*
Quick Links|Home|Worldwide
Microsoft TechNet*
|TechCenters|Downloads|TechNet Program|Subscriptions|My TechNet|Security Bulletins|Archive
Search for


Microsoft Security Bulletin Search

 
Want Less Technical Detail?
Visit the Security At Home site to find out about automatic security updates for your computer.

October Bulletin Release Read the Microsoft bulletin summary for the updates released on October 10, 2006

Webcast: Information about Microsoft October security bulletins

Read previously released Security Bulletin Summaries.

Next scheduled release: November 14, 2006

Security Bulletin Webcast Security Bulletin Webcast for November 2006
Register now for the November Security Bulletin Webcast.
Security Advisories Security Advisories
View security changes that don't require a bulletin but may still affect customers.
MSRC Blog Microsoft Security Resource Center (MSRC) Blog
MSRC offers expert commentary on bulletins and advisories.
TechNet Webcast: Inside the MSRC TechNet Webcast: Inside the MSRC
Recorded on June 30, 2005
Get in-depth information about the Microsoft security response process.

Security Bulletin RSS Feed Get Security Bulletin Notifications
Bulletin alerts are available in RSS, instant message, mobile device, or e-mail format.

Read previously released Security Bulletin Summaries

Product/
Technology:
 
Service Pack:  
Update Severity Rating:
Results may display bulletins with severity ratings different from the selected update. Read why.
Bulletin release date:     
Search by Knowledge Base article Number

Enter a Knowledge Base (KB) article number to view any security bulletins associated with it in our system.
(More information on how to use this feature is available in the Search Tool FAQ).

Knowledge base article number  (e.g. 123456):   



   Bulletins 1-526 of 526
Date Bulletin Description Affected Software Service Packs Bulletin Rating
Oct 10, 2006 Vulnerability in Windows Object Packager Could Allow Remote Execution (924496): MS06-065

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Moderate
Oct 10, 2006 Vulnerabilities in TCP/IP IPv6 Could Allow Denial of Service (922819): MS06-064

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Low
Oct 10, 2006 Vulnerability in Server Service Could Allow Denial of Service (923414): MS06-063

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Oct 10, 2006 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922581): MS06-062

Affected Software: Office 2000, Access 2000, Excel 2000, FrontPage 2000, Outlook 2000, PowerPoint 2000, Publisher 2000, Access 2002, Excel 2002, FrontPage 2002, Outlook 2002, PowerPoint 2002, Publisher 2002, Visio 2002, Word 2002, Office 2003, Access 2003, Excel 2003, Excel Viewer 2003, FrontPage 2003, InfoPath 2003, OneNote 2003, Outlook 2003, PowerPoint 2003, Publisher 2003, Visio 2003, Word 2003, Project 2002, Office 2004 for Macintosh, Office v. X for Macintosh
Office 2000 Service Pack 3, Access 2000 SP3, Excel 2000 SP3, FrontPage 2000 SP3, Outlook 2000 SP3, PowerPoint 2000 SP3, Publisher 2000 SP3, Access 2002 SP3, Excel 2002 SP3, FrontPage 2002 SP3, Outlook 2002 SP3, PowerPoint 2002 SP3, Publisher 2002 SP3, Visio 2002 SP3, Word 2002 SP3, Office 2003 SP1, Office 2003 SP2, Access 2003 SP1, Access 2003 SP2, Excel 2003 SP1, Excel 2003 SP2, Excel Viewer 2003 SP2, FrontPage 2003 SP1, FrontPage 2003 SP2, InfoPath 2003 SP1, InfoPath 2003 SP2, OneNote 2003 SP1, OneNote 2003 SP2, Outlook 2003 SP1, Outlook 2003 SP2, PowerPoint 2003 SP1, PowerPoint 2003 SP2, Publisher 2003 SP1, Publisher 2003 SP2, Visio 2003 SP1, Visio 2003 SP2, Word 2003 SP1, Word 2003 SP 2, Project 2002 SP2, Visio 2002 SP2, Office 2004 for Macintosh Gold, Office v. X for Macintosh Gold Critical
Oct 10, 2006 Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (924191): MS06-061

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Critical
Oct 10, 2006 Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (924554): MS06-060

Affected Software: Office 2000, Word 2000, Office XP, Word 2002, Office 2003, Word 2003, Word Viewer 2003, Works 2004, Works 2005, Works 2006, Office 2004 for Macintosh, Office v. X for Macintosh
Office 2000 Service Pack 3, Word 2000 SP3, Office XP SP3 , Word 2002 SP3, Office 2003 SP1, Office 2003 SP2, Word 2003 SP1, Word Viewer 2003 Gold, Works 2004 Gold, Works 2005 Gold, Works 2006 Gold, Office 2004 for Macintosh Gold, Office v. X for Macintosh Gold, Word 2003 SP 2 Critical
Oct 10, 2006 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (924164): MS06-059

Affected Software: Office 2000, Excel 2000, Office XP, Excel 2002, Office 2003, Excel 2003, Excel Viewer 2003, Office 2004 for Macintosh, Excel 2004 for Macintosh, Office v. X for Macintosh, Works 2004, Works 2005, Works 2006
Office 2000 Service Pack 3, Excel 2000 SP3, Office XP SP3 , Excel 2002 SP3, Office 2003 SP1, Office 2003 SP2, Excel 2003 SP1, Excel Viewer 2003 Gold, Office 2004 for Macintosh Gold, Excel 2004 for Macintosh Gold, Office v. X for Macintosh Gold, Works 2004 Gold, Works 2005 Gold, Works 2006 Gold, Excel 2003 SP2 Critical
Oct 10, 2006 Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (924163): MS06-058

Affected Software: Office 2000, PowerPoint 2000, Office XP, PowerPoint 2002, Office 2003, PowerPoint 2003, Office 2004 for Macintosh, PowerPoint 2004 for Mac, Office v. X for Macintosh, PowerPoint v. X for Macintosh
Office 2000 Service Pack 3, PowerPoint 2000 SP3, Office XP SP3 , PowerPoint 2002 SP3, Office 2003 SP1, Office 2003 SP2, PowerPoint 2003 SP1, Office 2004 for Macintosh Gold, PowerPoint 2004 for Mac Gold, Office v. X for Macintosh Gold, PowerPoint v. X for Macintosh Gold, PowerPoint 2003 SP2 Critical
Oct 10, 2006 Vulnerability in Windows Explorer Could Allow Remote Execution (923191): MS06-057

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Oct 10, 2006 Vulnerability in ASP.NET 2.0 Could Allow Information Disclosure (922770): MS06-056

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, .Net Framework 2.0
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, .Net Framework 2.0 Gold Moderate
Sep 26, 2006 Vulnerability in Vector Markup Language Could Allow Remote Code Execution (925486): MS06-055

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003, Web Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Datacenter Edition, Windows Server 2003 for Small Business Server, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows 2000 Server, Windows 2000 Professional, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Internet Explorer 5.01, Internet Explorer 6.0, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows 2000 Service Pack 4, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 x64 Gold Critical
Sep 12, 2006 Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (910729): MS06-054

Affected Software: Office 2000, Publisher 2000, Office XP, Publisher 2002, Office 2003, Publisher 2003
Office 2000 Service Pack 3, Publisher 2000 SP3, Office XP SP3 , Publisher 2002 SP3, Office 2003 SP1, Publisher 2003 SP1, Office 2003 SP2, Publisher 2003 SP2 Critical
Sep 12, 2006 Vulnerability in Indexing Service Could Allow Cross-Site Scripting (920685): MS06-053

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Moderate
Sep 12, 2006 Vulnerability in Pragmatic General Multicast (PGM) Could Result in Remote Code Execution (919007): MS06-052

Affected Software: Windows XP Home Edition, Windows XP Professional
Windows XP Service Pack 1, Windows XP Service Pack 2 Important
Aug 8, 2006 Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422): MS06-051

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Aug 8, 2006 Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (920670): MS06-050

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Aug 8, 2006 Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958): MS06-049

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 4 Important
Aug 8, 2006 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922968): MS06-048

Affected Software: Office 2000, PowerPoint 2000, Office XP, PowerPoint 2002, Outlook 2003, Office 2003, PowerPoint 2003, PowerPoint 2004 for Mac, Office 2004 for Macintosh, Office v. X for Macintosh, PowerPoint v. X for Macintosh
Office 2000 Service Pack 3, PowerPoint 2000 SP3, Office XP SP3 , PowerPoint 2002 SP3, Office 2003 SP1, Outlook 2003 SP2, PowerPoint 2003 SP1, PowerPoint 2003 SP2, PowerPoint 2004 for Mac Gold, Office 2004 for Macintosh Gold, Office v. X for Macintosh Gold, PowerPoint v. X for Macintosh Gold Critical
Aug 8, 2006 Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (921645): MS06-047

Affected Software: Office 2000, Project 2000, Access 2000 Runtime, Office XP, Project 2002, Visio 2002, Works 2004, Works 2005, Works 2006, VBA 6.0, VBA 6.2, VBA 6.3, VBA 6.4
Office 2000 Service Pack 3, Project 2000 SR1, Access 2000 Runtime SP3, Office XP SP3 , Project 2002 SP1, Visio 2002 SP2, Works 2004 Gold, Works 2005 Gold, VBA 6.0 Gold, VBA 6.2 Gold, VBA 6.3 Gold, VBA 6.4 Gold Critical
Aug 8, 2006 Vulnerability in HTML Help Could Allow Remote Code Execution (922616): MS06-046

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Aug 8, 2006 Vulnerability in Windows Explorer Could Allow Remote Code Execution (921398): MS06-045

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Aug 8, 2006 Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008): MS06-044

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 4 Critical
Aug 8, 2006 Vulnerability in Microsoft Windows Could Allow Remote Code Execution (920214): MS06-043

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Outlook Express 6 on Microsoft Windows XP, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 on Windows Server 2003, Outlook Express 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Outlook Express 6 on Windows Server 2003 (64 bit edition)
Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Outlook Express 6 on Microsoft Windows XP SP 2, Outlook Express 6 on Microsoft Windows XP Professional x64 Edition Gold, Outlook Express 6 on Windows Server 2003 SP1, Outlook Express 6 for Windows Server 2003 for Itanium based systems SP1, Outlook Express 6 on Windows Server 2003 (64 bit edition) Gold Critical
Aug 8, 2006 Cumulative Security Update for Internet Explorer (918899): MS06-042

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows XP Service Pack 2, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Internet Explorer for Windows XP SP2, Internet Explorer 6.0 for Windows Server 2003 Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1, Internet Explorer 6.0 for Windows 2003 x64 Gold, Internet Explorer 6.0 for Windows XP Professional x64 Edition, Internet Explorer 6.0 for Windows Server 2003 SP1 Critical
Aug 8, 2006 Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683): MS06-041

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Aug 8, 2006 Vulnerability in Server Service Could Allow Remote Code Execution (921883): MS06-040

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Jul 11, 2006 Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (915384): MS06-039

Affected Software: Office 2003, Project 2003, OneNote 2003, Office XP, Office 2000, Project 2002, Project 2000, Works 2004, Works 2005, Works 2006
Office 2003 SP1, Office 2003 SP2, Project 2003 SP1, Project 2003 SP2, OneNote 2003 SP1, OneNote 2003 SP2, Office XP SP3 , Office 2000 Service Pack 3, Project 2002 Gold, Project 2002 SP1, Project 2002 SP2, Project 2000 Gold, Project 2000 SR1, Works 2004 Gold, Works 2005 Gold Critical
Jul 11, 2006 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (917284): MS06-038

Affected Software: Office 2003, Access 2003, Excel 2003, Excel Viewer 2003, FrontPage 2003, InfoPath 2003, OneNote 2003, Outlook 2003, PowerPoint 2003, Project 2003, Publisher 2003, Visio 2003, Word 2003, Word Viewer 2003, Office XP, Access 2002, Excel 2002, FrontPage 2002, Outlook 2002, PowerPoint 2002, Publisher 2002, Word 2002, Office 2000, Access 2000, Excel 2000, FrontPage 2000, Outlook 2000, PowerPoint 2000, Publisher 2000, Word 2000, Project 2002, Visio 2002, Project 2000, Office 2004 for Macintosh, Office v. X for Macintosh
Office 2003 SP1, Office 2003 SP2, Access 2003 SP1, Access 2003 SP2, Excel 2003 SP1, Excel 2003 SP2, Excel Viewer 2003 Gold, Excel Viewer 2003 SP2, FrontPage 2003 SP1, FrontPage 2003 SP2, InfoPath 2003 SP1, InfoPath 2003 SP2, OneNote 2003 SP1, OneNote 2003 SP2, Outlook 2003 SP1, Outlook 2003 SP2, PowerPoint 2003 SP1, PowerPoint 2003 SP2, Project 2003 SP2, Project 2003 SP1, Publisher 2003 SP1, Publisher 2003 SP2, Visio 2003 SP1, Visio 2003 SP2, Word 2003 SP1, Word 2003 SP 2, Word Viewer 2003 SP1, Word Viewer 2003 SP2, Office XP SP3 , Access 2002 SP3, Excel 2002 SP2, FrontPage 2002 SP3, Outlook 2002 SP3, PowerPoint 2002 SP3, Word 2002 SP3, Office 2000 Service Pack 3, Access 2000 SP3, Excel 2000 SP3, FrontPage 2000 SP3, Outlook 2000 SP3, PowerPoint 2000 SP3, Publisher 2000 SP3, Word 2000 SP3, Project 2002 SP2, Visio 2002 SP2, Project 2000 SR1, Office 2004 for Macintosh Gold, Office v. X for Macintosh Gold Critical
Jul 11, 2006 Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (917285): MS06-037

