The Orginal Microsoft Message abot all this:-
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
********************************************************************
Title: Microsoft Security Bulletin Re-Releases, April 2005
Issued: April 12, 2005
********************************************************************
Summary
=======
The following bulletins have undergone a major revision increment.
Please see the appropriate bulletin for more details.
* MS05-002
* MS05-009
Bulletin Information:
=====================
* MS05-002
-
http://www.microsoft.com/technet/security/bulletin/MS05-002.mspx
- Reason for re-release: After the release of the MS05-002
security bulletin, Microsoft became aware of an issue affecting
customers deploying the Windows 98, 98SE and ME security update.
In most cases, the issue caused machines to unexpectedly
restart. Microsoft has investigated this issue and has made
available revised security updates for these platforms. These
revised security updates are available from Windows Update and
the Microsoft Download Center. Customers who have not yet
applied the original version of these updates should visit
Windows Update to receive the revised updates. Customers who
have already applied the original Windows 98, 98SE and ME
security update are advised to install the current revision of
the update from Windows Update.
- Originally posted: January 11, 2005
- Updated: April 12, 2005
- Bulletin Severity Rating: Critical
- Version: 2.0
* MS05-009
-
http://www.microsoft.com/technet/security/bulletin/MS05-009.mspx
- Reason for re-release: Subsequent to the release of this
bulletin, it was determined that the update for Windows
Messenger version 4.7.0.2009 (when running on Windows XP
Service Pack 1) was failing to install when distributed via SMS
or AutoUpdate. The updated package corrects this behavior.
- Originally posted: February 8,2005
- Updated: April 12, 2005
- Bulletin Severity Rating: Critical
- Version: 2.0
********************************************************************
MS05-020 - Cumulative Security Update for Internet Explorer
(890923)
- Affected Software
- Microsoft Windows 2000 Service Pack 3
- Microsoft Windows 2000 Service Pack 4
- Microsoft Windows XP Service Pack 1
- Microsoft Windows XP Service Pack 2
- Microsoft Windows XP 64-Bit Edition Service Pack 1
(Itanium)
- Microsoft Windows XP 64-Bit Edition Version 2003
(Itanium)
- Microsoft Windows Server 2003
- Microsoft Windows Server 2003 for Itanium-based
Systems
Review the FAQ section of bulletin MS05-020 for
information about these operating systems:
- Microsoft Windows 98
- Microsoft Windows 98 Second Edition (SE)
- Microsoft Windows Millennium Edition (ME)
- Affected Components:
- Internet Explorer 5.01 Service Pack 3
- Internet Explorer 5.01 Service Pack 4
- Internet Explorer 5.5 Service Pack 2 on Microsoft
Windows ME
- Internet Explorer 6 Service Pack 1
- Internet Explorer 6 Service Pack 1 (64-Bit Edition)
- Internet Explorer 6 for Windows XP Service Pack 2
- Internet Explorer 6 for Windows Server 2003
- Internet Explorer 6 for Windows Server 2003 for
Itanium-based Systems
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-021 - Vulnerability in Exchange Server Could Allow Remote
Code Execution (894549)
- Affected Software:
- Microsoft Exchange 2000 Server Service Pack 3
- Microsoft Exchange Server 2003
- Microsoft Exchange Server 2003 Service Pack 1
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-022 - Vulnerability in MSN Messenger Could Lead to Remote
Code Execution (896597)
- Affected Software:
- MSN Messenger 6.2
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-023 - Vulnerabilities in Microsoft Word May Lead to Remote
Code Execution (890169)
- Affected Software:
- Microsoft Word 2000
- Microsoft Word 2002
- Microsoft Word 2003
- Microsoft Works Suite 2001
- Microsoft Works Suite 2002
- Microsoft Works Suite 2003
- Microsoft Works Suite 2004
- Impact: Remote Code Execution
- Version Number: 1.0
Important Security Bulletins
============================
MS05-016 - Vulnerability in Windows Shell that Could Allow Remote
Code Execution (893086)
- Affected Software:
- Microsoft Windows 2000 Service Pack 3
- Microsoft Windows 2000 Service Pack 4
- Microsoft Windows XP Service Pack 1
- Microsoft Windows XP Service Pack 2
- Microsoft Windows XP 64-Bit Edition Service Pack 1
(Itanium)
- Microsoft Windows XP 64-Bit Edition Version 2003
(Itanium)
- Microsoft Windows Server 2003
- Microsoft Windows Server 2003 for Itanium-based
Systems
- Review the FAQ section of bulletin MS05-016 for
information about these operating systems:
- Microsoft Windows 98
- Microsoft Windows 98 Second Edition (SE)
- Microsoft Windows Millennium Edition (ME)
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-017 - Vulnerability in MSMQ Could Allow Remote Code Execution
(892944)
- Affected Software:
- Microsoft Windows 2000 Service Pack 3
- Microsoft Windows 2000 Service Pack 4
- Microsoft Windows XP Service Pack 1
- Microsoft Windows XP 64-Bit Edition Service Pack 1
(Itanium)
- Review the FAQ section of bulletin MS05-017 for
information about these operating systems:
- Microsoft Windows 98
- Microsoft Windows 98 Second Edition (SE)
- Impact: Remote Code Execution
- Version Number: 1.0
MS05-018 - Vulnerability in Windows Kernel Could Allow Elevation
of Privilege and Denial of Service (890859)
- Affected Software:
- Microsoft Windows 2000 Service Pack 3
- Microsoft Windows 2000 Service Pack 4
- Microsoft Windows XP Service Pack 1
- Microsoft Windows XP Service Pack 2
- Microsoft Windows XP 64-Bit Edition Service Pack 1
(Itanium)
- Microsoft Windows XP 64-Bit Edition Version 2003
(Itanium)
- Microsoft Windows Server 2003
- Microsoft Windows Server 2003 for Itanium-based
Systems
- Review the FAQ section of bulletin MS05-018 for
information about these operating systems:
- Microsoft Windows 98
- Microsoft Windows 98 Second Edition (SE)
- Microsoft Windows Millennium Edition (ME)
- Impact: Elevation of Privilege
- Version Number: 1.0
Update Availability:
===================
Updates are available to address these issues.
For additional information, including Technical Details, Workarounds, answers to Frequently Asked Questions, and Update Deployment Information please read the Microsoft Security Bulletin Summary for this month at:
http://go.microsoft.com/fwlink/?LinkId=46049
Support:
========
Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates.
International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found
at:
http://support.microsoft.com/common/international.aspx
Additional Resources:
=====================
* Microsoft has created a free monthly e-mail newsletter containing
valuable information to help you protect your network. This
newsletter provides practical security tips, topical security
guidance, useful resources and links, pointers to helpful
community resources, and a forum for you to provide feedback
and ask security-related questions.
You can sign up for the newsletter at:
http://www.microsoft.com/technet/security/secnews/default.mspx
* Microsoft has created a free e-mail notification service that
serves as a supplement to the Security Notification Service
(this e-mail). It provides timely notification of any minor
changes or revisions to previously released Microsoft Security
Bulletins. This new service provides notifications that are
written for IT professionals and contain technical information
about the revisions to security bulletins.
Visit
http://www.microsoft.com to subscribe to this service:
- Click on Subscribe at the top of the page.
- This will direct you via Passport to the Subscription center.
- Under Newsletter Subscriptions you can sign up for the
"Microsoft Security Notification Service: Comprehensive Version".
