Content

Security Vulnerabilities

We send out security updates to inform you of new vulnerabilities, so you can take steps to upgrade your protection. Security updates include complete descriptions of these vulnerabilities, symptoms, methods of infection, and recommendations for remediation, including links to DAT file updates.

Name Release Date
Microsoft Kernel GDI Remap Vulnerability 2006/11/06
Microsoft XML Core Services Remote Code Execution Vulnerability 2006/11/03
Microsoft Visual Studio 2005 ActiveX Object 0-Day 2006/11/01
Microsoft Windows Internet Connection Sharing Denial-of-Service 2006/10/31
Microsoft Internet Explorer ADODB.connection 0-Day Vulnerability 2006/10/30
Microsoft Internet Explorer Popup Address Bar Spoofing Vulnerability 2006/10/27
Microsoft PowerPoint 2003 Zero-Day Vulnerability 2006/10/12
(MS06-065) Microsoft Object Packager Dialogue Spoofing Vulnerability (924496) 2006/10/10
(MS06-064) Microsoft Spoofed Connection Request Vulnerability (922819) 2006/10/10
(MS06-064) Microsoft TCP Connection Reset Vulnerability (922819) 2006/10/10
(MS06-064) Microsoft ICMP Connection Reset Vulnerability (922819) 2006/10/10
(MS06-063) Microsoft SMB Rename Vulnerability (923414) 2006/10/10
(MS06-063) Server Service Denial of Service Vulnerability (923414) 2006/10/10
(MS06-062) Microsoft Office Smart Tag Parsing Vulnerability (922581) 2006/10/10
(MS06-062) Microsoft Office Malformed Record Memory Corruption Vulnerability (922581) 2006/10/10
(MS06-062) Microsoft Office Malformed Chart Record Vulnerability (922581) 2006/10/10
(MS06-062) Microsoft Office Improper Memory Access Vulnerability (922581) 2006/10/10
(MS06-061) Microsoft XSLT Buffer Overrun Vulnerability (924191) 2006/10/10
(MS06-061) Microsoft XML Core Services Vulnerability (924191) 2006/10/10
(MS06-060) Microsoft Word for Mac Vulnerability (924554) 2006/10/10
(MS06-060) Microsoft Word Malformed Stack Vulnerability (924554) 2006/10/10
(MS06-060) Microsoft Word Mail Merge Vulnerability (924554) 2006/10/10
(MS06-060) Microsoft Word Vulnerability (924554) 2006/10/10
(MS06-059) Microsoft Excel Malformed COLINFO Record Vulnerability (924164) 2006/10/10
(MS06-059) Microsoft Excel Handling of Lotus 1-2-3 File Vulnerability (924164) 2006/10/10
(MS06-059) Microsoft Excel Malformed STYLE Record Vulnerability (924164) 2006/10/10
(MS06-059) Microsoft Excel Malformed DATETIME Record Vulnerability (924164) 2006/10/10
(MS06-058) Microsoft PowerPoint Malformed Record Vulnerability (924163) 2006/10/10
(MS06-058) Microsoft PowerPoint Malformed Record Memory Corruption Vulnerability (924163) 2006/10/10
(MS06-058) Microsoft PowerPoint Malformed Data Record Vulnerability (924163) 2006/10/10
(MS06-058) Microsoft PowerPoint Malformed Object Pointer Vulnerability (924163) 2006/10/10
(MS06-057) Microsoft Windows Shell Remote Code Execution Vulnerability (923191) 2006/10/10
(MS06-056) Microsoft .NET Framework 2.0 Cross-Site Scripting Vulnerability (922770) 2006/10/10
(MS06-055) Microsoft Vector Markup Language Vulnerability (925486) 2006/09/19
Microsoft Internet Explorer DirectAnimation Path COM Object 0-Day 2006/09/13
(MS06-054) Microsoft Publisher Vulnerability (910729) 2006/09/12
(MS06-053) Microsoft Windows Indexing Service Vulnerability (920685) 2006/09/12
(MS06-052) Microsoft Windows PGM Code Execution Vulnerability (919007) 2006/09/12
(MS06-051) Windows Kernel Unhandled Exception Vulnerability (KB917422) 2006/08/08
(MS06-051) Windows Kernel User Profile Elevation of Privilege Vulnerability (KB917422) 2006/08/08
(MS06-050) Hyperlink Object Function Vulnerability (KB920670) 2006/08/08
(MS06-050) Microsoft Windows Hyperlink Object Buffer Overflow (KB920670) 2006/08/08
(MS06-049) Microsoft Windows 2000 Kernel Buffer Overflow (KB920958) 2006/08/08
(MS06-048) Microsoft PowerPoint Malformed Records Vulnerability (KB922968) 2006/08/08
(MS06-048) Microsoft PowerPoint Mso.dll Vulnerability (KB922968) 2006/08/08
(MS06-047) Visual Basic for Applications Vulnerability (KB921645) 2006/08/08
(MS06-046) Microsoft Windows Buffer Overrun in HTML Help Vulnerability (KB922616) 2006/08/08
(MS06-045) Windows Explorer Folder GUID Code Execution Vulnerability (KB921398) 2006/08/08
(MS06-044) Microsoft Management Console Redirect Cross-Site Scripting Vulnerability (KB917008) 2006/08/08