Affected Software: Office 2003, Excel 2003, Excel Viewer 2003, Office XP, Excel 2002, Office 2000, Excel 2000, Office 2004 for Macintosh, Excel 2004 for Macintosh, Office v. X for Macintosh, Excel v. X for Macintosh
Office 2003 SP1, Office 2003 SP2, Excel 2003 SP1, Excel 2003 SP2, Excel Viewer 2003 Gold, Excel Viewer 2003 SP2, Office XP SP3 , Excel 2002 SP3, Office 2000 Service Pack 3, Excel 2000 SP3, Office 2004 for Macintosh Gold, Excel 2004 for Macintosh Gold, Office v. X for Macintosh Gold, Office v. X for Macintosh SR 1, Excel v. X for Macintosh Gold Critical
Jul 11, 2006 Vulnerability in DHCP Client Service Could Allow Remote Code Execution (914388): MS06-036

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Jul 11, 2006 Vulnerability in Server Service Could Allow Remote Code Execution (917159): MS06-035

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 x64 Gold Critical
Jul 11, 2006 Vulnerability in Microsoft Internet Information Services using Active Server Pages Could Allow Remote Code Execution (917537): MS06-034

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Internet Information Services 6.0, Internet Information Services 5.1, Internet Information Services 5.0
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Information Server 6.0 Gold, Internet Information Server 5.1 Gold, Internet Information Server 5.0 Gold Important
Jul 11, 2006 Vulnerability in ASP.NET Could Allow Information Disclosure (917283): MS06-033

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows XP Tablet PC Edition, Windows XP Media Center Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, .Net Framework 2.0
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows XP Tablet PC Edition Gold, Windows XP Media Center Edition Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, .Net Framework 2.0 Gold Important
Jun 13, 2006 Vulnerability in TCP/IP Could Allow Remote Code Execution (917953): MS06-032

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Jun 13, 2006 Vulnerability in RPC Mutual Authentication Could Allow Spoofing (917736): MS06-031

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 4 Moderate
Jun 13, 2006 Vulnerability in Server Message Block Could Allow Elevation of Privilege (914389): MS06-030

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Jun 13, 2006 Vulnerability in Microsoft Exchange Server Running Outlook Web Access Could Allow Script Injection (912442): MS06-029

Affected Software: Exchange 2000 Enterprise Server, Exchange 2000 Server, Exchange Server 2003
Exchange 2000 SP3, Exchange Server 2003 SP1, Exchange Server 2003 SP2 Important
Jun 13, 2006 Vulnerability in Microsoft PowerPoint Could Allow Remote Code Execution (916768): MS06-028

Affected Software: PowerPoint 2000, PowerPoint 2002, PowerPoint 2003, PowerPoint 2004 for Mac
PowerPoint 2000 SP3, PowerPoint 2002 SP3, PowerPoint 2003 SP1, PowerPoint 2003 SP2, PowerPoint 2004 for Mac Gold Critical
Jun 13, 2006 Vulnerability in Microsoft Word Could Allow Remote Code Execution (917336): MS06-027

Affected Software: Word 2002, Word 2003, Word Viewer 2003, Works 2000, Works 2001, Works 2002, Works 2003, Works 2004, Works 2005, Works 2006
Word 2002 SP3, Word 2003 SP1, Word 2003 SP 2, Word Viewer 2003 SP1, Word Viewer 2003 SP2, Works 2000 Gold, Works 2001 Gold, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold, Works 2005 Gold Critical
Jun 13, 2006 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (918547): MS06-026

Affected Software: Windows 98, Windows 98 SE, Windows Me
Windows 95 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Critical
Jun 13, 2006 Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280): MS06-025

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Jun 13, 2006 Vulnerability in Windows Media Player Could Allow Remote Code Execution (917734): MS06-024

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows Media Player for Windows XP, Windows Media Player 9.0, Windows Media Player 10, Windows Media Player 7.1
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows 2000 Service Pack 4, Windows Media Player for Windows XP Gold, Windows Media Player for Windows XP SP1, Windows Media Player 9.0 Gold, Windows Media Player 10 Gold, Windows Media Player 7.1 Gold Critical
Jun 13, 2006 Vulnerability in Microsoft JScript Could Allow Remote Code Execution (917344): MS06-023

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Critical
Jun 13, 2006 Vulnerability in ART Image Rendering Could Allow Remote Code Execution (918439): MS06-022

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.01, Internet Explorer 6.0
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1 Critical
Jun 13, 2006 Cumulative Security Update for Internet Explorer (916281): MS06-021

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows XP Service Pack 2, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Internet Explorer for Windows XP SP2, Internet Explorer 6.0 for Windows Server 2003 Gold, Internet Explorer 6.0 for Windows Server 2003 SP1, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1, Internet Explorer 6.0 for Windows 2003 x64 Gold, Internet Explorer 6.0 for Windows XP Professional x64 Edition Critical
May 9, 2006 Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution (913433): MS06-020

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE, Windows Me
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Critical
May 9, 2006 Vulnerability in Microsoft Exchange Could Allow Remote Code Execution (916803): MS06-019

Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server, Exchange Server 2003
Exchange 2000 SP3, Exchange Server 2003 SP1, Exchange Server 2003 SP2 Critical
May 9, 2006 Vulnerability in Microsoft Distributed Transaction Coordinator Could Allow Denial of Service (913580): MS06-018

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Moderate
Apr 11, 2006 Vulnerability in Microsoft FrontPage Server Extensions Could Allow Cross-Site Scripting (917627): MS06-017

Affected Software: FrontPage Server Extensions 2002, FrontPage Server Extensions 2002 64-bit, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows XP Professional 64-Bit Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, SharePoint Team Services 2002
FrontPage Server Extensions 2002 Gold, FrontPage Server Extensions 2002 64-bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows XP 64-Bit Gold, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, SharePoint Team Services 2002 Gold Moderate
Apr 11, 2006 Cumulative Security Update for Outlook Express (911567): MS06-016

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me, Outlook Express 6 on Windows Server 2003, Outlook Express 6 on Windows Server 2003 (64 bit edition), Outlook Express 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6.0, Outlook Express 5.5
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Outlook Express 6 on Windows Server 2003 Gold, Outlook Express 6 on Windows Server 2003 SP1, Outlook Express 6 on Windows Server 2003 (64 bit edition) Gold, Outlook Express 6 for Microsoft Windows Server 2003 for Itanium-based Systems Gold, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition Version 2003 Gold, Outlook Express 6.0 SP1, Outlook Express 5.5 SP2 Important
Apr 11, 2006 Vulnerability in Windows Explorer Could Allow Remote Code Execution (908531): MS06-015

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Critical
Apr 11, 2006 Vulnerability in the Microsoft Data Access Components (MDAC) Function Could Allow Code Execution (911562): MS06-014

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows 98, Windows 98 SE, Windows Me, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, MDAC 2.7, MDAC 2.8, MDAC 2.5
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows 2000 Service Pack 4, MDAC 2.7 SP1, MDAC 2.8 SP1, MDAC 2.8 SP2, MDAC 2.8 Gold, MDAC 2.5 SP3 Critical
Apr 11, 2006 Cumulative Security Update for Internet Explorer (912812): MS06-013

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows XP Service Pack 2, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Internet Explorer 6.0 Gold Critical
Mar 14, 2006 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (905413): MS06-012

Affected Software: Word 2000, Excel 2000, Outlook 2000, PowerPoint 2000, Office 2000, Word 2002, Excel 2002, Outlook 2002, PowerPoint 2002, Office XP, Excel 2003, Works 2000, Works 2001, Works 2002, Works 2003, Works 2004, Works 2005, Works 2006, Excel v. X for Macintosh, Excel 2004 for Macintosh
Word 2000 SP3, Office 2000 Service Pack 3, PowerPoint 2000 SP3, Word 2002 SP3, Excel 2002 SP3, Outlook 2002 SP3, PowerPoint 2002 SP3, Office XP SP3 , Excel 2003 SP1, Excel 2003 SP2, Works 2000 Gold, Works 2001 Gold, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold, Works 2005 Gold, Works 2006 Gold, Excel v. X for Macintosh Gold, Excel 2004 for Macintosh Gold Critical
Mar 14, 2006 Permissive Windows Services DACLs Could Allow Elevation of Privilege (914798): MS06-011

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows XP Service Pack 1, Windows Server 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Important
Feb 14, 2006 Vulnerability in PowerPoint 2000 Could Allow Information Disclosure (889167): MS06-010

Affected Software: Office 2000, PowerPoint 2000
Office 2000 Service Pack 3, PowerPoint 2000 SP3 Important
Feb 14, 2006 Vulnerability in the Korean Input Method Editor Could Allow Elevation of Privilege (901190): MS06-009

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Office 2003, Visio 2003, OneNote 2003, Project 2003
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Office 2003 SP1, Office 2003 SP2, Visio 2003 Gold, Visio 2003 SP1, OneNote 2003 Gold, OneNote 2003 SP1, Project 2003 Gold, Project 2003 SP1 Important
Feb 14, 2006 Vulnerability in Web Client Service Could Allow Remote Code Execution (911927): MS06-008

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Feb 14, 2006 Vulnerability in TCP/IP Could Allow Denial of Service (913446): MS06-007

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Feb 14, 2006 Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564): MS06-006

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit SP1, Windows XP 64-Bit Gold, Windows Server 2003 x64 Gold Important
Feb 14, 2006 Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565): MS06-005

Affected Software: Windows XP Professional, Windows Media Player for Windows XP, Windows Media Player 9 for Windows XP, Windows Media Player 9 for Windows Server 2003, Windows 98, Windows 98 SE, Windows Me, Windows Media Player 7.1, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows Media Player 9.0, Windows Media Player 10, Windows Server 2003 for Small Business Server, Windows XP Home Edition
Windows XP Service Pack 1, Windows Media Player for Windows XP Gold, Windows XP Service Pack 2, Windows Media Player 9.0 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows Media Player 7.1 Gold, Windows 2000 Service Pack 4, Windows Media Player 10 Gold, Windows Server 2003 Gold Critical
Feb 14, 2006 Cumulative Security Update for Internet Explorer (910620): MS06-004

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Internet Explorer 5.01
Windows 2000 Service Pack 4, Internet Explorer 5.01 SP4 Critical
Jan 10, 2006 Vulnerability in TNEF Decoding in Microsoft Outlook and Microsoft Exchange Could Allow Remote Code Execution: MS06-003

Affected Software: Office 2000, Outlook 2000, Office XP, Outlook 2002, Office 2003, Outlook 2003, Exchange Server 5.0, Exchange Server 5.5, Exchange 2000 Server, Exchange 2000 Enterprise Server
Office 2000 Service Pack 3, Office XP SP3 , Office 2003 SP1, Office 2003 SP2, Outlook 2003 SP1, Outlook 2003 SP2, Exchange Server 5.0 SP2, Exchange Server 5.5 SP4, Exchange 2000 SP3 Critical
Jan 10, 2006 Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution: MS06-002

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Windows Me, Windows 98, Windows 98 SE
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit Gold, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows Server 2003 SP1, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Windows Me Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1 Critical
Jan 5, 2006 Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919): MS06-001

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Dec 13, 2005 Vulnerability in Windows Kernel Could Allow Elevation of Privilege (908523): MS05-055

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 4 Important
Dec 13, 2005 Cumulative Security Update for Internet Explorer (905915): MS05-054

Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP Service Pack 2, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1 Critical
Nov 8, 2005 Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution (896424): MS05-053

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Oct 11, 2005 Cumulative Security Update for Internet Explorer (896688): MS05-052

Affected Software: Internet Explorer 5.5, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP Service Pack 2, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1 Critical
Oct 11, 2005 Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400): MS05-051

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Oct 11, 2005 Vulnerability in DirectShow Could Allow Remote Code Execution (904706): MS05-050

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Oct 11, 2005 Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725): MS05-049

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Oct 11, 2005 Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245): MS05-048

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Exchange 2000 Server, Exchange 2000 Enterprise Server, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Exchange 2000 SP3, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Oct 11, 2005 Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749): MS05-047

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2 Important
Oct 11, 2005 Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589): MS05-046

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Important
Oct 11, 2005 Vulnerability in Network Connection Manager Could Allow Denial of Service (905414): MS05-045

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1 Moderate
Oct 11, 2005 Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495): MS05-044

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Internet Explorer 6.0, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows Server 2003 Gold, Internet Explorer 6.0 SP1, Windows Server 2003 for Itanium-based Systems Gold Moderate
Aug 9, 2005 Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423): MS05-043

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Aug 9, 2005 Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587): MS05-042

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Moderate
Aug 9, 2005 Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591): MS05-041

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Moderate
Aug 9, 2005 Vulnerability in Telephony Service Could Allow Remote Code Execution (893756): MS05-040

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Important
Aug 9, 2005 Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588): MS05-039

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Aug 9, 2005 Cumulative Security Update for Internet Explorer (896727): MS05-038

Affected Software: Internet Explorer 5.5, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP Service Pack 2, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1 Critical
Jul 12, 2005 Vulnerability in JView Profiler Could Allow Remote Code Execution (903235): MS05-037

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows XP Professional 64-Bit Edition, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Standard x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Datacenter x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1 Critical
Jul 12, 2005 Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214): MS05-036

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Jul 12, 2005 Vulnerability in Microsoft Word Could Allow Remote Code Execution (903672): MS05-035

