Microsoft Security Bulletin Summary for February 14, 2006
Issued: February 14, 2006
Version Number: 1.0
Security patches defined by Microsoft as “critical” or “important”
MUST be applied within 10 business days of notification. Should there
be active exploits, the time will be adjusted and users will be
informed appropriately. Hosts unpatched after the defined time are
subject to scanning and removal from the EECS network as per campus IT security policies.
Patching is sometimes dependent on the service pack level of the
Microsoft OS, and installed applications, please read requirements
carefully.
Critical Security Bulletins
MS06-004—Cumulative Security Update for Internet Explorer (910620)
Impact: Remote Code Execution
Affected Software:
- Windows 2000 Service Pack 4
MS06-005—Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565)
Impact: Remote Code Execution
Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows Server 2003
Important Security Bulletins
MS06-006—Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution
(911564)
Impact: Remote Code Execution
Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 x64 Edition
MS06-007—Vulnerability in TCP/IP Could Allow Denial of Service
(913446)
Impact: Remote Denial of Service
Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
MS06-008—Vulnerability in Web Client Service Could Allow Remote
Code Execution (911927)
Impact: Remote Code Execution
Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
MS06-009—Vulnerability in the Korean Input Method Editor Could
Allow Elevation of Privilege (901190)
Impact: Elevation of Privilege
Affected Software:
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Microsoft Office 2003 Service Pack 1
- Microsoft Office 2003 Service Pack 2
- Microsoft Office 2003 Multilingual User Interface Packs
- Microsoft Office Visio 2003 Multilingual User Interface Packs
- Microsoft Office Project 2003 Multilingual User Interface Packs
- Microsoft Office 2003 Proofing Tools
- Microsoft Office Visio 2003
- Microsoft Office OneNote 2003
- Microsoft Office Project 2000
MS06-010—Vulnerability in PowerPoint 2000 Could Allow Information Disclosure (889167)
Impact: Information Disclosure
Affected Software:
- Microsoft Office PowerPoint 2000