(MS06-043) Microsoft Outlook Express MHTML Parsing Vulnerability (KB920214) 2006/08/08
(MS06-042) Microsoft Internet Explorer Long URL Buffer Overflow Vulnerability II (918899) 2006/09/12
(MS06-042) Microsoft Internet Explorer Long URL Buffer Overflow Vulnerability I (918899) 2006/08/24
(MS06-042) Microsoft Internet Explorer FTP Server Command Injection Vulnerability (KB918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer Window Location Information Disclosure Vulnerability (KB918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer Source Element Cross-Domain Vulnerability (KB918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer COM Object Instantiation Memory Corruption Vulnerability (KB918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer HTML Rendering Memory Corruption Vulnerability (KB918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer CSS Memory Corruption Vulnerability (KB918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer HTML Layout and Positioning Memory Corruption Vulnerability (KB 918899) 2006/08/08
(MS06-042) Microsoft Internet Explorer Redirect Cross-Domain Information Disclosure Vulnerability (KB918899) 2006/08/08
(MS06-041) Microsoft DNS Client Buffer Overrun Vulnerability (KB920683) 2006/08/08
(MS06-041) Microsoft Winsock Hostname Vulnerability (KB920683) 2006/08/08
(MS06-040) Microsoft Windows Server Service Buffer Overflow (KB921883) 2006/08/08
(MS06-039) Microsoft Office Remote Code Execution Using a Malformed GIF Vulnerability (915384) 2006/07/11
(MS06-039) Microsoft Office Remote Code Execution Using a Malformed PNG Vulnerability (915384) 2006/07/11
(MS06-038) Microsoft Office Property Vulnerability (917284) 2006/07/11
(MS06-038) Microsoft Office Parsing Vulnerability (917284) 2006/07/11
(MS06-038) Microsoft Office Malformed String Parsing Vulnerability (917284) 2006/07/11
(MS06-037) Microsoft Excel Malformed Chart File Vulnerability (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed File Vulnerability (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed LABEL record Vulnerability (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed FNGROUPCOUNT value Vulnerability (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed OBJECT record Vulnerability (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed COLINFO Record Vulnerability (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed SELECTION record Vulnerability II (917285) 2006/07/11
(MS06-037) Microsoft Excel Malformed SELECTION record Vulnerability I (917285) 2006/07/11
(MS06-036) Microsoft DHCP Client Service Vulnerability (914388) 2006/07/11
(MS06-035) Microsoft Server Service SMB Information Disclosure Vulnerability (917159) 2006/07/11
(MS06-035) Microsoft Server Service Mailslot Heap Overflow (917159) 2006/07/11
(MS06-034) Internet Information Services using Malformed Active Server Pages Vulnerability (917537) 2006/07/11
(MS06-033) Microsoft ASP.NET Application Folder Information Disclosure Vulnerability (917283) 2006/07/11
(MS06-032) Microsoft TCP/IP Vulnerability (917953) 2006/06/13
(MS06-031) Microsoft RPC Mutual Authentication Vulnerability (917736) 2006/06/13
(MS06-030) Microsoft Server Message Block Invalid Handle Vulnerability (917159) 2006/06/13
(MS06-030) Microsoft Server Message Block Driver Privilege Escalation (914389) 2006/06/13
(MS06-029) Microsoft Exchange Server Running Outlook Web Access Vulnerability (912442) 2006/06/13
(MS06-028) Microsoft PowerPoint Vulnerability (916768) 2006/06/13
(MS06-027) Microsoft Word Code Execution Vulnerability (917336) 2006/06/13
(MS06-026) Microsoft Graphics Rendering Engine Vulnerability (918547) 2006/06/13
(MS06-025) Microsoft RRAS Registry Corruption (911280) 2006/06/13
(MS06-025) Microsoft RRAS Memory Corruption (911280) 2006/06/13
(MS06-024) Microsoft Windows Media Player Vulnerability (917734) 2006/06/13
(MS06-023) Microsoft JScript Vulnerability (917344) 2006/06/13
(MS06-022) Microsoft ART Image Rendering Vulnerability (918439) 2006/06/13
(MS06-021) Microsoft Internet Explorer Exception Handling Vulnerability 2006/06/13
(MS06-021) Microsoft Internet Explorer HTML Decoding Memory Corruption 2006/06/13
(MS06-021) Microsoft Internet Explorer ActiveX Control Memory Corruption 2006/06/13