Affected Software: Word 2000, Office 2000, Works 2001, Office XP, Word 2002, Works 2002, Works 2003, Works 2004
Word 2000 SP3, Office 2000 Service Pack 3, Works 2001 Gold, Office XP SP3 , Word 2002 SP3, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Critical
Jun 14, 2005 Cumulative Security Update for ISA Server 2000 (899753): MS05-034

Affected Software: ISA Server 2000, Small Business Server 2000, Windows Server 2003 for Small Business Server
ISA Server 2000 SP2, Small Business Server 2000 SP3, Small Business Server 2000 SP4, Windows Server 2003 Gold, Windows Server 2003 SP1 Moderate
Jun 14, 2005 Vulnerability in Telnet Client Could Allow Information Disclosure (896428): MS05-033

Affected Software: Services For Unix 2.2, Services For Unix 3.0, Services For Unix 3.5, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Services for Unix 2.0 (Win2K), Services for Unix 2.0 (NT), Services For Unix 2.1, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Services For Unix 2.2 Gold, Services For Unix 3.0 Gold, Services For Unix 3.5 Gold, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Services for Unix 2.0 (Win2K) Gold, Services for Unix 2.0 (NT) Gold, Services For Unix 2.1 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Moderate
Jun 14, 2005 Vulnerability in Microsoft Agent Could Allow Spoofing (890046): MS05-032

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Moderate
Jun 14, 2005 Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458): MS05-031

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Microsoft Interactive Training (Step-by-Step), Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Microsoft Interactive Training, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1 Important
Jun 14, 2005 Cumulative Security Update in Outlook Express (897715): MS05-030

Affected Software: Outlook Express 5.5, Outlook Express 6.0, Outlook Express 6 on Windows Server 2003, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Internet Explorer 6.0, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition Version 2003, Outlook Express 6 for Microsoft Windows Server 2003 for Itanium-based Systems
Outlook Express 5.5 SP2, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.5 SP2, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold, Outlook Express 6 Service Pack 1 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition Version 2003 Gold, Outlook Express 6 for Microsoft Windows Server 2003 for Itanium-based Systems Gold Important
Jun 14, 2005 Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179): MS05-029

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP4 Important
Jun 14, 2005 Vulnerability in Web Client Service Could Allow Remote Code Execution (896426): MS05-028

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows XP 64-Bit Edition Version 2003, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1, Windows Server 2003 x64 Gold, Windows XP 64-Bit Gold Important
Jun 14, 2005 Vulnerability in Server Message Block Could Allow Remote Code Execution (896422): MS05-027

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Jun 14, 2005 Vulnerability in HTML Help Could Allow Remote Code Execution (896358): MS05-026

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold Critical
Jun 14, 2005 Cumulative Security Update for Internet Explorer (883939): MS05-025

Affected Software: Internet Explorer 5.5, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Internet Explorer 6 for Microsoft Windows XP 64-Bit Edition Version 2003, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows Server 2003 SP1, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 for Itanium-based Systems SP 1, Windows Server 2003 x64 Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1, Windows XP 64-Bit Gold Critical
May 10, 2005 Vulnerability in Web View Could Allow Remote Code Execution (894320): MS05-024

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows 98, Windows 98 SE, Windows Me
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold Important
Apr 12, 2005 Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169): MS05-023

Affected Software: Word 2000, Office 2000, Works 2001, Office XP, Word 2002, Works 2002, Works 2003, Works 2004, Office 2003, Word 2003, Word Viewer 2003
Word 2000 SP3, Office 2000 Service Pack 3, Works 2001 Gold, Office XP SP3 , Word 2002 SP3, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold, Office 2003 SP1, Word 2003 SP1, Word Viewer 2003 Gold Critical
Apr 12, 2005 Vulnerability in MSN Messenger Could Lead to Remote Code Execution (896597): MS05-022

Affected Software: MSN Messenger 6
MSN Messenger Gold Critical
Apr 12, 2005 Vulnerability in Exchange Server Could Allow Remote Code Execution (894549): MS05-021

Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server, Exchange Server 2003
Exchange 2000 SP3, Exchange Server 2003 Gold, Exchange Server 2003 SP1 Critical
Apr 12, 2005 Cumulative Security Update for Internet Explorer (890923): MS05-020

Affected Software: Internet Explorer 5.5, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows XP 64-Bit Edition Version 2003, Internet Explorer 6 for Microsoft Windows Server 2003 for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems Gold, Internet Explorer 6.0 for Windows 2003 for Itanium-based Systems SP1, Windows Server 2003 x64 Gold, Windows XP 64-Bit Gold Critical
Apr 12, 2005 Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066): MS05-019

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Apr 12, 2005 Vulnerability in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859): MS05-018

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Important
Apr 12, 2005 Vulnerability in Message Queuing Could Allow Code Execution (892944): MS05-017

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE, Windows XP Professional 64-Bit Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows XP 64-Bit SP1 Important
Apr 12, 2005 Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086): MS05-016

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Important
Feb 8, 2005 Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113): MS05-015

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Feb 8, 2005 Cumulative Security Update for Internet Explorer (867282): MS05-014

Affected Software: Internet Explorer 5.5, Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP 64-Bit Edition Version 2003
Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 x64 Gold Critical
Feb 8, 2005 Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781): MS05-013

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Feb 8, 2005 Vulnerability in OLE and COM Could Allow Remote Code Execution (873333): MS05-012

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Exchange 2000 Server, Exchange 2000 Enterprise Server, Exchange Server 2003, Exchange Server 5.5, Exchange Server 5.0, Office XP, Outlook 2002, Word 2002, Excel 2002, PowerPoint 2002, FrontPage 2002, Publisher 2002, Access 2002, Office 2003, Outlook 2003, Word 2003, Excel 2003, PowerPoint 2003, FrontPage 2003, Publisher 2003, Access 2003, InfoPath 2003, OneNote 2003, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Exchange 2000 SP3, Exchange Server 2003 Gold, Exchange Server 2003 SP1, Exchange Server 5.5 SP4, Exchange Server 5.0 SP2, Office XP SP2, Office XP SP3 , Outlook 2002 SP2, Outlook 2002 SP3, Word 2002 SP2, Word 2000 SP3, Excel 2002 SP2, Excel 2002 SP3, PowerPoint 2002 SP2, PowerPoint 2002 SP3, FrontPage 2002 SP2, FrontPage 2002 SP3, Publisher 2002 SP2, Publisher 2002 SP3, Access 2002 SP2, Access 2002 SP3, Office 2003 Gold, Office 2003 SP1, Outlook 2003 Gold, Word 2003 Gold, Word 2003 SP1, Excel 2003 Gold, Excel 2003 SP1, PowerPoint 2003 Gold, PowerPoint 2003 SP1, FrontPage 2003 Gold, FrontPage 2003 SP1, Publisher 2003 Gold, Publisher 2003 SP1, Access 2003 Gold, Access 2003 SP1, InfoPath 2003 Gold, InfoPath 2003 SP1, OneNote 2003 Gold, OneNote 2003 SP1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Feb 8, 2005 Vulnerability in Server Message Block Could Allow Remote Code Execution (885250): MS05-011

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Feb 8, 2005 Vulnerability in the License Logging Service Could Allow Code Execution (885834): MS05-010

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Critical
Feb 8, 2005 Vulnerability in PNG Processing Could Lead to Buffer Overrun (890261): MS05-009

Affected Software: Windows Media Player 9.0, Windows Media Player 9 for Windows Server 2003, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows Messenger 4.7, Windows Messenger 5.x, MSN Messenger 6
Windows Media Player 9.0 Gold, Windows Server 2003 SP1, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows Messenger 4.7 Gold, Windows Messenger 5.x Gold, MSN Messenger Gold Critical
Feb 8, 2005 Vulnerabilty in Windows Shell Could Allow Remote Code Execution (890047): MS05-008

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 for Itanium-based Systems Gold Important
Feb 8, 2005 Vulnerability in Windows Could Allow Information Disclosure (888302): MS05-007

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition
Windows XP Service Pack 1, Windows XP Service Pack 2, Windows XP 64-Bit SP1 Important
Feb 8, 2005 Vulnerability in Windows SharePoint Services and SharePoint Team Services Could Allow Cross-Site Scripting and Spoofing Attacks (887981): MS05-006

Affected Software: Windows SharePoint Services, SharePoint Team Services 2002
Windows SharePoint Services SP1, SharePoint Team Services 2002 Gold Moderate
Feb 8, 2005 Vulnerability in Microsoft Office XP could lead to Buffer Overrun (873352): MS05-005

Affected Software: Office XP, Project 2002, Visio 2002, Works 2002, Works 2003, Works 2004
Office XP SP2, Office XP SP3 , Project 2002 Gold, Project 2002 SP1, Visio 2002 SP1, Visio 2002 SP2, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Critical
Feb 8, 2005 ASP.NET Path Validation Vulnerability (887219): MS05-004

Affected Software: .Net Framework 1.0, .Net Framework 1.1, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Tablet PC Edition, Windows XP Media Center Edition, Windows XP Professional 64-Bit Edition, Windows Server 2003 Datacenter Edition for Itanium-based Systems, Windows Server 2003 Enterprise Edition for Itanium-based Systems, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
.Net Framework 1.0 SP2, .Net Framework 1.0 SP3, .Net Framework 1.1 Gold, .Net Framework 1.1 SP1, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows XP Tablet PC Edition Gold, Windows XP Media Center Edition Gold, Windows XP 64-Bit Gold, Windows Server 2003 for Itanium-based Systems Gold, Windows Server 2003 x64 Gold Important
Jan 11, 2005 Vulnerability in the Indexing Service Could Allow Remote Code Execution (871250): MS05-003

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Jan 11, 2005 Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711): MS05-002

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Jan 11, 2005 Vulnerability in HTML Help Could Allow Code Execution (890175): MS05-001

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 6.0, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 6.0 SP1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Dec 14, 2004 Vulnerability in WINS Could Allow Remote Code Execution (870763): MS04-045

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Windows Server 2003 x64 Gold Important
Dec 14, 2004 Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835): MS04-044

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Dec 14, 2004 Vulnerability in HyperTerminal Could Allow Code Execution (873339): MS04-043

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows Server 2003 x64 Gold Important
Dec 14, 2004 Vulnerability in DHCP Could Allow Remote Code Execution and Denial Of Service (885249): MS04-042

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Important
Dec 14, 2004 Vulnerability in WordPad Could Allow Code Execution (885836): MS04-041

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Dec 1, 2004 Cumulative Security Update for Internet Explorer (889293): MS04-040

Affected Software: Internet Explorer 6.0, Windows 98, Windows 98 SE, Windows Me, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition
Internet Explorer 6.0 SP1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP 64-Bit SP1 Critical
Nov 9, 2004 Vulnerability in ISA Server 2000 and Proxy Server 2.0 Could Allow Internet Content Spoofing (888258): MS04-039

Affected Software: Proxy Server 2.0, ISA Server 2000, Small Business Server 2000, Windows Server 2003 for Small Business Server
Proxy Server 2.0 SP1, ISA Server 2000 SP1, ISA Server 2000 SP2, Small Business Server 2000 Gold, Small Business Server 2000 SP1, Windows Server 2003 Gold Important
Oct 12, 2004 Cumulative Security Update for Internet Explorer (834707): MS04-038

Affected Software: Internet Explorer 5.01, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 6.0 for Windows XP Service Pack 2, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, Internet Explorer 6 for Microsoft Windows XP 64-Bit Edition Version 2003
Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP Service Pack 2, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.5 SP2, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 12, 2004 Vulnerability in Windows Shell Could Allow Remote Code Execution (841356): MS04-037

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows 2000 Professional, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003, Datacenter Edition, Windows Server 2003 for Small Business Server, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 12, 2004 Vulnerability in NNTP Could Allow Code Execution (883935): MS04-036

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 for Small Business Server, Exchange 2000 Server, Exchange Server 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Exchange 2000 SP3, Exchange Server 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 12, 2004 Vulnerability in SMTP Could Allow Remote Code Execution (885881): MS04-035

Affected Software: Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 for Small Business Server, Exchange Server 2003, Exchange 2000 Server, Exchange 2000 Enterprise Server, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows Server 2003 Gold, Exchange Server 2003 Gold, Exchange 2000 SP3, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 12, 2004 Vulnerability in Compressed (zipped) Folders Could Allow Code Execution (873376): MS04-034

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 for Small Business Server, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 12, 2004 Vulnerability in Microsoft Excel Could Allow Code Execution (886836): MS04-033

Affected Software: Office 2000, Office XP, Excel 2002, Office 2001 for Macintosh, Office v. X for Macintosh, Excel 2000
Office 2000 Service Pack 3, Office XP SP2, Excel 2002 SP2, Office 2001 for Macintosh Gold, Office v. X for Macintosh Gold Critical
Oct 12, 2004 Security Update for Microsoft Windows (840987): MS04-032

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 for Small Business Server, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 12, 2004 Vulnerability in NetDDE Could Allow Remote Code Execution (841533): MS04-031

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 for Small Business Server, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Oct 12, 2004 Vulnerability in WebDav XML Message Handler Could Lead to a Denial of Service (824151): MS04-030

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows Server 2003 for Small Business Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Internet Information Services 5.0, Internet Information Services 5.1, Internet Information Services 6.0, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Windows XP Gold, Windows XP Service Pack 1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Oct 12, 2004 Vulnerability in RPC Runtime Library Could Allow Information Disclosure and Denial of Service (873350): MS04-029

