Copyright Microsoft Corporation 2005Microsoft Security Bulletinshttp://www.microsoft.com/technet/security/current.aspxen-ushttp://www.microsoft.com/technet/security/current.aspxhttp://www.microsoft.com/library/toolbar/3.0/images/banners/TechNetB_masthead_ltr.gif42225Tue, 10 Oct 2006 19:56:10 GMTBulletin Severity Rating:Moderate - This update resolves a newly discovered, privately reported, vulnerability. The vulnerability is documented in the Vulnerability Details section of this bulletin. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. However, significant user interaction is required to exploit this vulnerability. Customers should consider applying the security updatehttp://www.microsoft.com/technet/security/bulletin/ms06-065.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-065.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Important - A vulnerability exists in the IPv6 Implementation of TCP-IP that could allow an attacker to cause a system to stop responding.http://www.microsoft.com/technet/security/bulletin/ms06-064.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-064.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Important - A vulnerability exists in the Server service that could allow an attacker to cause a system to stop responding.http://www.microsoft.com/technet/security/bulletin/ms06-063.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-063.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves several newly discovered, privately reported vulnerabilities. Each vulnerability is documented in this bulletin in its own "Vulnerability Details" section. When using vulnerable versions of Office, if a user were logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of the system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately.http://www.microsoft.com/technet/security/bulletin/ms06-062.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-062.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update addresses several newly discovered, privately reported and public vulnerabilities. Each vulnerability is documented in this bulletin in its own "Vulnerability Details" section. When using vulnerable versions of Office, if a user were logged onhttp://www.microsoft.com/technet/security/bulletin/ms06-060.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-060.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves several newly discovered, privately reported and public vulnerabilities. Each vulnerability is documented in this bulletin in its own "Vulnerability Details" section. When using vulnerable versions of Office, if a user were logged onhttp://www.microsoft.com/technet/security/bulletin/ms06-059.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-059.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves several newly discovered, privately and publicly reported vulnerabilities. Each vulnerability is documented in this bulletin in its own "Vulnerability Details" section. When using vulnerable versions of Office, if a user were logged ohttp://www.microsoft.com/technet/security/bulletin/ms06-058.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-058.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves a newly discovered, publicly reported vulnerability. The vulnerability is documented in the Vulnerability Details section of this bulletin. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately.http://www.microsoft.com/technet/security/bulletin/ms06-057.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-057.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Moderate - This update resolves a newly discovered, privately reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin. The vulnerability could allow an attacker to gain unauthorized access to information. Note that this vulnerability would not allow an attacker to execute code to elevate their user rights directly, but it could be used to acquire information that could be used to further compromise the affected system. We recommend that customers consider applying the security update.http://www.microsoft.com/technet/security/bulletin/ms06-056.mspx?pubDate=2006-10-10http://www.microsoft.com/technet/security/bulletin/ms06-056.mspxTue, 10 Oct 2006 08:00:00 GMTBulletin Severity Rating:Critical - A remote code execution vulnerability exists in the Vector Markup Language (VML) implementation in Microsoft Windows.http://www.microsoft.com/technet/security/bulletin/ms06-055.mspx?pubDate=2006-09-26http://www.microsoft.com/technet/security/bulletin/ms06-055.mspxTue, 26 Sep 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves a newly discovered, privately reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediatelyhttp://www.microsoft.com/technet/security/bulletin/ms06-054.mspx?pubDate=2006-09-12http://www.microsoft.com/technet/security/bulletin/ms06-054.mspxTue, 12 Sep 2006 08:00:00 GMTBulletin Severity Rating:Moderate - This update resolves a newly discovered, privately reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin. The vulnerability could allow an attacker to gain unauthorized access to information. Note that this vulnerability would not allow an attacker to execute code to elevate their user rights directly, but it could be used to produce useful information that could be used to further compromise the affected system. We recommend that customers consider applying the security update.http://www.microsoft.com/technet/security/bulletin/ms06-053.mspx?pubDate=2006-09-12http://www.microsoft.com/technet/security/bulletin/ms06-053.mspxTue, 12 Sep 2006 08:00:00 GMTBulletin Severity Rating: - Vulnerability in Reliable Multicast Program Could Result in Remote Code Execution (919007)http://www.microsoft.com/technet/security/bulletin/ms06-052.mspx?pubDate=2006-09-12http://www.microsoft.com/technet/security/bulletin/ms06-052.mspxTue, 12 Sep 2006 08:00:00 GMTBulletin Severity Rating:Critical - Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422)http://www.microsoft.com/technet/security/bulletin/ms06-051.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-051.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Important - This update resolves two newly discovered vulnerabilities. Each vulnerability is documented in its own subsection in the "Vulnerability Details" section of this bulletin.http://www.microsoft.com/technet/security/bulletin/ms06-050.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-050.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Important - Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)http://www.microsoft.com/technet/security/bulletin/ms06-049.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-049.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves two newly discovered, privately reported and public vulnerabilities. Each vulnerability is documented in this bulletin in its own "Vulnerability Details" section. When using vulnerable versions of Office, if a user were logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of the client workstation. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately.http://www.microsoft.com/technet/security/bulletin/ms06-048.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-048.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves a newly discovered, privately reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin. On vulnerable versions of Office or Microsoft Visual Basic for Applications, if a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately.http://www.microsoft.com/technet/security/bulletin/ms06-047.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-047.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves a newly discovered, privately reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin. We recommend that customers apply the update immediatelyhttp://www.microsoft.com/technet/security/bulletin/ms06-046.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-046.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves a newly-discovered, privately-reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin. An attacker who successfully exploited the most severe of these vulnerabilities could takehttp://www.microsoft.com/technet/security/bulletin/ms06-045.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-045.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008)http://www.microsoft.com/technet/security/bulletin/ms06-044.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-044.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves a newly-discovered, privately-reported vulnerability. The vulnerability is documented in the "Vulnerability Details" section of this bulletin An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately.http://www.microsoft.com/technet/security/bulletin/ms06-043.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-043.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - This update resolves several newly discovered, publicly and privately reported vulnerabilities. Each vulnerability is documented in its own Vulnerability Details section of this bulletin. If a user is logged on with administrative user rights, an attacker who successfully exploited the most severe of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. We recommend that customers apply the update immediately.http://www.microsoft.com/technet/security/bulletin/ms06-042.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-042.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - Vulnerabilities in DNS Resolution Could Allow Remote Code Execution (920683)http://www.microsoft.com/technet/security/bulletin/ms06-041.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-041.mspxTue, 08 Aug 2006 08:00:00 GMTBulletin Severity Rating:Critical - Vulnerability in Server Service Could Allow Remote Code Execution (921883)http://www.microsoft.com/technet/security/bulletin/ms06-040.mspx?pubDate=2006-08-08http://www.microsoft.com/technet/security/bulletin/ms06-040.mspxTue, 08 Aug 2006 08:00:00 GMT