Title: Microsoft Security Bulletin Summary for June, 2005
Issued: June 14, 2005
Version Number: 1.0
Bulletin: http://go.microsoft.com/fwlink/?LinkId=49236
********************************************************************
Summary:
========
This summary contains information about all security updates
released this month. It is broken down by security bulletin severity.
Critical Security Bulletins
===========================
MS05-025 - Cumulative Security Update for Internet Explorer
(883939)
- Affected Software:
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Review the FAQ section of bulletin MS05-O25 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-026 - Vulnerability in HTML Help Could Allow Remote Code
Execution (896358-)
- Affected Software:
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Review the FAQ section of bulletin MS05-O26 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-027 - Vulnerability in SMB Could Allow Remote Code
Execution (896422)
- Affected Software:
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Impact: Remote Code Execution
- Version Number: 1.0
Important Security Bulletins
============================
MS05-028 - Vulnerability in Web Client Service May Allow
Elevation of Privilege (896426)
- Affected Software:
- Windows XP Service Pack 1
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-029 - Vulnerability in Outlook Web Access for Exchange
Server 5.5 Could Allow Cross-Site Scripting
Attacks (895179)
- Affected Software:
- Exchange Server 5.5 Service Pack 4
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-030 - Cumulative Security Update for Outlook Express (897715)
- Affected Software:
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-031 - Vulnerability in Microsoft Windows Interactive Training
Could Allow Remote Code Execution (898458-)
- Affected Software:
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Review the FAQ section of bulletin MS05-O31 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)
- Impact: Remote Code Execution
- Version Number: 1.0
Moderate Security Bulletins
===========================
MS05-032 - Vulnerability in Microsoft Agent Could Allow
Spoofing (890046)
- Affected Software:
- Windows 2000 Service Pack 3
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Review the FAQ section of bulletin MS05-O32 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)
- Impact: Spoofing
- Version Number: 1.0
MS05-033 - Vulnerability in Telnet Client Could Allow Information
Disclosure (896428-)
- Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP 64-Bit Edition Version 2003 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Services for UNIX 3.5
- Windows Services for UNIX 3.0
- Windows Services for UNIX 2.2
- Impact: Information Disclosure
- Version Number: 1.0
MS05-034 - Vulnerability in Microsoft ISA Server Could allow
Information Disclosure (899753)
- Affected Software:
- Microsoft Internet Security and Acceleration Server 2000
Service Pack 2
- Note The following software programs include ISA Server 2000.
Customers who use these software programs should install
the provided ISA Server 2000 security update:
- Microsoft Small Business Server 2000
- Microsoft Small Business Server 2003 Premium Edition
- Impact: Elevation of Privilege
- Version Number: 1.0
Update Availability:
===================
Updates are available to address these issues.
For additional information, including Technical Details,
Workarounds, answers to Frequently Asked Questions,
and Update Deployment Information please read
the Microsoft Security Bulletin Summary for this
month at: http://go.microsoft.com/fwlink/?LinkId=49236
|