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Important
Sep 14, 2004 Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (873374): MS04-028

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Office XP, Outlook 2002, Word 2002, Excel 2002, PowerPoint 2002, FrontPage 2002, Publisher 2002, Access 2002, Office 2003, Outlook 2003, Word 2003, Excel 2003, PowerPoint 2003, FrontPage 2003, Publisher 2003, Access 2003, OneNote 2003, Project 2002, Visio 2002, Visio 2003, Visual Studio .NET 2002, Visual Studio .NET 2003, Internet Explorer 6.0, .Net Framework 1.0, .Net Framework 1.1, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003
Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Office XP SP2, Office XP SP3 , Outlook 2002 SP2, Outlook 2002 SP3, Word 2002 SP2, Word 2002 SP3, Excel 2002 SP2, Excel 2002 SP3, PowerPoint 2002 SP2, PowerPoint 2002 SP3, FrontPage 2002 SP2, FrontPage 2002 SP3, Publisher 2002 SP2, Publisher 2002 SP3, Access 2002 SP2, Access 2002 SP3, Office 2003 Gold, Outlook 2003 Gold, Word 2003 Gold, Excel 2003 Gold, PowerPoint 2003 Gold, FrontPage 2003 Gold, Publisher 2003 Gold, Access 2003 Gold, OneNote 2003 Gold, Project 2002 Gold, Project 2002 SP1, Visio 2002 SP1, Visio 2002 SP2, Visio 2003 Gold, Visual Studio .NET 2002 Gold, Visual Studio .NET 2003 Gold, Internet Explorer 6.0 SP1, .Net Framework 1.0 SP2, .Net Framework 1.1 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold Critical
Sep 14, 2004 Vulnerability in WordPerfect Converter Could Allow Code Execution (884933): MS04-027

Affected Software: Office 2000, Word 2000, FrontPage 2000, Office XP, Word 2002, FrontPage 2002, Publisher 2002, FrontPage 2003, Office 2003, Word 2003, Publisher 2003, Works 2001, Works 2002, Works 2003, Works 2004
Office 2000 Service Pack 3, Word 2000 SP3, FrontPage 2000 SP3, Office XP SP2, Office XP SP3 , Word 2002 SP2, Word 2002 SP3, FrontPage 2002 SP2, FrontPage 2002 SP3, Publisher 2002 SP2, Publisher 2002 SP3, FrontPage 2003 Gold, Office 2003 Gold, Word 2003 Gold, Publisher 2003 Gold, Works 2001 Gold, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Important
Aug 10, 2004 Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting and Spoofing Attacks (842463): MS04-026

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP4 Moderate
Jul 30, 2004 Cumulative Security Update for Internet Explorer (867801): MS04-025

Affected Software: Internet Explorer 6.0, Internet Explorer 5.5, Internet Explorer 5.01, Windows 98, Windows 98 SE, Windows Me, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Internet Explorer 6.0 for Windows Server 2003, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Windows 98 Gold, Windows 98 SP1, Windows Me Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Jul 13, 2004 Vulnerability in Windows Shell Could Allow Remote Code Execution (839645): MS04-024

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows Server 2003 for Small Business Server, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003, Datacenter Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows XP Gold, Windows XP Service Pack 1, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Jul 13, 2004 Vulnerability in HTML Help Could Allow Code Execution (840315): MS04-023

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 6.0, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Internet Explorer 6.0 SP1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Jul 13, 2004 Vulnerability in Task Scheduler Could Allow Code Execution (841873): MS04-022

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Internet Explorer 6.0, Windows XP Professional 64-Bit Edition
Windows XP Gold, Windows XP Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Internet Explorer 6.0 SP1, Windows XP 64-Bit SP1 Critical
Jul 13, 2004 Security Update for IIS 4.0 (841373): MS04-021

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Internet Information Server 4.0, Windows NT Workstation 4.0
Windows NT4 Service Pack 6a Important
Jul 13, 2004 Vulnerability in POSIX Could Allow Code Execution (841872): MS04-020

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4 Important
Jul 13, 2004 Vulnerability in Utility Manager Could Allow Code Execution (842526): MS04-019

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4 Important
Jul 13, 2004 Cumulative Security Update for Outlook Express (823353): MS04-018

Affected Software: Outlook Express 5.5, Outlook Express 6.0, Outlook Express 6 on Windows Server 2003, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Internet Explorer 6.0, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 on Windows Server 2003 (64 bit edition)
Outlook Express 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.5 SP2, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold, Outlook Express 6 Service Pack 1 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 on Windows Server 2003 (64 bit edition) Gold Moderate
Jun 8, 2004 Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service (842689): MS04-017

Affected Software: Visual Studio .NET 2003, Microsoft Business Solutions CRM
Visual Studio .NET 2003 Gold, Microsoft Business Solutions CRM Gold Moderate
Jun 8, 2004 Vulnerability in DirectPlay Could Allow Denial of Service (839643): MS04-016

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Windows XP Gold, Windows XP Service Pack 1, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Moderate
May 11, 2004 Vulnerability in Help and Support Center Could Allow Remote Code Execution (840374): MS04-015

Affected Software: Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows Server 2003 Gold, Windows XP Gold, Windows XP Service Pack 1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Apr 13, 2004 Vulnerability in the Microsoft Jet Database Engine Could Allow Code Execution (837001): MS04-014

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Apr 13, 2004 Cumulative Security Update for Outlook Express (837009): MS04-013

Affected Software: Outlook Express 5.5, Outlook Express 6.0, Outlook Express 6 on Windows Server 2003, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows 98, Windows 98 SE, Windows Me, Internet Explorer 5.5, Internet Explorer 6.0, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Outlook Express 6 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 on Windows Server 2003 (64 bit edition)
Outlook Express 5.5 SP2, Outlook Express 6.0 Gold, Outlook Express 6.0 SP1, Outlook Express 6 on Windows Server 2003 Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 98 SP1, Windows Me Gold, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold, Outlook Express 6 Service Pack 1 for Microsoft Windows XP 64-Bit Edition, Outlook Express 6 on Windows Server 2003 (64 bit edition) Gold Critical
Apr 13, 2004 Cumulative Update for Microsoft RPC/DCOM (828741): MS04-012

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Apr 13, 2004 Security Update for Microsoft Windows (835732): MS04-011

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Mar 9, 2004 Vulnerability in MSN Messenger Could Allow Information Disclosure (838512): MS04-010

Affected Software: MSN Messenger 6
MSN Messenger Gold Moderate
Mar 9, 2004 Vulnerability in Microsoft Outlook Could Allow Code Execution (828040): MS04-009

Affected Software: Outlook 2002, Office XP
Office XP SP2 Critical
Mar 9, 2004 Vulnerability in Windows Media Services Could Allow a Denial of Service (832359): MS04-008

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4 Moderate
Feb 10, 2004 ASN .1 Vulnerability Could Allow Code Execution (828028): MS04-007

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows XP Professional, Windows XP Home Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Datacenter Edition, Windows Server 2003, Web Edition, Windows Server 2003 for Small Business Server, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit SP1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Feb 10, 2004 Vulnerability in the Windows Internet Naming Service (WINS) Could Allow Code Execution (830352): MS04-006

Affected Software: Windows NT Server 4.0, Terminal Server Edition, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Terminal Server Service Pack 6, Windows NT4 Service Pack 6a, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows Server 2003 Gold, Windows Server 2003 x64 Gold Important
Feb 10, 2004 Vulnerability in Virtual PC for Mac could lead to privilege elevation (835150): MS04-005

Affected Software: Microsoft Virtual PC for Mac 6.0, Microsoft Virtual PC for Mac 6.01, Microsoft Virtual PC for Mac 6.1, Microsoft Virtual PC for Mac 6.02
Microsoft Virtual PC for Mac 6.0 Gold, Microsoft Virtual PC for Mac 6.01 Gold, Microsoft Virtual PC for Mac 6.1 Gold, Microsoft Virtual PC for Mac 6.02 Gold Important
Feb 2, 2004 Cumulative Security Update for Internet Explorer (832894): MS04-004

Affected Software: Internet Explorer 6.0, Internet Explorer 5.5, Internet Explorer 5.01, Windows 98, Windows 98 SE, Windows Me, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Internet Explorer 6.0 for Windows Server 2003, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Windows 98 Gold, Windows 98 SP1, Windows Me Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows XP 64-Bit Gold, Windows XP 64-Bit SP1, Windows Server 2003 x64 Gold Critical
Jan 13, 2004 Buffer Overrun in MDAC Function Could Allow Code Execution (832483): MS04-003

Affected Software: MDAC 2.5, MDAC 2.6, MDAC 2.7, MDAC 2.8, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, SQL Server 2000, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
MDAC 2.5 SP2, MDAC 2.5 SP3, MDAC 2.6 SP2, MDAC 2.7 Gold, MDAC 2.7 SP1, MDAC 2.8 Gold, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, SQL Server 2000 Gold, SQL Server 2000 SP1, SQL Server 2000 SP2, SQL Server 2000 SP3, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold Important
Jan 13, 2004 Vulnerability in Exchange Server 2003 Could Lead to Privilege Escalation (832759): MS04-002

Affected Software: Exchange Server 2003
Exchange Server 2003 Gold Moderate
Jan 13, 2004 Vulnerability in H.323 Filter can Allow Remote Code Execution (816458): MS04-001

Affected Software: ISA Server 2000, Small Business Server 2000, Windows Server 2003 for Small Business Server
ISA Server 2000 SP1, Small Business Server 2000 Gold, Small Business Server 2000 SP1, Windows Server 2003 Gold Critical
Nov 11, 2003 Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution (813360): MS03-051

Affected Software: FrontPage Server Extensions 2002, FrontPage 2000 Server Extensions, SharePoint Team Services 2002, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, FrontPage Server Extensions 2000 64-bit
FrontPage Server Extensions 2002 Gold, FrontPage 2000 Server Extensions Gold, , Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold, FrontPage Server Extensions 2000 64-bit Gold Critical
Nov 11, 2003 Vulnerability in Microsoft Word and Microsoft Excel Could Allow Arbitrary Code to run. (831527): MS03-050

Affected Software: Excel 2000, Excel 2002, Excel 97, Word 2002, Word 2000, Word 97, Office 2000, Office XP, Office 97, Works 2001, Works 2002, Works 2003, Works 2004
Office 2000 Service Pack 3, Office XP SP2, Office 97 SR-2/SR-2b, Word 2000 SP3, Word 2002 SP2, Works 2001 Gold, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Important
Nov 11, 2003 Buffer Overrun in the Workstation Service Could Allow Code Execution (828749): MS03-049

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows XP Professional 64-Bit Edition
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows XP 64-Bit Gold Critical
Nov 11, 2003 Cumulative Security Update for Internet Explorer (824145): MS03-048

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition, Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition
Internet Explorer 5.01 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.01 SP4, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Windows Server 2003 Gold, Windows XP 64-Bit Gold, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold, Windows XP 64-Bit SP1 Critical
Oct 15, 2003 Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting Attack (828489): MS03-047

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP4 Moderate
Oct 15, 2003 Vulnerability in Exchange Server Could Allow Arbitrary Code Execution (829436): MS03-046

Affected Software: Exchange 2000 Enterprise Server, Exchange 2000 Server, Exchange Server 5.5
Exchange 2000 SP3, Exchange Server 5.5 SP4 Critical
Oct 15, 2003 Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141): MS03-045

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 2000 Service Pack 2, Windows XP 64-Bit Gold, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Important
Oct 15, 2003 Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise (825119): MS03-044

Affected Software: Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 2000 Service Pack 2, Windows XP 64-Bit Gold, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 15, 2003 Buffer Overrun in Messenger Service Could Allow Code Execution (828035): MS03-043

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 2000 Service Pack 2, Windows XP 64-Bit Gold, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 15, 2003 Buffer Overflow in Windows Troubleshooter ActiveX Control Could Allow Code Execution (826232): MS03-042

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows 2000 Service Pack 2 Critical
Oct 15, 2003 Vulnerability in Authenticode Verification Could Allow Remote Code Execution (823182): MS03-041

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows XP Professional 64-Bit Edition, Windows XP Professional 64-Bit Edition Version 2003, Windows Server 2003 Datacenter x64 Edition, Windows Server 2003 Enterprise x64 Edition, Windows Server 2003 Standard x64 Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold, Windows 2000 Service Pack 2, Windows XP 64-Bit Gold, Windows XP 64-Bit Version 2003 Gold, Windows Server 2003 x64 Gold Critical
Oct 3, 2003 Cumulative Patch for Internet Explorer (828750): MS03-040

Affected Software: Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003, Internet Explorer 5.5, Internet Explorer 5.01
Internet Explorer 6.0 Gold, Windows Server 2003 Gold, Internet Explorer 5.5 SP2, Internet Explorer 5.01 SP3 Critical
Sep 10, 2003 Buffer Overrun In RPCSS Service Could Allow Code Execution (824146): MS03-039

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold Critical
Sep 3, 2003 Unchecked buffer in Microsoft Access Snapshot Viewer Could Allow Code Execution (827104): MS03-038

Affected Software: Access 2000, Access 2002
Office 2000 Service Pack 3, Office XP SP1, Office XP SP2 Moderate
Sep 3, 2003 Flaw in Visual Basic for Applications Could Allow Arbitrary Code execution (822715): MS03-037

