UPDATE TUESDAY!!

richardj · Post by **richardj** » Wed Jun 14, 2006 11:34 pm

********************************************************************
Title: Microsoft Security Bulletin Summary for June 2006
Issued: June 13, 2006
Version Number: 1.0
Bulletin: http://go.microsoft.com/fwlink/?LinkId=68324
********************************************************************
On Tuesday Microsoft released a dozen new security bulletins, eight of which are rated critical on the company's security rating scale. Included in the releases are critical fixes for Internet Explorer and a patch for the zero-day vulnerability in Microsoft Word.

Following is a listing of yesterday's security bulletins:

MS06-021: Cumulative Security Update for Internet Explorer (916281)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-021.mspx

MS06-022: Vulnerability in ART Image Rendering Could Allow Remote Code Execution (918439)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-022.mspx

MS06-023: Vulnerability in Microsoft JScript Could Allow Remote Code Execution (917344)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-023.mspx

MS06-024: Vulnerability in Windows Media Player Could Allow Remote Code Execution (917734)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-024.mspx

MS06-025: Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-025.mspx

MS06-026: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-026.mspx

MS06-027: Vulnerability in Microsoft Word Could Allow Remote Code Execution (917336)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-027.mspx

MS06-028: Vulnerability in Microsoft PowerPoint Could Allow Remote Code Execution (916768)
Severity: Critical
URL: http://www.microsoft.com/technet/security/...n/MS06-028.mspx

MS06-029: Vulnerability in Microsoft Exchange Server Running Outlook Web Access Could Allow Script Injection (912442)
Severity: Important
URL: http://www.microsoft.com/technet/security/...n/MS06-029.mspx

MS06-030: Vulnerability in Server Message Block Could Allow Elevation of Privilege (914389)
Severity: Important
URL: http://www.microsoft.com/technet/security/...n/MS06-030.mspx

MS06-031: Vulnerability in RPC Mutual Authentication Could Allow Spoofing (917736)
Severity: Moderate
URL: http://www.microsoft.com/technet/security/...n/MS06-031.mspx

MS06-032: Vulnerability in TCP/IP Could Allow Remote Code Execution (917953)
Severity: Important
URL: http://www.microsoft.com/technet/security/...n/MS06-032.mspx

Re-Release:
MS06-011: Permissive Windows Services DACLs Could Allow Elevation of Privilege (914798)
URL: http://www.microsoft.com/technet/security/...n/MS06-011.mspx

MSRT-001: Malicious Software Removal Tool (June Update)
http://www.microsoft.com/security/malwareremove/default.mspx

Additional information about these new security bulletins can be found on Microsoft's TechNet Web site at: http://www.microsoft.com/technet/security/...n/ms06-jun.mspx

Archived topic from Iceteks, old topic ID:4385, old post ID:35328

Red Squirrel · Post by **Red Squirrel** » Thu Jun 15, 2006 11:21 am

Seems all the updates keep fixing the same old problems, do they even fix them? LOL Remote code execution, escalation of priviliges... go ms!

Archived topic from Iceteks, old topic ID:4385, old post ID:35332

Wren · Post by **Wren** » Thu Jun 15, 2006 7:52 pm

Since we have to run our own numerous security programs, do we really need all these "fixes"?

If we keep updating, won't XP end up being as big as Vista?

Archived topic from Iceteks, old topic ID:4385, old post ID:35335

Red Squirrel · Post by **Red Squirrel** » Thu Jun 15, 2006 9:27 pm

Well to be honest, I dont even bother with updates. Some updates can break stuff, while some can fix stuff, so its a double edged sword. With basic protection such as a NAT firewall, virus scanner, and common sense, a PC, even not up to date according to MS should not suffer from any security related issues. Common sense includes stuff like not using IE, or falling for phishing attacks, etc. I install the latest service pack and that's as far as I go. Now if I were to put my PC directly online, yes it would be a danger, but so is putting a fully updated PC, since eventually some other security hole will be discovered and may be exploited befure an update is made.

And the fact that I use win2k may even put me at an advantage since most flaws are targeted at XP. (though some affect core components that both XP and 2k have)

Archived topic from Iceteks, old topic ID:4385, old post ID:35336