Vendor Security Alerts

Vulnerability in DNS Resolution Could Allow Remote Code Execution (KB920683)

Cumulative Security Update for Internet Explorer (KB918899) (8/14/2006)
Vulnerability in DNS Resolution Could Allow Remote Code Execution (KB920683) (8/14/2006)
Vulnerability in Microsoft Windows Could Allow Remote Code Execution (KB920214) (8/14/2006)
Vulnerability in Server Service Could Allow Remote Code Execution (KB921883) (8/13/2006)

Issued by Microsoft on Monday, August 14, 2006

Executive Summary: This update resolves several newly discovered, privately reported, vulnerabilities. An attacker who successfully exploited the most severe of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Affected Software: • Microsoft Windows 2000 Service Pack 4 • Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 • Microsoft Windows XP Professional x64 Edition • Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 • Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems • Microsoft Windows Server 2003 x64 Edition Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical Restart Requirement: You must restart your system after you apply this security update. Update Can Be Uninstalled: Yes. To remove this security update, use the Add or Remove Programs tool in Control Panel. System administrators can also use the Spuninst.exe utility to remove this security update.

Vendor Security Alerts

Vulnerability in DNS Resolution Could Allow Remote Code Execution (KB920683)

Issued by Microsoft on Monday, August 14, 2006

For a detailed descrition from Microsoft:

View the appropriate security fix:

Download the appropriate patch(es) for this vulnerability:

Madison

Brookfield

Appleton