Original URL: http://www.channelregister.co.uk/2005/07/13/ms_july_patch_batch/
Three critical fixes in MS July security update
Get those peril-sensitive sunglasses on standby
Posted in Software & Security, 13th July 2005 10:35 GMT
Free whitepaper – Solid State Drives and High-Speed Memory
It's that time of the month again. Microsoft's patch bandwagon [1] rolled into town yesterday loaded with three critical updates.
The updates aim to fix a vulnerability [2] found in the Color Management Module of Windows that could allow remote code execution (MS05-036 [3]) and a security bug in JView Profiler (MS05-037 [4]) that might be used to crash Internet Explorer and inject hostile code. Last, but not least, is a vulnerability [5] in several Microsoft Word versions involving font parsing that could also be used as a conduit to smuggle malicious code onto vulnerable systems (MS05-035 [6]). US CERT has produced an overview of Microsoft's three critical security fixes here [7]. ®
Related stories
MS issues final software update for Win2K [8]
10 vulns - three critical - in MS patch batch [9]
Microsoft issues solitary patch [10]
Microsoft fortifies monthly patches with interim advisories [11]
SANS revises Top 20 security vulns list [12]
Links
- http://www.microsoft.com/technet/security/bulletin/ms05-jul.mspx
- http://secunia.com/advisories/16004/
- http://www.microsoft.com/technet/security/bulletin/ms05-036.mspx
- http://www.microsoft.com/technet/security/bulletin/ms05-037.mspx
- http://secunia.com/advisories/15998/
- http://www.microsoft.com/technet/security/bulletin/ms05-035.mspx
- http://www.us-cert.gov/cas/techalerts/TA05-193A.html
- http://www.theregister.co.uk/2005/06/29/win2k_final_update/
- http://www.theregister.co.uk/2005/06/15/ms_june_patch_batch/
- http://www.theregister.co.uk/2005/05/11/ms_patch_may/
- http://www.theregister.co.uk/2005/05/10/ms_interim_security_advisories/
- http://www.theregister.co.uk/2005/05/03/sans_top_20/