(MS06-021) Microsoft Internet Explorer COM Object Vulnerability 2006/06/13
(MS06-021) Microsoft Internet Explorer Cascading Style Sheets Vulnerability 2006/06/13
(MS06-021) Microsoft Internet Explorer Address Bar Spoof and Information Disclosure 2006/06/13
(MS06-021) Microsoft Internet Explorer MHT Memory Corruption 2006/06/13
(MS06-021) Microsoft Internet Explorer Address Bar Spoofing 2006/06/13
(MS06-020) Macromedia Flash Player Invalid Memory Access 2006/05/09
(MS06-020) Macromedia Flash Player Frame Type Identifier Handling Vulnerability 2006/05/09
(MS06-019) Microsoft Exchange Calendar Parsing Vulnerability 2006/05/09
(MS06-018) Microsoft Windows MSDTC Invalid Memory Access DoS Vulnerability 2006/05/09
(MS06-018) Microsoft Windows MSDTC Stack Overflow DoS Vulnerability 2006/05/09
(MS06-017) Microsoft FrontPage Server Extensions Cross Site Scripting 2006/04/11
(MS06-016) Microsoft Outlook Express Windows Address Book Code Execution 2006/04/11
(MS06-015) Microsoft Windows Explorer Remote COM Activation desktop.ini Vulnerability 2006/04/11
(MS06-015) Microsoft Windows Explorer Remote COM Activation by GUID Folder Name Vulnerability 2006/04/11
(MS06-014) Microsoft Data Access Components (MDAC) Function Could Allow Code Execution 2006/04/11
(MS06-013) Microsoft Internet Explorer createTextRange Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer Multiple Event Handler Memory Corruption Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer HTA Execution Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer HTML Parsing Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer COM Object Instantiation Memory Corruption Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer HTML PRE Tag Memory Corruption Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer Double Byte Character Parsing Memory Corruption Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer Script Execution Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer Cross-Domain Information Disclosure Vulnerability 2006/04/11
(MS06-013) Microsoft Internet Explorer Address Bar Spoofing Vulnerability 2006/04/11
(MS06-012) Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (905413) - Excel Vulnerabilities 2006/03/14
(MS06-012) Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (905413) - Routing Slip Vulnerability 2006/03/14
(MS06-011) Permissive Windows Services DACLs Could Allow Elevation of Privilege (914798) 2006/03/14
MS06-010 - Vulnerability in PowerPoint 2000 Could Allow Information Disclosure (889167) 2006/02/14
(MS06-009) Vulnerability in the Korean Input Method Editor Could Allow Elevation of Privilege (901190) 2006/02/14
(MS06-008) Vulnerability in Web Client Service Could Allow Remote Code Execution (911927) 2006/02/14
(MS06-007) Vulnerability in TCP/IP Could Allow Denial of Service (913446) 2006/02/14
(MS06-006) Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564) 2006/02/14
(MS06-005) Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565) 2006/02/14
(MS06-004) Cumulative Security Update for Internet Explorer (910620) 2006/02/14
(MS06-003) Vulnerability in TNEF Decoding in Microsoft Outlook and Microsoft Exchange Could Allow Remote Code Execution (902412) 2006/01/10
(MS06-002) Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution (908519) 2006/01/10
(MS06-001) Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (912919) 2006/01/05
MS05-055 - Vulnerability in Windows Kernel Could Allow Elevation of Privilege (908523) 2005/12/13
MS05-054 - Cumulative Security Update for Internet Explorer (905915) 2005/12/13
MS05-053 - Vulnerabilities in Graphics Rendering Engine Could Allow Code Execution (896424) 2005/11/08
MS05-052 - Cumulative Security Update for Internet Explorer(896688) 2005/10/11
MS05-051 - Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution (902400) 2005/10/11
MS05-050 - Vulnerability in DirectShow Could Allow Remote Code Execution (904706) 2005/10/11
MS05-049 - Vulnerabilities in Windows Shell Could Allow Remote Code Execution (900725) 2005/10/11
MS05-048 - Vulnerability in the Microsoft Collaboration Data Objects Could Allow Remote Code Execution (907245) 2005/10/11
MS05-047 - Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) 2005/10/11
MS05-046 - Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) 2005/10/11