Affected Software: Office 2000, Access 2000, Excel 2000, PowerPoint 2000, Visio 2000, Word 2000, Office XP, Access 2002, Excel 2002, PowerPoint 2002, Publisher 2002, Word 2002, Project 2000, Project 2002, Visio 2002, VBA 5.0, VBA 6.0, Access 97, Excel 97, PowerPoint 97, Word 97, Word 98, VBA 6.2, VBA 6.3, Works 2001, Works 2002, Works 2003, Works 2004
Office 2000 Service Pack 3, Access 2000 SP3, PowerPoint 2000 SP3, Visio 2000 Gold, Visio 2000 SP1, Word 2000 SP3, Office XP SP2, Access 2002 SP2, Excel 2002 SP2, PowerPoint 2002 SP2, Publisher 2002 SP2, Word 2002 SP2, Project 2000 SR1, Project 2000 Gold, Project 2002 Gold, Project 2002 SP1, Visio 2002 Gold, Visio 2002 SP1, Visio 2002 SP2, VBA 5.0 Gold, VBA 6.0 Gold, Office 97 SR-2/SR-2b, VBA 6.2 Gold, VBA 6.3 Gold, Works 2001 Gold, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Critical
Sep 3, 2003 Buffer Overrun in WordPerfect Converter Could Allow Code Execution (827103): MS03-036

Affected Software: Office 2000, FrontPage 2000, Publisher 2000, Office XP, FrontPage 2002, Publisher 2002, Works 2001, Works 2002, Works 2003, Works 2004
Office 2000 Service Pack 3, Office 2000 SR-1, Office 2000 SR-1a, Office XP SP2, Office XP SP1, Works 2001 Gold, Works 2002 Gold, Works 2003 Gold, Works 2004 Gold Important
Sep 3, 2003 Flaw in Microsoft Word Could Enable Macros to Run Automatically (827653): MS03-035

Affected Software: Word 2000, Works 2001, Office 2000, Works 2003, Word 2002, Office XP
Office 2000 SR-1, Office 2000 SR-1a, Office 2000 Service Pack 3, Works 2001 Gold, Works 2003 Gold, Office XP SP2 Important
Sep 3, 2003 Flaw in NetBIOS Could Lead to Information Disclosure (824105): MS03-034

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold Low
Aug 20, 2003 Unchecked Buffer in MDAC Function Could Enable System Compromise (823718): MS03-033

Affected Software: MDAC 2.5, MDAC 2.6, MDAC 2.7, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, SQL Server 2000, Windows XP Home Edition, Windows XP Professional
MDAC 2.5 SP2, MDAC 2.5 SP3, MDAC 2.6 SP2, MDAC 2.7 Gold, MDAC 2.7 SP1, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, SQL Server 2000 Gold, SQL Server 2000 SP1, SQL Server 2000 SP2, SQL Server 2000 SP3, Windows XP Gold, Windows XP Service Pack 1 Important
Aug 20, 2003 Cumulative Patch for Internet Explorer (822925): MS03-032

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003
Internet Explorer 5.01 SP3, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Windows Server 2003 Gold Critical
Jul 23, 2003 Cumulative Patch for Microsoft SQL Server (815495): MS03-031

Affected Software: SQL Server 7.0, Microsoft Data Engine (MSDE), Microsoft SQL Server 2000 Desktop Engine (MSDE 2000), SQL Server 2000
SQL Server 7.0 SP4, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP3, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP3a, SQL Server 2000 SP3 Important
Jul 23, 2003 Unchecked Buffer in DirectX Could Enable System Compromise (819696): MS03-030

Affected Software: Windows 98, Windows 98 SE, Windows Me, Windows XP Home Edition, Windows XP Professional, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Enterprise Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows XP Gold, Windows XP Service Pack 1, Windows 2000 Service Pack 3, Windows 2000 Service Pack 2, Windows 2000 Service Pack 4, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows Server 2003 Gold Critical
Jul 23, 2003 Flaw in Windows Function Could Allow Denial of Service (823803): MS03-029

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Moderate
Jul 16, 2003 Flaw in ISA Server Error Pages Could Allow Cross-Site Scripting Attack (816456): MS03-028

Affected Software: ISA Server 2000
ISA Server 2000 SP1 Important
Jul 16, 2003 Unchecked Buffer in Windows Shell Could Enable System Compromise (821557): MS03-027

Affected Software: Windows XP Home Edition, Windows XP Professional
Windows XP Service Pack 1, Windows XP Gold Important
Jul 16, 2003 Buffer Overrun In RPC Interface Could Allow Code Execution (823980): MS03-026

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Enterprise Edition, Windows Server 2003, Datacenter Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 2, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows Server 2003 Gold Critical
Jul 9, 2003 Flaw in Windows Message Handling through Utility Manager Could Enable Privilege Elevation (822679): MS03-025

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 3 Important
Jul 9, 2003 Buffer Overrun in Windows Could Lead to Data Corruption (817606): MS03-024

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1 Important
Jul 9, 2003 Buffer Overrun In HTML Converter Could Allow Code Execution (823559): MS03-023

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows Server 2003 for Small Business Server, Windows Server 2003, Datacenter Edition, Windows Server 2003, Standard Edition, Windows Server 2003, Web Edition, Windows Server 2003, Enterprise Edition, Windows Me, Windows 98 SE, Windows 98
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Service Pack 1, Windows XP Gold, Windows Server 2003 Gold, Windows Me Gold, Windows 98 SE Gold, Windows 98 Gold Critical
Jun 25, 2003 Flaw in ISAPI Extension for Windows Media Services Could Cause Code Execution (822343): MS03-022

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server
Windows 2000 Service Pack 3, Windows 2000 Service Pack 2, Windows 2000 Service Pack 4 Important
Jun 25, 2003 Flaw In Windows Media Player May Allow Media Library Access (819639): MS03-021

Affected Software: Windows Media Player 9.0, Windows Media Player 9 for Windows Server 2003
Windows Media Player 9.0 Gold, Windows Server 2003 SP1 Moderate
Jun 4, 2003 Cumulative Patch for Internet Explorer (818529): MS03-020

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0, Internet Explorer 6.0 for Windows Server 2003
Internet Explorer 5.01 SP3, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1, Windows Server 2003 Gold Critical
May 28, 2003 Flaw in ISAPI extension for Windows Media Services could cause denial of service (817772): MS03-019

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Important
May 28, 2003 Cumulative Patch for Internet Information Service (811114): MS03-018

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0, Internet Information Services 5.1
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1 Important
May 7, 2003 Flaw in Windows Media Player Skins Downloading Could Allow Code Execution (817787): MS03-017

Affected Software: Windows Media Player 7.1, Windows Media Player for Windows XP
Windows Media Player 7.1 Gold, Windows Media Player for Windows XP Gold, Windows XP Gold, Windows XP Service Pack 1 Critical
Apr 30, 2003 Cumulative Patch for BizTalk Server (815206): MS03-016

Affected Software: BizTalk Server 2000, BizTalk Server 2002
BizTalk Server 2000 SP2, BizTalk Server 2002 Gold Important
Apr 23, 2003 Cumulative Patch for Internet Explorer (813489): MS03-015

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP3, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1 Critical
Apr 23, 2003 Cumulative Patch for Outlook Express (330994): MS03-014

Affected Software: Outlook Express 5.5, Outlook Express 6.0, Internet Explorer 5.5, Internet Explorer 6.0
Outlook Express 5.5 SP2, Outlook Express 6.0 Gold, Outlook Express 6.0 SP1, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1 Critical
Apr 16, 2003 Buffer Overrun in Windows Kernel Message Handling could Lead to Elevated Privileges (811493): MS03-013

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows XP Home Edition, Windows XP Professional
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows XP Gold, Windows XP Service Pack 1 Important
Apr 9, 2003 Flaw In Winsock Proxy Service And ISA Firewall Service Can Cause Denial Of Service (331066): MS03-012

Affected Software: Proxy Server 2.0, ISA Server 2000
Proxy Server 2.0 SP1, ISA Server 2000 SP1 Important
Apr 9, 2003 Flaw in Microsoft VM Could Enable System Compromise (816093): MS03-011

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Microsoft Virtual Machine (VM), Windows 95, Windows 98, Windows 98 SE, Windows Me
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows XP Gold, Windows XP Service Pack 1, Windows XP Service Pack 2, Windows NT4 Service Pack 6a, Microsoft Virtual Machine (VM) Gold, Windows 95 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows Me Gold Critical
Mar 26, 2003 Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks (331953): MS03-010

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows XP Gold, Windows XP Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Important
Mar 19, 2003 Flaw in ISA Server DNS intrusion detection filter can cause Denial of Service (331065): MS03-009

Affected Software: ISA Server 2000
ISA Server 2000 SP1 Moderate
Mar 19, 2003 Flaw in Windows Script Engine could allow code execution (814078): MS03-008

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows 98, Windows 98 SE, Windows Me, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition
Windows XP Gold, Windows XP Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 98 Gold, Windows 98 SE Gold, Windows Me Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Critical
Mar 17, 2003 Unchecked Buffer In Windows Component Could Cause Server Compromise (815021): MS03-007

Affected Software: Windows 2000 Professional, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows XP Home Edition, Windows XP Professional
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows XP Gold, Windows XP Service Pack 1 Critical
Feb 26, 2003 Flaw in Windows Me Help and Support Center Could Enable Code Execution (812709): MS03-006

Affected Software: Windows Me
Windows Me Gold Critical
Feb 5, 2003 Unchecked Buffer in Windows Redirector Could Allow Privilege Elevation (810577): MS03-005

Affected Software: Windows XP Home Edition, Windows XP Professional
Windows XP Gold, Windows XP Service Pack 1 Important
Feb 5, 2003 Cumulative Patch for Internet Explorer (810847): MS03-004

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP3, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1 Critical
Jan 21, 2003 Flaw in how Outlook 2002 handles V1 Exchange Server Security Certificates could lead to Information Disclosure (812262): MS03-003

Affected Software: Outlook 2002
Office XP SP2 Moderate
Jan 21, 2003 Cumulative Patch for Microsoft Content Management Server (810487): MS03-002

Affected Software: Content Management Server 2001
Content Management Server 2001 SP1 Important
Jan 20, 2003 Unchecked Buffer in Locator Service Could Lead to Code Execution (810833): MS03-001

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1 Critical
Dec 17, 2002 Unchecked Buffer in Windows Shell Could Enable System Compromise (Q329390): MS02-072

Affected Software: Windows XP Home Edition, Windows XP Professional
Windows XP Gold, Windows XP Service Pack 1 Critical
Dec 11, 2002 Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation (328310): MS02-071

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Important
Dec 11, 2002 Flaw in SMB Signing Could Enable Group Policy to be Modified (329170): MS02-070

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows XP Home Edition, Windows XP Professional
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1 Moderate
Dec 11, 2002 Flaw in Microsoft VM Could Enable System Compromise (810030): MS02-069

Affected Software: Microsoft Virtual Machine (VM), Windows XP Professional, Windows XP Home Edition, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows 95, Windows 98, Windows 98 SE, Windows Me, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Advanced Server, Windows 2000 Server
Microsoft Virtual Machine (VM) Gold, Windows XP Gold, Windows XP Service Pack 1, Windows NT4 Service Pack 3, Windows NT4 Service Pack 1, Windows NT4 Service Pack 2, Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6, Windows NT4 Service Pack 6a, Windows 95 Gold, Windows 98 Gold, Windows 98 SE Gold, Windows Me Gold, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Critical
Dec 4, 2002 Cumulative Patch for Internet Explorer (324929): MS02-068

Affected Software: Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1 Critical
Dec 4, 2002 E-mail Header Processing Flaw Could Cause Outlook 2002 to Fail (331866): MS02-067

Affected Software: Outlook 2002
Office XP SP2 Moderate
Nov 20, 2002 Cumulative Patch for Internet Explorer (Q328970): MS02-066

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP3, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 6.0 SP1 Critical
Nov 19, 2002 Buffer Overrun in Microsoft Data Access Components Could Lead to Code Execution (Q329414): MS02-065

Affected Software: MDAC 2.1, MDAC 2.5, MDAC 2.6, Windows 98, Windows 98 SE, Windows Me, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows NT Workstation 4.0, Windows 2000 Advanced Server, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Datacenter Server
MDAC 2.1 Gold, MDAC 2.1 SP1, MDAC 2.1 SP1A, MDAC 2.1 SP2, MDAC 2.5 Gold, MDAC 2.5 SP1, MDAC 2.5 SP2, MDAC 2.5 SP3, MDAC 2.6 Gold, MDAC 2.6 SP1, MDAC 2.6 SP2, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Critical
Oct 30, 2002 Windows 2000 Default Permissions Could Allow Trojan Horse Program (Q327522): MS02-064

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Moderate
Oct 30, 2002 Unchecked Buffer in PPTP Implementation Could Enable Denial of Service Attacks (Q329834): MS02-063

Affected Software: Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows XP Professional, Windows XP Home Edition
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1 Critical
Oct 30, 2002 Cumulative Patch for Internet Information Service (Q327696): MS02-062

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0, Internet Information Services 5.1
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Service Pack 1, Windows XP Gold Moderate
Oct 16, 2002 Elevation of Privilege in SQL Server Web Tasks (Q316333): MS02-061

Affected Software: SQL Server 7.0, Microsoft Data Engine (MSDE), SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000)
SQL Server 7.0 SP4, SQL Server 2000 SP2, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2 Critical
Oct 16, 2002 Flaw in Windows XP Help and Support Center Could Enable File Deletion (Q328940): MS02-060

