Technical Documentation

Security Center

Microsoft Security Bulletins: Prior Updates

2005 |August |July |June |May |April |March |February |January
2004 |December |November |October |September |August |July |June |May |April |March |February |January
2003 |December |November |October

August 2005

Microsoft Security Bulletin MS05-038

Cumulative Security Update for Internet Explorer (896727)

Severity: Critical
Vulnerabilities:
  • JPEG Image Rendering Memory Corruption Vulnerability - CAN-2005-1988
    A remote code execution vulnerability exists in Internet Explorer because of the way that it handles JPEG images. An attacker could exploit the vulnerability by constructing a malicious JPEG image that could potentially allow remote code execution if a user visited a malicious Web site or viewed a malicious e-mail message. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
  • Web Folder Behaviors Cross-Domain Vulnerability - CAN-2005-1989
    A cross-domain vulnerability exists in Internet Explorer that could allow information disclosure or remote code execution on an affected system. An attacker could exploit the vulnerability by constructing a malicious Web page. The malicious Web page could potentially allow remote code execution if it is viewed by a user. An attacker who successfully exploited this vulnerability could take complete control of an affected system. However, significant user interaction and social engineering is required to exploit this vulnerability.
  • COM Object Instantiation Memory Corruption Vulnerability - CAN-2005-1990
    A remote code execution vulnerability exists in the way Internet Explorer instantiates COM Objects that are not intended to be used in Internet Explorer. An attacker could exploit the vulnerability by constructing a malicious Web page that could potentially allow remote code execution if a user visited the malicious Web site. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Microsoft Security Bulletin MS05-039

Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588)

Severity: Critical
Vulnerabilities:
  • Plug and Play Vulnerability - CAN-2005-1983
    A remote code execution and local privilege elevation vulnerability exists in Plug and Play that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system.

Microsoft Security Bulletin MS05-040

Vulnerability in Windows Telephony Service Could Allow Remote Code Execution (893756)

Severity: Important
Vulnerabilities:
  • TAPI Vulnerability - CAN-2005-0058
    A remote code execution vulnerability exists in Telephony Application Programming Interface (TAPI) that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system.

Microsoft Security Bulletin MS05-041

Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591)

Severity: Moderate
Vulnerabilities:
  • Remote Desktop Protocol Vulnerability - CAN-2005-1218
    A denial of service vulnerability exists that could allow an attacker to send a specially crafted Remote Data Protocol (RDP) message to an affected system. An attacker could cause this system to stop responding.

Microsoft Security Bulletin MS05-042

Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587)

Severity: Moderate
Vulnerabilities:
  • Kerberos Vulnerability - CAN-2005-1981
    A denial of service vulnerability exists that could allow an attacker to send a specially crafted message to a Windows domain controller that could cause the service that is responsible for authenticating users in an Active Directory domain to stop responding.
  • PKINIT Vulnerability - CAN-2005-1982
    This is an information disclosure and spoofing vulnerability. This vulnerability could allow an attacker to tamper with certain information that is sent from a domain controller and potentially access sensitive client network communication. Users could believe they are accessing a trusted server when in reality they are accessing a malicious server. However, an attacker would first have to inject themselves into the middle of an authentication session between a client and a domain controller.

Microsoft Security Bulletin MS05-043

Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423)

Severity: Critical
Vulnerabilities:
  • Print Spooler Vulnerability - CAN-2005-1984
    A remote code execution vulnerability exists in the Printer Spooler service that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system.