Microsoft Security Patches: June 2005

**MIG-31** · Jun 14, 2005, 10:07 PM

Microsoft has just posted their security patch builletin for June. As usual all required patches for your PC can be found on Windows Update. Here's a brief summary of the "critical" and "important" level vulnerabilities. (Read more for "moderate" level patches)

MS05-025: Cumulative Security Update for Internet Explorer (883939) [color=red]Critical[/color]
Vulnerabilities exist in Internet Explorer, the most sever of these could allow an attacker to take complete control of an affected system.

MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution (896358) [color=red]Critical[/color]
A vulnerability exists in HTML Help that could allow an attacker to take complete control of an affected system.

MS05-027: Vulnerability in SMB Could Allow Remote Code Execution (896422) [color=red]Critical[/color]
A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. An attacker needs to authenticate to be able to exploit this vulnerability.

MS05-028: Vulnerability in Web Client Service May Allow Remote Code Execution (896426) [color=red]Important[/color]
A vulnerability exists in the Windows Web Client Service that could allow an attacker to take complete control of an affected system.

MS05-029: Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179) [color=red]Important[/color]
A cross-site scripting vulnerability exists in Outlook Web Access for Microsoft Exchange that could allow an attacker to run a malicious script in Outlook Web Access.

MS05-030: Cumulative Security Update for Outlook Express (897715) [color=red]Important[/color]
A vulnerability exists in Outlook Express that could allow an attacker to take complete control of an affected system.

MS05-031: Vulnerability in Microsoft Windows Interactive Training Could Allow Remote Code Execution (898458) [color=red]Important[/color]
A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. Microsoft Windows Interactive Training is not installed by default.
_______________
Source: Neowin

Discuss Here

Jun 14, 2005, 10:07 PM	#1
MIG-31 HardwareHeaven News Mod Join Date: Dec 2002 Location: Nottingham,UK Posts: 56,857 Rep Power: 471 System Specs	Microsoft Security Patches: June 2005 Microsoft has just posted their security patch builletin for June. As usual all required patches for your PC can be found on Windows Update. Here's a brief summary of the "critical" and "important" level vulnerabilities. (Read more for "moderate" level patches) MS05-025: Cumulative Security Update for Internet Explorer (883939) [color=red]Critical[/color] Vulnerabilities exist in Internet Explorer, the most sever of these could allow an attacker to take complete control of an affected system. MS05-026: Vulnerability in HTML Help Could Allow Remote Code Execution (896358) [color=red]Critical[/color] A vulnerability exists in HTML Help that could allow an attacker to take complete control of an affected system. MS05-027: Vulnerability in SMB Could Allow Remote Code Execution (896422) [color=red]Critical[/color] A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. An attacker needs to authenticate to be able to exploit this vulnerability. MS05-028: Vulnerability in Web Client Service May Allow Remote Code Execution (896426) [color=red]Important[/color] A vulnerability exists in the Windows Web Client Service that could allow an attacker to take complete control of an affected system. MS05-029: Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179) [color=red]Important[/color] A cross-site scripting vulnerability exists in Outlook Web Access for Microsoft Exchange that could allow an attacker to run a malicious script in Outlook Web Access. MS05-030: Cumulative Security Update for Outlook Express (897715) [color=red]Important[/color] A vulnerability exists in Outlook Express that could allow an attacker to take complete control of an affected system. MS05-031: Vulnerability in Microsoft Windows Interactive Training Could Allow Remote Code Execution (898458) [color=red]Important[/color] A vulnerability exists in Windows that could allow an attacker to take complete control of an affected system. Microsoft Windows Interactive Training is not installed by default. _______________ Source: Neowin Discuss Here __________________ Please Post Your News Submissions Here Last edited by MIG-31; Jun 15, 2005 at 04:09 PM.