Affected Software: Windows XP Home Edition, Windows XP Professional
Windows XP Gold Moderate
Oct 16, 2002 Flaw in Word Fields and Excel External Updates Could Lead to Information Disclosure (Q330008): MS02-059

Affected Software: Word 2002, Word 2000, Word 97, Word 98, Word v. X for Macintosh, Word 2001 for Macintosh, Word 98 for Macintosh, Excel 2002
Office XP SP2, Office 2000 Service Pack 1, Office 2000 Service Pack 2, Word 97 Gold, Word 98 Gold, Office v. X for Macintosh SR 1, Office 2001 for Macintosh SR1, Word 98 for Macintosh Gold Moderate
Oct 9, 2002 Unchecked Buffer in Outlook Express S/MIME Parsing Could Enable System Compromise (Q328676): MS02-058

Affected Software: Outlook Express 5.5, Outlook Express 6.0, Internet Explorer 5.5, Internet Explorer 6.0
Outlook Express 5.5 SP2, Outlook Express 6.0 Gold, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold Critical
Oct 2, 2002 Flaw in Services for Unix 3.0 Interix SDK Could Allow Code Execution (Q329209): MS02-057

Affected Software: Services For Unix 3.0
Services For Unix 3.0 Gold Moderate
Oct 2, 2002 Cumulative Patch for SQL Server (Q316333): MS02-056

Affected Software: SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000), SQL Server 7.0, Microsoft Data Engine (MSDE)
SQL Server 2000 SP2, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2, SQL Server 7.0 SP4 Critical
Oct 2, 2002 Unchecked Buffer in Windows Help Facility Could Enable Code Execution (Q323255): MS02-055

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows NT Workstation 4.0, Windows 98, Windows 98 SE, Windows Me
Windows XP Gold, Windows XP Service Pack 1, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Critical
Oct 2, 2002 Unchecked Buffer in File Decompression Functions Could Lead to Code Execution (Q329048): MS02-054

Affected Software: Windows Me, Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE
Windows Me Gold, Windows XP Service Pack 1, Windows XP Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold Moderate
Sep 24, 2002 Buffer Overrun in SmartHTML Interpreter Could Allow Code Execution (Q324096): MS02-053

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows NT Workstation 4.0, Windows 98, Windows 98 SE, FrontPage 2000 Server Extensions, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, FrontPage Server Extensions 2002
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, FrontPage 2000 Server Extensions Gold, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP Gold, FrontPage Server Extensions 2002 Gold Critical
Sep 18, 2002 Flaw in Java VM JDBC Classes Could Allow Code Execution (Q329077): MS02-052

Affected Software: Microsoft Virtual Machine (VM)
Microsoft Virtual Machine (VM) Gold Critical
Sep 18, 2002 Cryptographic Flaw in RDP Protocol can Lead to Information Disclosure (Q324380): MS02-051

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 1, Windows XP Gold Moderate
Sep 4, 2002 Certificate Validation Flaw Could Enable Identity Spoofing (Q329115): MS02-050

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows XP Professional, Windows XP Home Edition, Windows 98 SE, Windows 98, Windows Me, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows XP Gold, Windows XP Service Pack 1, Windows 98 SE Gold, Windows 98 Gold, Windows Me Gold, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4 Important
Sep 4, 2002 Flaw Could Enable Web Page to Launch Visual FoxPro 6.0 Application Without Warning (Q326568): MS02-049

Affected Software: Visual FoxPro 6.0
Visual FoxPro 6.0 Gold Moderate
Aug 28, 2002 Flaw in Certificate Enrollment Control Could Allow Deletion of Digital Certificates (Q323172): MS02-048

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows Me, Windows 98 SE, Windows 98, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows XP Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows Me Gold, Windows 98 SE Gold, Windows 98 Gold, Windows 98 SP1, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Critical
Aug 21, 2002 Cumulative Patch for Internet Explorer (Q323759): MS02-047

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP2, Internet Explorer 5.5 SP1, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 5.01 SP3 Critical
Aug 21, 2002 Buffer Overrun in TSAC ActiveX Control Could Allow Code Execution (Q327521): MS02-046

Affected Software: Microsoft Terminal Services Advanced Client (TSAC) ActiveX control
Microsoft Terminal Services Advanced Client (TSAC) ActiveX control Gold Moderate
Aug 21, 2002 Unchecked Buffer in Network Share Provider can lead to Denial of Service (Q326830): MS02-045

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 3, Windows 2000 Service Pack 2, Windows XP Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Moderate
Aug 21, 2002 Unsafe Functions in Office Web Components (Q328130): MS02-044

Affected Software: Project 2002, Project Server 2002, Office 2000, Office XP, Small Business Server 2000, ISA Server 2000, Commerce Server 2000, Commerce Server 2002, BizTalk Server 2002, BizTalk Server 2000, BackOffice Server 2000, Office Web Components 2000, Office Web Components 2002
Project 2002 Gold, Project Server 2002 Gold, Office 2000 Service Pack 2, Office 2000 Gold, Office XP SP1, Office XP Gold, Small Business Server 2000 Gold, ISA Server 2000 SP1, ISA Server 2000 Gold, Commerce Server 2000 SP2, Commerce Server 2000 Gold, Commerce Server 2002 Gold, BizTalk Server 2002 Gold, BizTalk Server 2000 Gold, BackOffice Server 2000 Gold, Office Web Components 2000 Gold, Office Web Components 2002 Gold Critical
Aug 15, 2002 Cumulative Patch for SQL Server (Q316333): MS02-043

Affected Software: SQL Server 7.0, Microsoft Data Engine (MSDE), SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000)
SQL Server 7.0 SP4, SQL Server 2000 SP2, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2 Moderate
Aug 15, 2002 Flaw in Network Connection Manager Could Enable Privilege Elevation (Q326886): MS02-042

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 Critical
Aug 6, 2002 Unchecked Buffer in Content Management Server Could Enable Server Compromise (Q326075): MS02-041

Affected Software: Content Management Server 2001
Content Management Server 2001 SP1 Critical
Jul 30, 2002 Unchecked Buffer in MDAC Function Could Enable SQL Server Compromise (Q326573): MS02-040

Affected Software: MDAC 2.5, SQL Server 7.0, MDAC 2.6, SQL Server 2000, MDAC 2.7
MDAC 2.5 SP2, SQL Server 7.0 SP4, MDAC 2.6 SP2, SQL Server 2000 SP2, MDAC 2.7 Gold Moderate
Jul 24, 2002 Buffer Overruns in SQL Server 2000 Resolution Service Could Enable Code Execution (Q323875): MS02-039

Affected Software: SQL Server 2000
SQL Server 2000 SP2 Critical
Jul 24, 2002 Unchecked Buffer in SQL Server 2000 Utilities Could Allow Code Execution (Q316333): MS02-038

Affected Software: SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000)
SQL Server 2000 SP2, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2 Moderate
Jul 24, 2002 Server Response To SMTP Client EHLO Command Results In Buffer Overrun (Q326322): MS02-037

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP4 Moderate
Jul 24, 2002 Authentication Flaw in Microsoft Metadirectory Services Could Allow Privilege Elevation (Q317138): MS02-036

Affected Software: Microsoft Metadirectory Services 2.2
Microsoft Metadirectory Services 2.2 SP1 Moderate
Jul 10, 2002 SQL Server Installation Process May Leave Passwords on System (Q263968): MS02-035

Affected Software: SQL Server 7.0, SQL Server 2000
SQL Server 7.0 Gold, SQL Server 7.0 SP1, SQL Server 7.0 SP3, SQL Server 7.0 SP4, SQL Server 7.0 SP2, SQL Server 2000 Gold, SQL Server 2000 SP1, SQL Server 2000 SP2 Moderate
Jul 10, 2002 Cumulative Patch for SQL Server (Q316333): MS02-034

Affected Software: SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000)
SQL Server 2000 SP2, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2 Moderate
Jun 26, 2002 Unchecked Buffer in Profile Service Could Allow Code Execution in Commerce Server (Q322273): MS02-033

Affected Software: Commerce Server 2000, Commerce Server 2002
Commerce Server 2000 Gold, Commerce Server 2000 SP2, Commerce Server 2002 Gold Critical
Jun 26, 2002 Cumulative Patch for Windows Media Player (Q320920): MS02-032

Affected Software: Windows Media Player 6.4, Windows Media Player 6.4 for Windows 2000, Windows Media Player 6.4 for Windows NT 4.0, Windows Media Player 7.1, Windows Media Player for Windows XP, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows Media Player 6.4 Gold, Windows Media Player 6.4 for Windows 2000 Gold, Windows Media Player 6.4 for Windows NT 4.0 Gold, Windows Media Player 7.1 Gold, Windows XP Gold, Windows Media Player for Windows XP Gold, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows 2000 Service Pack 4, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Critical
Jun 19, 2002 Cumulative Patches for Excel and Word for Windows (Q324458): MS02-031

Affected Software: Excel 2000, Excel 2002, Word 2002
Office 2000 SR-1a, Office XP SP1 Moderate
Jun 12, 2002 Unchecked Buffer in SQLXML Could Lead to Code Execution (Q321911): MS02-030

Affected Software: SQL Server 2000
SQL Server 2000 SP2 Moderate
Jun 11, 2002 Unchecked Buffer in Remote Access Service Phonebook Could Lead to Code Execution (Q318138): MS02-029

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows XP Home Edition, Windows XP Professional, Windows NT Server 4.0, Windows NT Workstation 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Microsoft Routing and Remote Access Server for Windows NT 4.0
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows XP Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Critical
Jun 11, 2002 Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise (Q321599): MS02-028

Affected Software: Internet Information Services 5.0, Internet Information Server 4.0
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows NT4 Service Pack 6a Critical
Jun 11, 2002 Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's Choice (Q323889): MS02-027

Affected Software: Internet Explorer 5.01, Proxy Server 2.0, ISA Server 2000, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP2, Proxy Server 2.0 Gold, ISA Server 2000 SP1, Internet Explorer 5.5 SP1, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold, Internet Explorer 5.01 SP3 Critical
Jun 6, 2002 Unchecked Buffer in ASP.NET Worker Process (Q322289): MS02-026

Affected Software: .Net Framework 1.0
.Net Framework 1.0 SP1 Moderate
May 28, 2002 Malformed Mail Attribute Can Cause Exchange 2000 to Exhaust CPU Resources (Q320436): MS02-025

Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server
Exchange 2000 SP2 Critical
May 22, 2002 Authentication Flaw in Windows Debugger Can Lead to Elevated Privileges (Q320206): MS02-024

Affected Software: Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Professional, Windows 2000 Server, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Critical
May 15, 2002 15 May 2002 Cumulative Patch for Internet Explorer (Q321232): MS02-023

Affected Software: Internet Explorer 6.0, Internet Explorer 5.5, Internet Explorer 5.01
Internet Explorer 6.0 Gold, Internet Explorer 5.5 SP2, Internet Explorer 5.5 SP1, Internet Explorer 5.01 SP2, Internet Explorer 5.01 SP3 Critical
May 8, 2002 Unchecked Buffer in MSN Chat Control Can Lead to Code Execution (Q321661): MS02-022

Affected Software: MSN Messenger 6
MSN Messenger Gold Critical
Apr 25, 2002 E-mail Editor Flaw Could Lead to Script Execution on Reply or Forward (Q321804): MS02-021

Affected Software: Word 2002, Word 2000
Word 2002 Gold, Word 2000 Gold, Office 2000 SR-1, Office 2000 SR-1a, Office 2000 Service Pack 2 Moderate
Apr 17, 2002 SQL Extended Procedure Functions Contain Unchecked Buffers (Q319507): MS02-020

Affected Software: SQL Server 7.0, Microsoft Data Engine (MSDE), Microsoft SQL Server 2000 Desktop Engine (MSDE 2000), SQL Server 2000
SQL Server 7.0 SP3, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2, SQL Server 2000 SP2 Moderate
Apr 16, 2002 Unchecked Buffer in Internet Explorer and Office for Mac Can Cause Code to Execute (Q321309): MS02-019

Affected Software: Excel v. X for Macintosh, Excel 2001 for Macintosh, PowerPoint 2001 for Macintosh, PowerPoint 98 for Macintosh, PowerPoint v. X for Macintosh, Internet Explorer 5.1 for Machintosh OS 8 and 9, Internet Explorer 5.1 for Macintosh OS X, Entourage 2001 for Macintosh, Entourage v. X for Macintosh, Outlook Express 5 for Macintosh
Excel v. X for Macintosh Gold, Excel 2001 for Macintosh Gold, PowerPoint 2001 for Macintosh Gold, PowerPoint 98 for Macintosh Gold, PowerPoint v. X for Macintosh Gold, Internet Explorer 5.1 for Machintosh OS 8 and 9 Gold, Internet Explorer 5.1 for Macintosh OS X Gold, Entourage 2001 for Macintosh Gold, Entourage v. X for Macintosh Gold, Outlook Express 5 for Macintosh Gold Critical
Apr 10, 2002 Cumulative Patch for Internet Information Service (Q319733): MS02-018

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0, Internet Information Services 5.1, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows XP Gold, Windows NT4 Terminal Server Service Pack 6 Critical
Apr 4, 2002 Unchecked Buffer in the Multiple UNC Provider Could Enable Code Execution (Q311967): MS02-017

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Server, Windows 2000 Professional, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows XP Professional, Windows XP Home Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows XP Gold Moderate
Apr 4, 2002 Opening Group Policy Files for Exclusive Read Blocks Policy Application (Q318593): MS02-016

