MinorRev: Microsoft Security Bulletin MS03-041 - Vulnerability in Authenticode Verification Could Allow Remote Code Execution (823182)

From: Russ (Russ.Cooper_at_RC.ON.CA)
Date: 10/24/03

  • Next message: Russ: "MinorRev: Microsoft Security Bulletin MS03-043 - Buffer Overrun in Messenger Service Could Allow Code Execution (828035)" 
    Date:         Fri, 24 Oct 2003 08:27:29 -0400
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    Reason for Revision:
    V1.1 October 22, 2003: Updated "File Information" in the "Windows 2000"
    section of "Security Patch Information."

    Microsoft Security Bulletin MS03-041:
    Vulnerability in Authenticode Verification Could Allow Remote Code
    Execution (823182)

    Bulletin URL:
    http://www.microsoft.com/technet/security/bulletin/MS03-041.asp

    Summary:
      Version Number: V1.1
      Revision Date: 10-22-2003
      Impact of Vulnerability: Remote Code Execution
      Maximum Severity Rating: Critical
      Patch(es) Replaced: None
      Caveats: None
      CVE Number(s): CAN-2003-0660

    Tested Software:
      Affected Software:
      * Microsoft Windows NT Workstation 4.0, Service Pack 6a
    <http://www.ntbugtraq.com/link/921466F5-BC40-4E8E-BB57-6B81B57C21B6.asp>
      * Microsoft Windows NT Server 4.0, Service Pack 6a
    <http://www.ntbugtraq.com/link/21F64FF0-9175-42BE-A8E4-BDC59A98BDF2.asp>
      * Microsoft Windows NT Server 4.0, Terminal Server Edition, Service
    Pack 6
    <http://www.ntbugtraq.com/link/C6688576-4682-4A30-BBD7-1817F2944890.asp>
      * Microsoft Windows 2000, Service Pack 2
    <http://www.ntbugtraq.com/link/C862E049-58B2-4486-8D98-23183D7EE17D.asp>
      * Microsoft Windows 2000, Service Pack 3, Service Pack 4
    <http://www.ntbugtraq.com/link/90D27AEC-7D2A-45FD-B85A-E98E574338F1.asp>
      * Microsoft Windows XP Gold, Service Pack 1
    <http://www.ntbugtraq.com/link/6CDF5303-D767-4D68-9BA7-055E93E87847.asp>
      * Microsoft Windows XP 64-bit Edition
    <http://www.ntbugtraq.com/link/D92EF2E8-C03A-43C0-B428-D76C4B669151.asp>
      * Microsoft Windows XP 64-bit Edition Version 2003
    <http://www.ntbugtraq.com/link/4DFF5AAB-FA62-4B81-9C08-5C9FCB905E11.asp>
      * Microsoft Windows Server 2003
    <http://www.ntbugtraq.com/link/135D8C00-7B4B-4C21-8EAA-D58814635E0D.asp>
      * Microsoft Windows Server 2003 64-bit Edition
    <http://www.ntbugtraq.com/link/4DFF5AAB-FA62-4B81-9C08-5C9FCB905E11.asp>

      Software Not Affected:
      * Microsoft Windows Millennium Edition

    This email is sent to NTBugtraq automatically as a service to my
    subscribers. (v2.0)

    Cheers,
    Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor 

    ----
NTBugtraq subscribers save $103.00 off the TICSA exam by using promo
code "NT1003" when registering to take the TICSA exam at www.2test.com.
Prove to your employer and peers that you have the knowledge and
abilities to be an active stakeholder in today's enterprise security.
Become TICSA certified www.trusecure.com/ticsa.  Promotion expires
12/31/03 and cannot be used in combination with other offers.
----
  • Next message: Russ: "MinorRev: Microsoft Security Bulletin MS03-043 - Buffer Overrun in Messenger Service Could Allow Code Execution (828035)"

    Relevant Pages