Microsoft Security Bulletins

Three seems like a reasonable number of bulletins in a month for Micrsofot. There have been as few as zero some months and more than 10 new security bulletins in other months. Three is fair. But, all three of the security bulletins issued by Microsoft for July of 2005 are rated as Critical and two of the three already have known exploit code available.

Both MS05-036, which pertains to the Microsoft Color Management Module, and MS05-037 regarding a vulnerability in the JView Profiler have known exploits in the wild. MS05-035, regarding an issue with older versions of Microsoft Word also poses a serious threat for some because the affected versions are still widely in use. All three of the vulnerabilities are remotely exploitable and could potentially lead to an attacker taking complete control of a vulnerable system.

To view a summary of the July bulletins, visit Microsoft Security Bulletin Summary for July, 2005. Click the links below to view the individual Microsoft Security Bulletins and to download any patches that might be required for your system. You can also visit Windows Update to automatically determine what patches or updates your system needs.

• Microsoft Security Bulletin MS05-035
  Vulnerability in Microsoft Word Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-035.mspx

• Microsoft Security Bulletin MS05-036
  Vulnerability in Microsoft Color Management Module Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-036.mspx

• Microsoft Security Bulletin MS05-037
  Vulnerability in JView Profiler Could Allow Remote Code Execution
  Microsoft Criticality: Critical
  
  • http://www.microsoft.com/technet/security/bulletin/ms05-037.mspx