MS05-045 - Vulnerability in Network Connection Manager Could Allow Denial of Service (905414) 2005/10/11
MS05-044 - Vulnerability in the Windows FTP Client Could Allow File Transfer Location Tampering (905495) 2005/10/11
MS05-043 - Vulnerability in the Print Spooler Service Could Allow Remote Code Execution (896423) 2005/08/09
MS05-042 - Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587) 2005/08/09
MS05-041 - Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) 2005/08/09
MS05-040 - Vulnerability in Windows Telephony Service Could Allow Remote Code Execution (893756) 2005/08/09
MS05-039 - Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588) 2005/08/09
MS05-038 - Cumulative Security Update for Internet Explorer (896727) 2005/08/09
MS05-037 - Vulnerability in JView Profiler Could Allow Remote Code Execution (903235) 2005/07/12
MS05-036 - Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution (901214) 2005/07/12
MS05-035 - Vulnerability in Microsoft Word Could Allow Remote Code Execution (903672) 2005/07/12
MS05-034 - Cumulative Security Update for ISA Server 2000 (899753) 2005/06/14
MS05-033 - Vulnerability in Telnet Client Could Allow Information Disclosure (896428) 2005/06/14
MS05-032 - Vulnerability in Microsoft Agent Could Allow Spoofing (890046) 2005/06/14
MS05-031 - Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (898458) 2005/06/14
MS05-030 - Vulnerability in Outlook Express Could Allow Remote Code Execution (897715) 2005/06/14
MS05-029 - Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks (895179) 2005/06/14
MS05-028 - Vulnerability in Web Client Service Could Allow Elevation of Privilege (896426) 2005/06/14
MS05-027 - Vulnerability in Server Message Block Could Allow Remote Code Execution (896422) 2005/06/14
MS05-026 - Vulnerability in HTML Help Could Allow Remote Code Execution (896358) 2005/06/14
MS05-025 - Cumulative Security Update for Internet Explorer (883939) 2005/06/14
MS05-024 - Vulnerability in Web View Could Allow Remote Code Execution (894320) 2005/05/10
MS05-023 - Vulnerabilities in Microsoft Word May Lead to Remote Code Execution (890169) 2005/04/12
MS05-022 - Vulnerability in MSN Messenger Could Lead to Remote Code Execution (896597) 2005/04/12
MS05-021 - Vulnerability in Exchange Server Could Allow Remote Code Execution (894549) 2005/04/12
MS05-020 - Cumulative Security Update for Internet Explorer (890923) 2005/04/12
MS05-019 - Vulnerabilities in TCP/IP Could Allow Remote Code Execution and Denial of Service (893066) 2005/04/12
MS05-018 - Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859) 2005/04/12
MS05-017 - Vulnerability in Message Queuing Could Allow Code Execution (892944) 2005/04/12
MS05-016 - Vulnerability in Windows Shell that Could Allow Remote Code Execution (893086) 2005/04/12
MS05-015 - Vulnerability in Hyperlink Object Library Could Allow Remote Code Execution (888113) 2005/02/08
MS05-014 - Cumulative Security Update for Internet Explorer (867282) 2005/02/08
MS05-013 - Vulnerability in the DHTML Editing ActiveX Control could allow code execution (891781) 2005/02/08
MS05-012 - Vulnerability in OLE and COM Could Allow Remote Code Execution (873333) 2005/02/08
MS05-011 - Vulnerability in Server Message Block Could Allow Remote Code Execution (885250) 2005/02/08
MS05-010 - Vulnerability in the License Logging Service Could Allow Code Execution (885834) 2005/02/08
MS05-009 - Vulnerability in PNG Processing Could Lead to Buffer Overrun (890261) 2005/02/08
MS05-008 - Vulnerability in Windows Shell Could Allow Remote Code Execution (890047) 2005/02/08
MS05-007 - Vulnerability in Windows Could Allow Information Disclosure (888302) 2005/02/08
MS05-006 - Vulnerability in Windows SharePoint Services and SharePoint Team Services Could Allow Cross-Site Scripting and Spoofing Attacks (887891) 2005/02/08
MS05-005 - Vulnerability in Microsoft Office XP could lead to Buffer Overrun (873352) 2005/02/08
MS05-004 - ASP.NET Path Validation Vulnerability (887219) 2005/02/08
MS05-003 - Vulnerability in the Indexing Service Could Allow Remote Code Execution (871250) 2005/01/11
MS05-002 - Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711) 2005/01/11
MS05-001 - Vulnerability in HTML Help Could Allow Code Execution (890175) 2005/01/11