********************************************************************
Title: Microsoft Security Bulletin Summary for October 2005
Issued: October 11, 2005
Version Number: 1.0
Bulletin: http://go.microsoft.com/fwlink/?LinkId=54789
********************************************************************
Security patches defined by Microsoft as “critical” or “important”
MUST be applied within 10 business days of notification. Should there
be active exploits, the time will be adjusted and users will be
informed appropriately. Hosts unpatched after the defined time are
subject to scanning and removal from the EECS network as per campus
IT security policies (http://socrates.berkeley.edu:2002/MinStds/).
Patching is sometimes dependent on the service pack level of the
Microsoft OS, and installed applications, please read requirements
carefully.
Critical Security Bulletins
===========================
MS05-050 – Vulnerability in DirectShow Could Allow Remote Code
Execution (904706)
Impact: Remote Code Execution
Affected Software:
MS05-051 – Vulnerabilities in MSDTC and COM+ Could Allow Remote
Code Execution (902400)
Impact: Remote Code Execution
Affected Software:
MS05-052 – Cumulative Security Update for Internet Explorer (896688)
Impact: Remote Code Execution
Affected Software:
Windows 2000 Service Pack 4
Important Security Bulletins
============================
MS05-046 – Vulnerability in the Client Services for Netware Could
Allow Remote Code Execution (899589)
Impact: Remote Code Execution
Affected Software:
MS05-047 – Vulnerability in Plug and Play Could Allow Remote Code
Execution and Local Elevation of Privilege (905749)
Impact: Remote Code Execution
Affected Software:
MS05-048 – Vulnerability in the Microsoft Collaboration Objects
Could Allow Remote Code Execution (907245)
Impact: Remote Code Execution
Affected Software:
2000 Post-Service Pack 3 Update Rollup of August 2004
MS05-049 – Vulnerabilities in Windows Shell Could Allow Remote Code
Execution (900725)
Impact: Remote Code Execution
Affected Software:
Moderate Security Bulletins
===========================
MS05-044 – Vulnerability in the Windows FTP Client Could Allow File
Transfer Location and Tampering (905495)
Impact: Remote Code Execution
Affected Software:
MS05-045 – Vulnerability in Network Connection Manager Could Allow
Denial of Service (905414)
Impact: Remote Code Execution
Affected Software:
[Read more…] about Microsoft Releases Security Patches for the Month