![]() Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 Windows XP Professional 圆4 Edition and Windows XP Professional 圆4 Edition Service Pack 2 Microsoft Internet Explorer 6 Service Pack 1 Microsoft Internet Explorer 5.01 Service Pack 4 Internet Explorer 5.01 and Internet Explorer 6 Service Pack 1 To determine the support life cycle for your software version or edition, visit Microsoft Support Lifecycle. Other versions or editions are either past their support life cycle or are not affected. ![]() The software listed here has been tested to determine which versions or editions are affected. The article also documents recommended solutions for these issues. Microsoft Knowledge Base Article 933566 documents the currently known issues that customers may experience when they install this security update. Microsoft recommends that customers apply the update immediately. For more information about the vulnerabilities, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry under the next section, Vulnerability Information. This security update addresses two vulnerabilities by setting the kill bit for COM objects and for the rest, by modifying the way that Internet Explorer handles calls, error conditions, and special features such as Language Pack Installation and Speech Control. ![]() For more information, see the subsection, Affected and Non-Affected Software, in this section. For Internet Explorer 7 for supported versions and editions of Windows Server 2003, this update is rated moderate. This is a critical security update for supported releases of Internet Explorer 5.01 and Internet Explorer 6, and most supported releases of Internet Explorer 7. For the spoofing case, exploitation requires user interaction. In all remote code execution cases, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. One vulnerability could allow spoofing, and also involves a specially crafted Web page. All but one of these vulnerabilities could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. This critical security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability. Version: 1.2 General Information Executive Summary Security Bulletin Microsoft Security Bulletin MS07-033 - Critical Cumulative Security Update for Internet Explorer (933566)
3 Comments
|
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |