PDA

View Full Version : Microsoft release 5 Patches


Nick VR4
10-04-2007, 07:25 PM
MS07-018 (http://www.microsoft.com/technet/security/Bulletin/MS07-018.mspx) Remote code execution and XSS scripting
MCMS (Microsoft Content Management Server)

CVE-2007-0938 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0938)
CVE-2007-0939 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0939)
KB 925939 (http://support.microsoft.com/kb/925939)
No known exploits Critical Important Critical
MS07-019 (http://www.microsoft.com/technet/security/Bulletin/MS07-019.mspx) Memory corruption leading to remote code execution UPnP (Universal Plug and Play)

CVE-2007-1204 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1204)
KB 931261 (http://support.microsoft.com/kb/931261)
No known exploits Critical Critical Critical MS07-020 (http://www.microsoft.com/technet/security/Bulletin/MS07-020.mspx) URL parsing error leads to remote code execution Microsoft Agent

CVE-2007-1205 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1205)
KB 932168 (http://support.microsoft.com/kb/932168)
No known exploits Critical Critical Important
MS07-021 (http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx) Mulitple vulnerabilities leading to remote Code execution, privilege escalation and DoS
CSRSS (Windows Client/Server Run-time Subsystem)

CVE-2006-6696 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6696)
CVE-2007-1209 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1209)
CVE-2006-6797 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6797)
KB 930178 (http://support.microsoft.com/kb/930178)
Known exploits since Dec 15th, 2006.

MSRC blog (http://blogs.technet.com/msrc/archive/2006/12/22/new-report-of-a-windows-vulnerability.aspx) Critical PATCH NOW Critical
MS07-022 (http://www.microsoft.com/technet/security/Bulletin/MS07-022.mspx) Buffer overflow leading to privilege escalation Windows Kernel

CVE-2007-1206 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1206)
KB 931784 (http://support.microsoft.com/kb/931784)
No known exploits Important Important Less Urgent