IRIS

Instructional & Research Information Systems

EECS

Microsoft Security Bulletin Summary for April 2006

by 

********************************************************************
Title: Microsoft Security Bulletin Summary for April 2006
Issued: April 11, 2006
Version Number: 1.0
Bulletin: http://go.microsoft.com/fwlink/?LinkId=64680
********************************************************************



Summary:
========
This advisory contains information about all security updates
released this month. It is broken down by security bulletin severity.



Critical Security Bulletins
===========================



MS06-013 - Cumulative Security Update for Internet Explorer (912812)



- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition



- Review the FAQ section of bulletin MS06-O15 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)



- Impact: Remote Code Execution
- Version Number: 1.0



MS06-014 - Vulnerability in the Microsoft Data Access Components
(MDAC) Function Could Allow Code Execution (911562)



- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition



- Review the FAQ section of bulletin MS06-O15 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)



- Impact: Remote Code Execution
- Version Number: 1.0



MS06-015 - Cumulative Security Update for Internet Explorer (912812)



- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition



- Review the FAQ section of bulletin MS06-O15 for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)



- Impact: Remote Code Execution
- Version Number: 1.0



Important Security Bulletins
============================



MS06-016 - Cumulative Security Update for Outlook Express (911567)



- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition



- Review the FAQ section of bulletin MS0X-OYZ for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)



- Impact: Remote Code Execution
- Version Number: 1.0



Moderate Security Bulletins
===========================



MS06-017 - Vulnerability in Microsoft FrontPage Server Extensions
Could Allow Cross-Site Scripting (917627)



- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 1
- Windows XP Service Pack 2
- Windows XP 64-Bit Edition Service Pack 1 (Itanium)
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Microsoft SharePoint Team Service






- Review the FAQ section of bulletin MS0X-OYZ for information
about these operating systems:
- Windows 98
- Windows 98 Second Edition (SE)
- Windows Millennium Edition (ME)



- Impact: Remote Code Execution
- Version Number: 1.0