Microsoft Security Bulletins

Microsoft released 10 new Security Bulletins this month with patches to fix 12 new vulnerabilities. Three of the bulletins are ranked as Critical by Microsoft, 4 are Important and the remaining 3 are Moderate.

The MS05-025 Security Bulletin comes with the ever-popular "cumulative update for Internet Explorer" patch. Aside from repairing all previous holes and flaws, the patch also addresses 2 new vulnerabilities which could allow an attacker to install programs; view, change, or delete data; or create new accounts with full user rights if the user has administrative privileges on the computer.

The other two Critical bulletins are related to issues with HTML Help and SMB (used by NetBIOS to share files and folders). Like the Internet Explorer vulnerabilities, these can each be exploited remotely and may result in an attacker being able to take complete control of the vulnerable target system.

To view a summary of the June bulletin, visit Microsoft Security Bulletin Summary for June, 2005. Click the links below to view the individual Microsoft Security Bulletins and to download any patches that might be required for your system. You can also visit Windows Update to automatically determine what patches or updates your system needs.

• Microsoft Security Bulletin MS05-025
  Cumulative Security Update for Internet Explorer
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-025.mspx

• Microsoft Security Bulletin MS05-026
  Vulnerability in HTML Help Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-026.mspx

• Microsoft Security Bulletin MS05-027
  Vulnerability in SMB Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-027.mspx

• Microsoft Security Bulletin MS05-029
  Vulnerability in Outlook Web Access for Exchange Server 5.5 Could Allow Cross-Site Scripting Attacks
  Microsoft Criticality: Important
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-029.mspx

• Microsoft Security Bulletin MS05-030
  Cumulative Security Update for Outlook Express
  Microsoft Criticality: Important
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-030.mspx

• Microsoft Security Bulletin MS05-031
  Vulnerability in Microsoft Windows Interactive Training Could Allow Remote Code Execution
  Microsoft Criticality: Important
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-031.mspx

• Microsoft Security Bulletin MS05-032
  Vulnerability in Microsoft Agent Could Allow Spoofing
  Microsoft Criticality: Moderate
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx

• Microsoft Security Bulletin MS05-033
  Vulnerability in Telnet Client Could Allow Information Disclosure
  Microsoft Criticality: Moderate
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-033.mspx

• Microsoft Security Bulletin MS05-034
  Cumulative Security Update for ISA Server 2000
  Microsoft Criticality: Moderate
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-034.mspx