Microsoft Security Bulletins

August 2006

Microsoft released 12 new Security Bulletins this month- 9 Critical and 3 Important. Relative to other months and other "Critical" bulletins, some of the August Security Bulletins perhaps warranted a higher classification of "Urgently Critical" or something to the effect. The MS06-040 Security Bulletin in particular, which relates to a flaw in the Server Service, is potentially capable of an exploit that could spread with the speed of the Blaster worm. Exploit code is already in the wild and spreading, so if you have not yet applied these patches, I suggest you do so immediately. I will issue one caveat. There appears to be some issue with the MS06-042 patch causing the Internet Explorer Web browser to crash on some systems, mainly Windows 2000 and Windows XP SP1 (Service Pack 1).

To view a summary of the August bulletins, visit Microsoft Security Bulletin Summary for August, 2006. Click the links below to view the individual Microsoft Security Bulletins and to download any patches that might be required for your system. You can also visit Windows Update to automatically determine what patches or updates your system needs.

• Microsoft Security Bulletin MS06-040
  Vulnerability in Server Service Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-040.mspx

• Microsoft Security Bulletin MS06-041
  Vulnerability in DNS Resolution Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-041.mspx

• Microsoft Security Bulletin MS06-042
  Cumulative Security Update for Internet Explorer
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-042.mspx

• Microsoft Security Bulletin MS06-043
  Vulnerability in Microsoft Windows Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-043.mspx

• Microsoft Security Bulletin MS06-044
  Vulnerability in Microsoft Management Console Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-044.mspx

• Microsoft Security Bulletin MS06-045
  Vulnerability in Windows Explorer Could Allow Remote Code Execution
  Microsoft Criticality: Important
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-045.mspx

• Microsoft Security Bulletin MS06-046
  Vulnerability in HTML Help Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-046.mspx

• Microsoft Security Bulletin MS06-047
  Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-047.mspx

• Microsoft Security Bulletin MS06-048
  Vulnerabilities in Microsoft Office Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-048.mspx

• Microsoft Security Bulletin MS06-049
  Vulnerability in Windows Kernel Could Result in Elevation of Privilege
  Microsoft Criticality: Important
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-049.mspx

• Microsoft Security Bulletin MS06-050
  Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution
  Microsoft Criticality: Important
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-050.mspx

• Microsoft Security Bulletin MS06-051
  Vulnerability in Windows Kernel Could Result in Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms06-051.mspx