MS01-056 Security Bulletin: Details of the vulnerabilites?

From: Adam Warner (lists@CONSULTING.NET.NZ)
Date: 11/20/01 

Message-ID:  <1006229937.341.15.camel@work>
Date:         Tue, 20 Nov 2001 17:18:57 +1300
From: Adam Warner <lists@CONSULTING.NET.NZ>
Subject:      MS01-056 Security Bulletin: Details of the vulnerabilites?
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

http://www.microsoft.com/technet/security/bulletin/MS01-056.asp

I would appreciate if someone from Microsoft could explain what has been
patched in WMP 6.4 and 7.x. I am compiling statistics on these
vulnerabilities and a lack of information is making this difficult.

First off we know MS01-056 contains a fix for this vulnerability:

1. A buffer overflow in the ASF processor.

However the rest of the vulnerabilities are described as:

2. "some additional variants of these vulnerabilities that were
discovered internally by Microsoft." And the "Aggregate severity of all
vulnerabilities eliminated by patch:" are described as critical.

All I would like to know is information about the number and description
of the vulnerabilites (like MS01-031 provides).

You will see how different this report is compared to MS01-031 released
by Microsoft in June:

http://www.microsoft.com/technet/security/bulletin/MS01-031.asp

"This bulletin discusses a total of seven vulnerabilities affecting the
Windows 2000 Telnet service. The vulnerabilities fall into three broad
categories: privilege elevation, denial of service and information
disclosure."

Thanks,
Adam Warner

============================================================================
Delivery co-sponsored by Trend Micro, Inc.
============================================================================
BEST-OF-BREED ANTIVIRUS SOLUTION FOR MICROSOFT EXCHANGE 2000
Earn 5% rebate on licenses purchased for Trend Micro ScanMail for
Microsoft Exchange 2000 between October 1 and November 16. ScanMail
ensures 100% scanning of inbound and outbound traffic and provides
remote software management. For program details or to download your
30-day FREE evaluation copy:
http://www.antivirus.com/banners/tracking.asp?si=53&bi=245&ul=http://www.a
ntivirus.com/smex2000_rebate

Relevant Pages

  • SecurityFocus Microsoft Newsletter #305
    ... Microsoft Office security, part one ... Microsoft Internet Explorer Multiple COM Object Color Property Denial of Service Vulnerabilities ... An attacker may leverage these issues to execute arbitrary server-side script code on an affected computer with the privileges of the webserver process. ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #306
    ... Microsoft Office security, part two ... Microsoft Internet Explorer COM Object Instantiation Daxctle.OCX Heap Buffer Overflow vulnerability. ... Cybozu Garoon Multiple SQL Injection Vulnerabilities ...
    (Focus-Microsoft)
  • Re: [Full-disclosure] Microsofts Real Test with Vista is Vulnerabilities
    ... So if they can earn more from the subscription based security solution where is the incentive to make the OS more secure? ... I am far from a Microsoft marketing expert... ... Microsoft's Real Test with Vista is Vulnerabilities ...
    (Full-Disclosure)
  • SecurityFocus Microsoft Newsletter #360
    ... A Method of Testing VoIP security or Voice VLANs ... MICROSOFT VULNERABILITY SUMMARY ... Online Armor Personal Firewall SSDT Hooks Multiple Local Vulnerabilities ...
    (Focus-Microsoft)
  • [Full-disclosure] Microsofts Real Test with Vista is Vulnerabilities
    ... Vista, the solution to all our problems: Microsoft portrays Vista as ... anything from the end of software vulnerabilities to the end of spyware. ... Last December Noam wrote of eBay bids on an Excel 0day vulnerability, ...
    (Full-Disclosure)