MajorRev: Microsoft Security Bulletin MS03-045 - Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141)

From: Russ (Russ.Cooper_at_RC.ON.CA)
Date: 01/13/04

  • Next message: Russ: "MinorRev: Microsoft Security Bulletin MS03-051 - Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution (813360)"
    Date:         Tue, 13 Jan 2004 14:02:06 -0500
    To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
    
    

    Reason for Revision:
    V4.0 January 13, 2004: Bulletin updated to reflect the release of
    updated Windows NT 4.0 Workstation and Server updates for Arabic,
    Hebrew, and Thai languages only.

    Microsoft Security Bulletin MS03-045:
    Buffer Overrun in the ListBox and in the ComboBox Control Could Allow
    Code Execution (824141)

    Bulletin URL:
    http://www.microsoft.com/technet/security/bulletin/MS03-045.asp

    Summary:
     Version Number: V4.0
     Revision Date: 01-13-2004
     Impact of Vulnerability: Local Elevation of Privilege
     Maximum Severity Rating: Important
     Patch(es) Replaced: MS02-071
     Caveats: None
     CVE Number(s): CAN-2003-0659

    Tested Software:
     Affected Software:
     * Microsoft Windows NT Workstation 4.0, Service Pack 6a
    <http://www.ntbugtraq.com/link/5EA88ABE-8D53-4E25-959C-E80EB5FD7A91.asp>
     * Microsoft Windows NT Server 4.0, Service Pack 6a
    <http://www.ntbugtraq.com/link/F3E87075-AAE5-49F4-9D37-24A116296188.asp>
     * Microsoft Windows NT Server 4.0, Terminal Server Edition, Service
    Pack 6
    <http://www.ntbugtraq.com/link/0ADC8D90-2355-49A0-976B-57281B4521C1.asp>
     * Microsoft Windows 2000, Service Pack 2
    <http://www.ntbugtraq.com/link/01358EAC-F1C5-4CB7-BE3D-64459F4AD3FD.asp>
     * Microsoft Windows 2000 Service Pack 3, Service Pack 4
    <http://www.ntbugtraq.com/link/379F234D-CE7E-4897-8D29-0764997F1E42.asp>
     * Microsoft Windows XP Gold, Service Pack 1
    <http://www.ntbugtraq.com/link/ABC764AC-5B7B-4B99-BF3E-F57352E4C507.asp>
     * Microsoft Windows XP 64 bit Edition
    <http://www.ntbugtraq.com/link/3E7B03BF-2231-4069-B76F-0BD69CF6E1D9.asp>
     * Microsoft Windows XP 64 bit Edition Version 2003
    <http://www.ntbugtraq.com/link/E4BD7C05-EA0E-49C7-9BDD-ABB496CA87CA.asp>
     * Microsoft Windows Server 2003
    <http://www.ntbugtraq.com/link/02F97DE4-29DF-4D33-A33B-E7630349E69E.asp>
     * Microsoft Windows Server 2003 64 bit Edition
    <http://www.ntbugtraq.com/link/E4BD7C05-EA0E-49C7-9BDD-ABB496CA87CA.asp>

     Software Not Affected:
     * Microsoft Windows Millennium Edition

    This email is sent to NTBugtraq automagically as a service to my
    subscribers. (v2.2)

    Cheers,
    Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor

    -----
    Editor's Note: The 43rd Most Powerful Person in Networking says...

    Wondering how to unsubscribe from NTBugtraq? Just send a message to Listserv@listserv.ntbugtraq.com with unsubscribe ntbugtraq in the message body, you don't need a subject line. If it says you aren't subscribed, you've either subscribed with a different email address or your address has changed somehow. Just email Russ.Cooper@rc.on.ca and I'll remove you.
    -----


  • Next message: Russ: "MinorRev: Microsoft Security Bulletin MS03-051 - Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution (813360)"

    Relevant Pages

    • <<< Small Biz Server this week July 18th 2004 >>>
      ... discovered vulnerabilities in Microsoft Windows. ... - Microsoft Windows NT Workstation 4.0 Service Pack 6a ... - Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6 ... Restart required: In some cases, this update does not require a ...
      (microsoft.public.backoffice.smallbiz)
    • <<< Small Biz Server this week July 18th 2004 >>>
      ... discovered vulnerabilities in Microsoft Windows. ... - Microsoft Windows NT Workstation 4.0 Service Pack 6a ... - Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6 ... Restart required: In some cases, this update does not require a ...
      (microsoft.public.backoffice.smallbiz2000)
    • <<< Small Biz Server this week July 18th 2004 >>>
      ... discovered vulnerabilities in Microsoft Windows. ... - Microsoft Windows NT Workstation 4.0 Service Pack 6a ... - Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6 ... Restart required: In some cases, this update does not require a ...
      (microsoft.public.windows.server.sbs)
    • Microsoft Internet Explorer DOS Vulnerability
      ... Microsoft Windows 2000 Advanced Server SP2 ... Microsoft Windows 2000 Advanced Server SP1 ...
      (Bugtraq)
    • V:
      ... Druckgeschwindigkeit (DIN A4, S/W) Duplex: ... Citrix MetaFrame Citrix, MetaFrame und MetaFrame XP sind in den USA ... Microsoft Windows 2000 Server running Terminal Services mit Citrix ... MetaFrame XP Presentation Server oder Citrix MetaFrame Presentation ...
      (de.markt.comp.hardware.misc)