Affected Software: Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 2 Moderate
Mar 28, 2002 28 March 2002 Cumulative Patch for Internet Explorer: MS02-015

Affected Software: Internet Explorer 6.0, Internet Explorer 5.01, Internet Explorer 5.5
Internet Explorer 6.0 Gold, Internet Explorer 5.01 SP2, Internet Explorer 5.01 SP3, Internet Explorer 5.5 SP1, Internet Explorer 5.5 SP2 Critical
Mar 7, 2002 Unchecked Buffer in Windows Shell Could Lead to Code Execution: MS02-014

Affected Software: Windows 98 SE, Windows 98, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 98 SE Gold, Windows 98 SP1, Windows 98 Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2 Moderate
Mar 4, 2002 04 March 2002 Cumulative VM Update: MS02-013

Affected Software: Windows XP Professional, Windows XP Home Edition, Windows Me, Windows NT Server 4.0, Terminal Server Edition, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Windows NT Workstation 4.0, Windows 98 SE, Windows 98, Microsoft Virtual Machine (VM), Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows 2000 Server, Windows 2000 Professional
Windows XP Gold, Windows Me Gold, Windows NT4 Terminal Server Service Pack 6, Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 98 SE Gold, Windows 98 Gold, Windows 98 SP1, Microsoft Virtual Machine (VM) Gold, Windows 2000 Service Pack 2 Critical
Feb 27, 2002 Malformed Data Transfer Request Can Cause Windows SMTP Service to Fail: MS02-012

Affected Software: Internet Information Services 5.0, Windows XP Home Edition, Windows XP Professional, Internet Information Services 5.1
Windows 2000 Service Pack 2, Windows XP Gold Low
Feb 27, 2002 Authentication Flaw Could Allow Unauthorized Users To Authenticate To SMTP Service: MS02-011

Affected Software: Internet Information Services 5.0, Exchange Server 5.5
Windows 2000 Service Pack 2, Exchange Server 5.5 SP4 Critical
Feb 21, 2002 Unchecked Buffer in ISAPI Filter Could Allow Commerce Server Compromise: MS02-010

Affected Software: Commerce Server 2000
Commerce Server 2000 SP2 Critical
Feb 21, 2002 Incorrect VBScript Handling in IE Can Allow Web Pages to Read Local Files: MS02-009

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP2, Internet Explorer 5.5 SP1, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold Critical
Feb 21, 2002 XMLHTTP Control Can Allow Access to Local Files: MS02-008

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows XP Home Edition, Windows XP Professional
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 1, Windows 2000 Gold, Windows 2000 Service Pack 3, Windows XP Gold, Windows XP Service Pack 1 Critical
Feb 20, 2002 SQL Server Remote Data Source Function Contain Unchecked Buffers: MS02-007

Affected Software: SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000), SQL Server 7.0, Microsoft Data Engine (MSDE)
SQL Server 2000 SP2, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) SP2, SQL Server 7.0 SP3 Moderate
Feb 12, 2002 Unchecked Buffer in SNMP Service Could Enable Arbitrary Code to be Run: MS02-006

Affected Software: Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Windows NT Workstation 4.0, Windows 95, Windows 98, Windows 98 SE, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional, Windows XP Professional, Windows XP Home Edition
Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 95 Gold, Windows 95 SR 2.1, Windows 95 SR 2.5, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows NT4 Terminal Server Service Pack 4, Windows NT4 Terminal Server Service Pack 5, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 2, Windows 2000 Service Pack 1, Windows XP Gold Moderate
Feb 11, 2002 11 February 2002 Cumulative Patch for Internet Explorer: MS02-005

Affected Software: Internet Explorer 6.0, Internet Explorer 5.5, Internet Explorer 5.01
Internet Explorer 6.0 Gold, Internet Explorer 5.5 SP2, Internet Explorer 5.5 SP1, Internet Explorer 5.01 SP2 Critical
Feb 7, 2002 Unchecked Buffer in Telnet Server Could Lead to Arbitrary Code Execution: MS02-004

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Interix 2.2
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Interix 2.2 Gold Moderate
Feb 7, 2002 Exchange 2000 System Attendant Incorrectly Sets Remote Registry Permissions: MS02-003

Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server
Exchange 2000 SP2 Low
Feb 6, 2002 Malformed Network Request Can Cause Office v. X for Mac to Fail: MS02-002

Affected Software: Office v. X for Macintosh
Office v. X for Macintosh Gold Low
Jan 22, 2002 Trusting Domains Do Not Verify Domain Membership of SIDs in Authorization Data: MS02-001

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional, Internet Information Services 5.0, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 2, Windows NT4 Terminal Server Service Pack 6 Moderate
Dec 20, 2001 SQL Server Text Formatting Functions Contain Unchecked Buffers: MS01-060

Affected Software: SQL Server 2000, SQL Server 7.0
SQL Server 2000 SP1, SQL Server 7.0 SP3 Moderate
Dec 19, 2001 Unchecked Buffer in Universal Plug and Play Can Lead to System Compromise: MS01-059

Affected Software: Windows XP Home Edition, Windows XP Professional, Windows 98, Windows 98 SE, Windows Me
Windows XP Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Critical
Dec 13, 2001 13 December 2001 Cumulative Patch for IE: MS01-058

Affected Software: Internet Explorer 6.0, Internet Explorer 5.5
Internet Explorer 6.0 Gold, Internet Explorer 5.5 SP2 Critical
Dec 6, 2001 Specially Formed Script in HTML Mail Can Execute in Exchange 5.5 OWA: MS01-057

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP4 Moderate
Nov 20, 2001 Windows Media Player .ASF Processor Contains Unchecked Buffer: MS01-056

Affected Software: Windows Media Player 7.1, Windows Media Player 7.0, Windows Media Player 6.4, Windows Media Player 6.4 for Windows 2000, Windows Media Player for Windows XP, Windows Media Player 6.4 for Windows NT 4.0
Windows Media Player 7.1 Gold, Windows Media Player 7.0 Gold, Windows Media Player 6.4 Gold, Windows Media Player 6.4 for Windows 2000 Gold, Windows XP Gold, Windows Media Player for Windows XP Gold, Windows Media Player 6.4 for Windows NT 4.0 Gold Critical
Nov 8, 2001 13 November 2001 Cumulative Patch for IE: MS01-055

Affected Software: Internet Explorer 6.0, Internet Explorer 5.5
Internet Explorer 6.0 Gold, Internet Explorer 5.5 SP2 Critical
Nov 1, 2001 Invalid Universal Plug and Play Request Can Disrupt System Operation: MS01-054

Affected Software: Windows 98, Windows 98 SE, Windows Me, Windows XP Home Edition, Windows XP Professional
Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows XP Gold Low
Oct 23, 2001 Downloaded Applications Can Execute on Mac IE 5.1 for OS X: MS01-053

Affected Software: Internet Explorer 5.1 for Macintosh OS X
Internet Explorer 5.1 for Macintosh OS X Gold Moderate
Oct 18, 2001 Invalid RDP Data Can Cause Terminal Service Failure: MS01-052

Affected Software: Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows NT4 Terminal Server Service Pack 6, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Moderate
Oct 10, 2001 Malformed Dotless IP Address Can Cause Web Page to be Handled in Intranet Zone: MS01-051

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Internet Explorer 6.0
Internet Explorer 5.01 SP2, Internet Explorer 5.5 SP2, Internet Explorer 6.0 Gold Not Rated
Sep 26, 2001 Deeply-nested OWA Request Can Consume Server CPU Availability: MS01-049

Affected Software: Exchange 2000 Enterprise Server, Exchange 2000 Server
Exchange 2000 SP1 Not Rated
Sep 10, 2001 Malformed Request to RPC Endpoint Mapper Can Cause RPC Service to Fail: MS01-048

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Workstation 4.0, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Sep 6, 2001 OWA Function Allows Unauthenticated User to Enumerate Global Address List: MS01-047

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP4 Not Rated
Aug 21, 2001 Access Violation in Windows 2000 IRDA Driver Can Cause System to Restart: MS01-046

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Aug 16, 2001 ISA Server H.323 Gatekeeper Service Contains Memory Leak: MS01-045

Affected Software: ISA Server 2000
ISA Server 2000 Gold Not Rated
Aug 15, 2001 15 August 2001 Cumulative Patch for IIS: MS01-044

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0
Windows NT4 Service Pack 6a, Windows NT4 Service Pack 5, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Aug 14, 2001 NNTP Service in Windows NT 4.0 and Windows 2000 Contains Memory Leak: MS01-043

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Jul 26, 2001 Windows Media Player .NSC Processor Contains Unchecked Buffer: MS01-042

Affected Software: Windows Media Player 6.4, Windows Media Player 6.4 for Windows 2000, Windows Media Player 7.1, Windows Media Player 7.0, Windows Media Player 6.4 for Windows NT 4.0
Windows Media Player 6.4 Gold, Windows Media Player 6.4 for Windows 2000 Gold, Windows Media Player 7.1 Gold, Windows Media Player 7.0 Gold, Windows Media Player 6.4 for Windows NT 4.0 Gold Not Rated
Jul 26, 2001 Malformed RPC Request Can Cause Service Failure: MS01-041

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Internet Information Server 4.0, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, SQL Server 2000, SQL Server 7.0, Exchange Server 5.5, Exchange 2000 Server, Exchange 2000 Enterprise Server, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, SQL Server 2000 Gold, SQL Server 7.0 SP2, Exchange Server 5.5 SP4, Exchange 2000 Gold, Windows NT4 Terminal Server Service Pack 6 Not Rated
Jul 25, 2001 Invalid RDP Data Can Cause Memory Leak in Terminal Services: MS01-040

Affected Software: Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows NT4 Terminal Server Service Pack 5, Windows NT4 Terminal Server Service Pack 6 Not Rated
Jul 24, 2001 Services for Unix 2.0 Telnet and NFS Services Contain Memory Leaks: MS01-039

Affected Software: Services for Unix 2.0 (NT), Services for Unix 2.0 (Win2K)
Services for Unix 2.0 (NT) Gold, Services for Unix 2.0 (Win2K) Gold Not Rated
Jul 12, 2001 Outlook View Control Exposes Unsafe Functionality: MS01-038

Affected Software: Outlook 2000, Outlook 2002
Office 2000 Service Pack 2, Outlook 2002 Gold Critical
Jul 5, 2001 Authentication Error in SMTP Service Could Allow Mail Relaying: MS01-037

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Jun 25, 2001 Function Exposed via LDAP over SSL Could Enable Passwords to be Changed: MS01-036

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server
Windows 2000 Service Pack 2, Windows 2000 Service Pack 1 Not Rated
Jun 21, 2001 FrontPage Server Extension Sub-Component Contains Unchecked Buffer: MS01-035

Affected Software: FrontPage 2000 Server Extensions
Windows 2000 Service Pack 2, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a Not Rated
Jun 21, 2001 Malformed Word Document Could Enable Macro to Run Automatically: MS01-034

Affected Software: Word 97, Word 2000, Word 2002
Office 97 SR-2/SR-2b, Office 2000 SR-1, Office 2000 SR-1a, Office 2000 Service Pack 2, Word 2002 Gold Important
Jun 18, 2001 Unchecked Buffer in Index Server ISAPI Extension Could Enable Web Server Compromise: MS01-033

Affected Software: Internet Information Services 5.0, Indexing Service for Windows 2000, Internet Information Server 4.0, Index Server 2.0, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Jun 12, 2001 SQL Query Method Enables Cached Administrator Connection to be Reused: MS01-032

Affected Software: SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000), SQL Server 7.0
SQL Server 2000 Gold, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) Gold, SQL Server 7.0 SP3 Not Rated
Jun 7, 2001 Predictable Named Pipes Could Enable Privilege Elevation via Telnet: MS01-031

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Jun 6, 2001 Incorrect Attachment Handling in Exchange OWA Can Execute Script: MS01-030

Affected Software: Exchange Server 5.5, Exchange 2000 Enterprise Server, Exchange 2000 Server
Exchange Server 5.5 SP4, Exchange 2000 Gold Not Rated
May 23, 2001 Windows Media Player .ASX Processor Contains Unchecked Buffer: MS01-029

Affected Software: Windows Media Player 6.4, Windows Media Player 6.4 for Windows 2000, Windows Media Player 7.0, Windows Media Player 6.4 for Windows NT 4.0
Windows Media Player 6.4 Gold, Windows Media Player 6.4 for Windows 2000 Gold, Windows Media Player 7.0 Gold, Windows Media Player 6.4 for Windows NT 4.0 Gold Not Rated
May 21, 2001 RTF Document Linked to Template Can Run Macros Without Warning: MS01-028

Affected Software: Word 2000, Word 97
Office 2000 SR-1, Office 2000 SR-1a, Office 2000 Service Pack 2, Office 97 SR-2/SR-2b Not Rated
May 16, 2001 Flaws in Web Server Certificate Validation Could Enable Spoofing: MS01-027

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5
Internet Explorer 5.01 SP2, Internet Explorer 5.5 SP1 Not Rated
May 14, 2001 14 May 2001 Cumulative Patch for IIS: MS01-026

Affected Software: Internet Information Services 5.0, Internet Information Server 4.0
Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a Not Rated
May 10, 2001 Index Server Search Function Contains Unchecked Buffer: MS01-025

Affected Software: Internet Information Server 4.0, Index Server 2.0, Indexing Service for Windows 2000, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
May 8, 2001 Malformed Request to Domain Controller Can Cause Memory Exhaustion: MS01-024

