MinorRev: Microsoft Security Bulletin MS03-043 - Buffer Overrun in Messenger Service Could Allow Code Execution (828035)

• Previous message: Russ: "MinorRev: Microsoft Security Bulletin MS03-041 - Vulnerability in Authenticode Verification Could Allow Remote Code Execution (823182)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Fri, 24 Oct 2003 08:30:26 -0400
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

Reason for Revision:
V1.1 October 22, 2003: Updated the security patch supports in the
"Security Patch Information" section for Windows Server 2003, Windows
XP, and Windows 2000.

Microsoft Security Bulletin MS03-043:
Buffer Overrun in Messenger Service Could Allow Code Execution (828035)

Bulletin URL:
http://www.microsoft.com/technet/security/bulletin/MS03-043.asp

Summary:
  Version Number: V1.1
  Revision Date: 10-22-2003
  Impact of Vulnerability: Remote Code Execution
  Maximum Severity Rating: Critical
  Patch(es) Replaced: None
  Caveats: None
  CVE Number(s): CAN-2003-0717

Tested Software:
  Affected Software:
  * Microsoft Windows NT Workstation 4.0, Service Pack 6a
<http://www.ntbugtraq.com/link/7597FCF4-6615-4074-9E46-A17D808ED38D.asp>
  * Microsoft Windows NT Server 4.0, Service Pack 6a
<http://www.ntbugtraq.com/link/B1949456-996A-485A-9A28-79FD79F26A1B.asp>
  * Microsoft Windows NT Server 4.0, Terminal Server Edition, Service
Pack 6
<http://www.ntbugtraq.com/link/64AB4B66-1A6E-4264-93A8-26CDB98B05A8.asp>
  * Microsoft Windows 2000, Service Pack 2
<http://www.ntbugtraq.com/link/A0061377-1683-4C13-9527-5534F6C7CF85.asp>
  * Microsoft Windows 2000, Service Pack 3, Service Pack 4
<http://www.ntbugtraq.com/link/99F1B40D-906A-4945-A021-4B494CCCBDE0.asp>
  * Microsoft Windows XP Gold, Service Pack 1
<http://www.ntbugtraq.com/link/F02DA309-4B0A-4438-A0B9-5B67414C3833.asp>
  * Microsoft Windows XP 64-bit Edition
<http://www.ntbugtraq.com/link/2BE95254-4C65-4CA5-80A5-55FDF5AA2296.asp>
  * Microsoft Windows XP 64-bit Edition Version 2003
<http://www.ntbugtraq.com/link/8B990946-84C8-4C91-899C-5A44EC13174E.asp>
  * Microsoft Windows Server 2003
<http://www.ntbugtraq.com/link/1DF106F3-7EC4-4EB0-9143-C1E3C9E2F5F8.asp>
  * Microsoft Windows Server 2003 64-bit Edition
<http://www.ntbugtraq.com/link/8B990946-84C8-4C91-899C-5A44EC13174E.asp>

  Software Not Affected:
  * Microsoft Windows Millennium Edition

This email is sent to NTBugtraq automatically as a service to my
subscribers. (v2.0)

Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

----
NTBugtraq subscribers save $103.00 off the TICSA exam by using promo
code "NT1003" when registering to take the TICSA exam at www.2test.com.
Prove to your employer and peers that you have the knowledge and
abilities to be an active stakeholder in today's enterprise security.
Become TICSA certified www.trusecure.com/ticsa.  Promotion expires
12/31/03 and cannot be used in combination with other offers.
----

• Previous message: Russ: "MinorRev: Microsoft Security Bulletin MS03-041 - Vulnerability in Authenticode Verification Could Allow Remote Code Execution (823182)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]