Status Tracking Note TRTA06-129A

Microsoft Windows and Exchange Server Vulnerabilities

Microsoft has released updates that address critical vulnerabilities in Microsoft Windows and Exchange Server. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.

Event Information

Date (UTC)	Description
2006-05-15 21:10	Symantec ThreatCON (2) => (1)
2006-05-15 14:35	Internet Security Systems AlertCon (2) => (1)
2006-05-11 00:00	McAfee Avert Labs Microsoft MSDTC NdrAllocate Validation Vulnerability MSDTC Invalid Memory Access Vulnerability(CVE-2006-0034,MS06-018) Via Bugtraq Mailing List
2006-05-10 22:00	Symantec ThreatCON (1) => (2)
2006-05-10 01:43	Microsoft MS06-MAY: Microsoft Security Bulletin Summary for May, 2006 Via Microsoft Mailing List
2006-05-09 20:16	US-CERT TA06-129A: Microsoft Windows and Exchange Server Vulnerabilities Via US-CERT Mailing List
2006-05-09 18:55	Internet Security Systems AlertCon (1) => (2)
2006-05-09	Internet Security Systems Microsoft Exchange Calendar Attachment Heap-based Overflow
2006-03-14	Adobe Systems APSB06-03: Flash Player Update to Address Security Flash Player Vulnerability(CVE-2006-0024,MS06-020,VU#945060)
2005-11-02	Adobe Systems MPSB05-07: Flash Player 7 Improper Memory Access Vulnerability Flash Player Vulnerability(CVE-2005-2628,MS06-020,VU#146284)
2005-10-11	eEye Digital Security AD20060509b: Microsoft Distributed Transaction Coordinator Denial of Service MSDTC Denial of Service Vulnerability(CVE-2006-1184,MS06-018) Vulnerability Reported
2005-06-27	eEye Digital Security AD20051104: Macromedia Flash Player Improper Memory Access Vulnerability Flash Player Vulnerability(CVE-2005-2628,MS06-020,VU#146284) Reported


Date first published (UTC):	2006-05-09T21:10+00:00
Date last updated (UTC):	2006-05-16T17:39+00:00