu..._windows.mspx. And to get all the updates visit windowsupdate.microsoft.com/.

No comments available.

 

reply