Three critical patches and an updated maliscious software removal tool are being released today, via Windows Updates. If you have turned on Automatic Updates they will be pushed to you sometime today. These updates will require you to reboot your computers to complete the updates.
If you have a validly licensed and activated copy of Windows XP you can obtain these patches manually by running Internet Explorer > Tools > Windows Updates.
------------------
Bob "Wiz" Feinberg
Moderator of the SGF Computers Forum
<small>Visit my Wiztunes Steel Guitar website at: http://www.wiztunes.com/
or my computer troubleshooting website: Wizcrafts Computer Services,
or my Webmaster Services webpage.
Learn about current computer virus and security threats here.
Read Wiz's Blog for security news and update notices</small>
Today is Microsoft Patch Tuesday
Moderator: Wiz Feinberg
-
Wiz Feinberg
- Posts: 6113
- Joined: 8 Jan 1999 1:01 am
- Location: Mid-Michigan, USA
-
Wiz Feinberg
- Posts: 6113
- Joined: 8 Jan 1999 1:01 am
- Location: Mid-Michigan, USA
VU#945060 - Adobe Flash products contain multiple vulnerabilities
Several vulnerabilities in Adobe Macromedia Flash products may allow a remote attacker to execute code on a vulnerable system.
(CVE-2006-0024)
VU#146284 - Macromedia Flash Player fails to properly validate the frame type identifier read from a "SWF" file
A buffer overflow vulnerability in some versions of the Macromedia Flash Player may allow a remote attacker to execute code on a vulnerable system.
(CVE-2005-2628)
II. Impact
A remote, unauthenticated attacker could execute arbitrary code on a vulnerable system. An attacker may also be able to cause a denial of service.
III. Solution
Apply Updates
Microsoft has provided updates for these vulnerabilities in the Security Bulletins. Microsoft Windows updates are available on the Microsoft Update site.
Several vulnerabilities in Adobe Macromedia Flash products may allow a remote attacker to execute code on a vulnerable system.
(CVE-2006-0024)
VU#146284 - Macromedia Flash Player fails to properly validate the frame type identifier read from a "SWF" file
A buffer overflow vulnerability in some versions of the Macromedia Flash Player may allow a remote attacker to execute code on a vulnerable system.
(CVE-2005-2628)
II. Impact
A remote, unauthenticated attacker could execute arbitrary code on a vulnerable system. An attacker may also be able to cause a denial of service.
III. Solution
Apply Updates
Microsoft has provided updates for these vulnerabilities in the Security Bulletins. Microsoft Windows updates are available on the Microsoft Update site.