[Full-Disclosure] 4 new Microsoft patches to close 20 vulnerabilities

From: Thor Larholm (thor_at_pivx.com)
Date: 04/14/04

  • Next message: Bill Royds: "RE: [Full-Disclosure] Decode Messenger conversations from logs" 
    To: <full-disclosure@lists.netsys.com>
Date: Tue, 13 Apr 2004 17:37:16 -0700

    4 new Microsoft patches to close 20 vulnerabilities

    It's patch Tuesday in Redmond and this April we have seen the release of
    MS04-011, MS04-012, MS04-013 and MS04-014. Microsoft has given all of
    these patches an impact of "Remote Code Execution" and the affected
    software ranges from Windows 98 to Windows 2003 64-Bit Edition.

    If you use Windows you will have to patch, preferable today. This week
    will see a wide range of vulnerability advisories and exploit releases.
    The documented functionality changes are few and minor.

    Currently, these patches are not available on Windows Update (11:25AM
    pacific time), but I can only imagine that it is a matter of hours. They
    can be retrieved with MBSA, SMS and a wide range of patch management
    applications.

    The broad summary can be found at

    http://www.microsoft.com/technet/security/bulletin/winapr04.mspx

    Most of these vulnerabilities are new, but some of them are already
    known - as an example MS04-013 patches the massively exploited MHTML/CHM
    related vulnerabilities that was used by Ibiza, Bugbear.e and a wide
    range of trojans.

    In all, these 4 patches fix 20 vulnerabilities and replace 19 existing
    patches.

    MS04-011
    ========
    LSASS Vulnerability - CAN-2003-0533
    LDAP Vulnerability - CAN-2003-0663
    PCT Vulnerability - CAN-2003-0719
    Winlogon Vulnerability - CAN-2003-0806
    Metafile Vulnerability - CAN-2003-0906
    Help and Support Center Vulnerability - CAN-2003-0907
    Utility Manager Vulnerability - CAN-2003-0908
    Windows Management Vulnerability - CAN-2003-0909
    Local Descriptor Table Vulnerability - CAN-2003-0910
    H.323 Vulnerability* - CAN-2004-0117
    Virtual DOS Machine Vulnerability - CAN-2004-0118
    Negotiate SSP Vulnerability - CAN-2004-0119
    SSL Vulnerability - CAN-2004-0120
    ASN.1 "Double Free" Vulnerability - CAN-2004-0123

    MS04-012
    ========
    RPC Runtime Library Vulnerability - CAN-2003-0813
    RPCSS Service Vulnerability - CAN-2004-0116
    COM Internet Services (CIS) - RPC over HTTP Vulnerability -
    CAN-2003-0807 Object Identity Vulnerability - CAN-2004-0124

    MS04-013
    ========
    MHTML URL Processing Vulnerability - CAN-2004-0380

    MS04-014
    ========
    Jet Vulnerability - CAN-2004-0197

    Regards

    Thor Larholm
    Senior Security Researcher
    PivX Solutions
    24 Corporate Plaza #180
    Newport Beach, CA 92660
    http://www.pivx.com
    thor@pivx.com
    Phone: +1 (949) 231-8496
    PGP: 0x5A276569
    6BB1 B77F CB62 0D3D 5A82 C65D E1A4 157C 5A27 6569

    PivX defines "Proactive Threat Mitigation". Get a FREE Beta Version of
    Qwik-Fix <http://www.qwik-fix.net>

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Bill Royds: "RE: [Full-Disclosure] Decode Messenger conversations from logs"

    Relevant Pages

    • Re: Patch to fix the latest Windows XP WMG meta file vulnerability.
      ... Then I downloaded the patch test program and ran it. ... >Windows WMF Vulnerability News & Updates ... > Ilfak has produced a WMF Vulnerability Checker? ...
      (misc.survivalism)
    • Vulnerability Details for MS02-012
      ... Microsoft released a patch for a denial of service ... vulnerability in the Windows 2000 SMTP component. ... This bug affects all Windows 2000 systems running the SMTP service that have ...
      (Bugtraq)
    • Update: MS05-011 EEYE: Windows SMB Client Transaction Response Handling Vulnerability
      ... Windows NT 4.0 was found to be vulnerable to bugs resolved in the ... MS05-011 patch. ... SMB protocol that most attack tools I have seen do not support. ... http://eEye.com/Blink - End-Point Vulnerability Prevention ...
      (Bugtraq)
    • New internet worm
      ... If you are unsure if you have the latest security patch check here: ... Windows 2000 machines. ... Microsoft made a patch for this ... Description of the Vulnerability and the Patch in Microsoft Security ...
      (alt.support.arthritis)
    • Re: My MS04-028 FAQ
      ... The more of them you run, the more of them you patch. ... > critical patches as this one, why didn't MS issue a Security Bulletin ... Does this vulnerability affect only MS sw? ... How many more MS apps are going to get their own patches for this ...
      (microsoft.public.security)