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server
Windows 2000 Service Pack 2, Windows 2000 Service Pack 1 Not Rated
May 1, 2001 Unchecked Buffer in ISAPI Extension Could Enable Compromise of IIS 5.0 Server: MS01-023

Affected Software: Internet Information Services 5.0
Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Apr 18, 2001 WebDAV Service Provider Can Allow Scripts to Levy Requests as User: MS01-022

Affected Software: Windows 95, Windows 98, Windows 98 SE, Windows Me, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Windows NT Server 4.0, Terminal Server Edition
Windows 95 Gold, Windows 95 SR 2.1, Windows 95 SR 2.5, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows NT4 Service Pack 6a, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows NT4 Terminal Server Service Pack 6 Not Rated
Apr 16, 2001 Web Request Can Cause Access Violation in ISA Server Web Proxy Service: MS01-021

Affected Software: ISA Server 2000
ISA Server 2000 Gold Not Rated
Mar 29, 2001 Incorrect MIME Header Can Cause IE to Execute E-mail Attachment: MS01-020

Affected Software: Internet Explorer 5.5, Internet Explorer 5.01
Internet Explorer 5.5 SP1, Internet Explorer 5.01 SP1 Not Rated
Mar 28, 2001 Passwords for Compressed Folders are Recoverable: MS01-019

Affected Software: Windows 98, Windows 98 SE, Windows Me
Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Not Rated
Mar 27, 2001 Visual Studio VB-TSQL Object Contains Unchecked Buffer: MS01-018

Affected Software: Visual Studio 6.0, Visual Basic 6.0
Visual Studio 6.0 SP 5, Visual Basic 6.0 Gold Not Rated
Mar 22, 2001 Erroneous VeriSign-Issued Digital Certificates Pose Spoofing Hazard: MS01-017

Affected Software: Windows 95, Windows 98, Windows 98 SE, Windows Me, Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 95 Gold, Windows 95 SR 2.1, Windows 95 SR 2.5, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows NT4 Service Pack 3, Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 4, Windows NT4 Terminal Server Service Pack 5, Windows NT4 Terminal Server Service Pack 6, Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Mar 8, 2001 Malformed WebDAV Request Can Cause IIS to Exhaust CPU Resources: MS01-016

Affected Software: Internet Information Services 5.0
Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Mar 6, 2001 IE Can Divulge Location of Cached Content: MS01-015

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5, Windows Script 5.1, Windows Script 5.5
Internet Explorer 5.01 SP1, Internet Explorer 5.5 SP1, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows 95 SR 2.5, Windows 95 SR 2.1, Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 98 Gold, Windows 98 SP1 Not Rated
Mar 1, 2001 Malformed URL Can Cause Service Failure in IIS 5.0 and Exchange 2000: MS01-014

Affected Software: Internet Information Services 5.0, Exchange 2000 Enterprise Server, Exchange 2000 Server
Windows 2000 Service Pack 1, Windows 2000 Gold, Exchange 2000 Gold Not Rated
Feb 26, 2001 Windows 2000 Event Viewer Contains Unchecked Buffer: MS01-013

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Feb 22, 2001 Outlook - Outlook Express VCard Handler Contains Unchecked Buffer: MS01-012

Affected Software: Internet Explorer 5.5, Outlook Express 5.5, Internet Explorer 5.01, Outlook Express 5.01
Internet Explorer 5.5 SP1, Internet Explorer 5.01 SP1 Not Rated
Feb 20, 2001 Malformed Request to Domain Controller Can Cause CPU Exhaustion: MS01-011

Affected Software: Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server
Windows 2000 Service Pack 2, Windows 2000 Service Pack 1 Not Rated
Feb 14, 2001 Windows Media Player Skins Files Can Enable Java Code to Execute: MS01-010

Affected Software: Windows Media Player 7.0
Windows Media Player 7.0 Gold Not Rated
Feb 13, 2001 Malformed PPTP Packet Stream Can Cause Kernel Exhaustion: MS01-009

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Feb 7, 2001 Malformed NTLMSSP Request Can Enable Code to Run with System Privileges: MS01-008

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Feb 5, 2001 Network DDE Agent Requests Can Enable Code to Run in System Context: MS01-007

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Jan 31, 2001 Invalid RDP Data Can Cause Terminal Server Failure: MS01-006

Affected Software: Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Jan 30, 2001 Packaging Anomaly Could Cause Hotfixes to be Removed: MS01-005

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Jan 29, 2001 Malformed .HTR Request Allows Reading of File Fragments: MS01-004

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0
Windows NT4 Service Pack 6a, Windows NT4 Service Pack 5, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Jan 24, 2001 Weak Permissions on Winsock Mutex Can Allow Service Failure: MS01-003

Affected Software: Windows NT Server 4.0, Windows NT Workstation 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Jan 22, 2001 PowerPoint 2000 File Parser Contains Unchecked Buffer: MS01-002

Affected Software: PowerPoint 2000, PowerPoint 97
Office 2000 SR-1, Office 2000 SR-1a, Office 2000 Service Pack 2, PowerPoint 97 Gold Not Rated
Jan 11, 2001 Web Client Will Perform NTLM Authentication Regardless of Security Settings: MS01-001

Affected Software: Windows Me, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional, Office 2000
Windows Me Gold, Windows 2000 Gold, Windows 2000 Service Pack 1, Office 2000 SR-1a, Office 2000 SR-1, Office 2000 Service Pack 2 Not Rated
Dec 22, 2000 Malformed Web Form Submission Vulnerability: MS00-100

Affected Software: Internet Information Services 5.0, Internet Information Server 4.0, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 1, Windows 2000 Gold, Windows NT4 Service Pack 6a, Windows NT4 Service Pack 5, Windows NT4 Terminal Server Service Pack 6 Not Rated
Dec 20, 2000 Directory Service Restore Mode Password Vulnerability: MS00-099

Affected Software: Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Dec 19, 2000 Indexing Service File Enumeration Vulnerability: MS00-098

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Dec 15, 2000 Severed Windows Media Server Connection Vulnerability: MS00-097

Affected Software: Windows Media Services 4.1, Windows Media Services 4.0
Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Dec 6, 2000 SNMP Parameters Vulnerability: MS00-096

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Dec 6, 2000 Registry Permissions Vulnerability: MS00-095

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Dec 4, 2000 Phone Book Service Buffer Overflow Vulnerability: MS00-094

Affected Software: Windows 2000 Advanced Server, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0, Terminal Server Edition
Windows 2000 Service Pack 1, Windows 2000 Gold, Windows NT4 Service Pack 6a, Windows NT4 Terminal Server Service Pack 6 Not Rated
Dec 1, 2000 Browser Print Template and File Upload via Form Vulnerabilities: MS00-093

Affected Software: Internet Explorer 5.01, Internet Explorer 5.5
Internet Explorer 5.01 SP1, Internet Explorer 5.5 Gold, Internet Explorer 5.5 SP1 Not Rated
Dec 1, 2000 Extended Stored Procedure Parameter Parsing Vulnerability: MS00-092

Affected Software: SQL Server 7.0, SQL Server 2000, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000)
SQL Server 7.0 SP2, SQL Server 2000 Gold, Microsoft SQL Server 2000 Desktop Engine (MSDE 2000) Gold Not Rated
Nov 30, 2000 Incomplete TCP/IP Packet Vulnerability: MS00-091

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 98, Windows 98 SE, Windows Me, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold, Windows NT4 Terminal Server Service Pack 6 Not Rated
Nov 22, 2000 .ASX Buffer Overrun and .WMS Script Execution Vulnerabilities: MS00-090

Affected Software: Windows Media Player 7.0, Windows Media Player 6.4, Windows Media Player 6.4 for Windows 2000, Windows Media Player 6.4 for Windows NT 4.0
Windows Media Player 7.0 Gold, Windows Media Player 6.4 Gold, Windows Media Player 6.4 for Windows 2000 Gold, Windows Media Player 6.4 for Windows NT 4.0 Gold Not Rated
Nov 21, 2000 Domain Account Lockout Vulnerability: MS00-089

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1 Not Rated
Nov 16, 2000 Exchange User Account Vulnerability: MS00-088

Affected Software: Exchange 2000 Server, Exchange 2000 Enterprise Server
Exchange 2000 Gold Not Rated
Nov 8, 2000 Terminal Server Login Buffer Overflow Vulnerability: MS00-087

Affected Software: Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Terminal Server Service Pack 6, Windows NT4 Terminal Server Service Pack 5, Windows NT4 Terminal Server Service Pack 4 Not Rated
Nov 6, 2000 Web Server File Request Parsing Vulnerability: MS00-086

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0
Windows NT4 Service Pack 6a, Windows NT4 Service Pack 5, Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Nov 2, 2000 ActiveX Parameter Validation Vulnerability: MS00-085

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Nov 2, 2000 Indexing Services Cross Site Scripting Vulnerability: MS00-084

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Internet Information Services 5.0, Indexing Service for Windows 2000
Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Nov 1, 2000 Netmon Protocol Parsing Vulnerability: MS00-083

Affected Software: Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server, Systems Management Server 1.2, Systems Management Server 2.0, Windows NT Server 4.0, Terminal Server Edition
Windows NT4 Service Pack 6a, Windows 2000 Gold, Windows 2000 Service Pack 1, Systems Management Server 1.2 SP4, Systems Management Server 2.0 Gold, Systems Management Server 2.0 SP1, Systems Management Server 2.0 SP2, Windows NT4 Terminal Server Service Pack 6 Not Rated
Oct 31, 2000 Malformed MIME Header Vulnerability: MS00-082

Affected Software: Exchange Server 5.5
Exchange Server 5.5 SP3 Not Rated
Oct 25, 2000 New Variant of VM File Reading Vulnerability: MS00-081

Affected Software: Microsoft Virtual Machine (VM), Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Professional, Windows 2000 Server
Windows 2000 Service Pack 1 Not Rated
Oct 23, 2000 Session ID Cookie Marking Vulnerability: MS00-080

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Oct 18, 2000 HyperTerminal Buffer Overflow Vulnerability: MS00-079

Affected Software: Windows Me, Windows 98, Windows 98 SE, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional, Windows NT Workstation 4.0, Windows NT Server 4.0, Enterprise Edition, Windows NT Server 4.0
Windows Me Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2, Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a Not Rated
Oct 17, 2000 Web Server Folder Traversal Vulnerability: MS00-078

Affected Software: Internet Information Server 4.0, Internet Information Services 5.0
Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 2000 Gold, Windows 2000 Service Pack 1 Not Rated
Oct 13, 2000 NetMeeting Desktop Sharing Vulnerability: MS00-077

Affected Software: NetMeeting, Windows 2000 Datacenter Server, Windows 2000 Advanced Server, Windows 2000 Server, Windows 2000 Professional
Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 2000 Gold, Windows 2000 Service Pack 1, Windows 2000 Service Pack 2 Not Rated
Oct 12, 2000 Cached Web Credentials Vulnerability: MS00-076

Affected Software: Internet Explorer 5.01
Internet Explorer 5.01 SP1 Not Rated
Oct 12, 2000 Microsoft VM ActiveX Component Vulnerability: MS00-075

Affected Software: Microsoft Virtual Machine (VM), Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 95, Windows 98, Windows 98 SE, Windows Me
Microsoft Virtual Machine (VM) Gold, Windows NT4 Service Pack 3, Windows NT4 Service Pack 4, Windows NT4 Service Pack 5, Windows NT4 Service Pack 6a, Windows 95 Gold, Windows 95 SR 2.1, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows Me Gold Not Rated
Oct 11, 2000 WebTV for Windows Denial of Service Vulnerability: MS00-074

Affected Software: Windows Me, Windows 98, Windows 98 SE
Windows Me Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold Not Rated
Oct 11, 2000 Malformed IPX NMPI Packet Vulnerability: MS00-073

Affected Software: Windows Me, Windows 98, Windows 98 SE, Windows 95
Windows Me Gold, Windows 98 Gold, Windows 98 SP1, Windows 98 SE Gold, Windows 95 Gold, Windows 95 SR 2.1, Windows 95 SR 2.5 Not Rated
Oct 10, 2000 Share Level Password Vulnerability: MS00-072

Affected Software: Windows Me, Windows 98, Windows 98 SE, Windows 95
Windows Me Gold, Windows 98 Gold, Windows 98 SE Gold, Windows 95 Gold Not Rated
Oct 5, 2000 Word Mail Merge Vulnerability: MS00-071

Affected Software: Word 2000, Word 97
Office 2000 SR-1a, Office 97 SR-2/SR-2b Not Rated
Oct 3, 2000 Multiple LPC and LPC Ports Vulnerabilities: MS00-070

Affected Software: Windows NT Workstation 4.0, Windows NT Server 4.0, Windows NT Server 4.0, Enterprise Edition, Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows NT4 Service Pack 6a, Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Sep 29, 2000 Simplified Chinese IME State Recognition Vulnerability: MS00-069

Affected Software: Windows 2000 Professional, Windows 2000 Server, Windows 2000 Advanced Server, Windows 2000 Datacenter Server
Windows 2000 Service Pack 1, Windows 2000 Gold Not Rated
Sep 26, 2000 OCX Attachment Vulnerability: MS00-068

Affected Software: Windows Media Player 7.0
Windows Media Player 7.0 Gold Not Rated
Sep 14, 2000 Windows 2000 Telnet Client NTLM Authentication Vulnerability: MS00-067

Affected Software: Windows 200