Microsoft Windows, Office, and IIS Vulnerabilities
http://jvnrss.ise.chuo-u.ac.jp/jtg/trn/en/TRTA06-192A.html
JVNRSS based Status Tracking Notes: Microsoft has released updates that address critical vulnerabilities in Microsoft Windows, IIS, and Office. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.JVNRSS-DEV projectjvn@jvn.jpTRTA06-192A2006-07-17T21:30+00:002006-07-13T18:56+00:002006-07-17T21:30+00:00Microsoft Products Vulnerabilities
http://www.jpcert.or.jp/at/2006/at060010.txt
JPCERT/CCJPCERT-AT-2006-0010http://jvn.jp/cert/JVNTA06-192Ahttp://www.us-cert.gov/cas/techalerts/TA06-192A.html2006-07-12T09:40+00:002006-07-12T09:40+00:002006-07-12T09:40+00:00Microsoft Windows, Office, and IIS Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA06-192A.html
Via US-CERT Mailing List
US-CERTTA06-192Ahttp://www.us-cert.gov/cas/techalerts/TA06-192A.htmlhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0026http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1314http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2372http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3059http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1316http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1540http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2389http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0033http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-00072006-07-11T18:57-04:002006-07-11T18:57-04:002006-07-11T18:57-04:00Microsoft Security Bulletin Summary for July, 2006
http://www.microsoft.com/technet/security/bulletin/ms06-jul.mspx
Via Microsoft Mailing List
MicrosoftMS06-JULhttp://www.microsoft.com/technet/security/bulletin/ms06-033.mspxhttp://www.microsoft.com/technet/security/bulletin/ms06-034.mspxhttp://www.microsoft.com/technet/security/bulletin/ms06-035.mspxhttp://www.microsoft.com/technet/security/bulletin/ms06-036.mspxhttp://www.microsoft.com/technet/security/bulletin/ms06-037.mspxhttp://www.microsoft.com/technet/security/bulletin/ms06-038.mspxhttp://www.microsoft.com/technet/security/bulletin/ms06-039.mspx2006-07-11T12:43-07:002006-07-11T12:43-07:002006-07-11T12:43-07:00Vulnerability in DHCP Client could allow remote code execution
http://xforce.iss.net/xforce/alerts/id/227
Internet Security Systemshttp://www.microsoft.com/technet/security/bulletin/ms06-036.mspxhttp://www.us-cert.gov/cas/techalerts/TA06-192A.html2006-07-112006-07-112006-07-11Microsoft Office Excel File Rebuilding Code Execution Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-06-022.html
Microsoft Excel Malformed File Vulnerability(CVE-2006-2388,MS06-037)
Vulnerability Reported
Zero Day Initiative (ZDI)ZDI-06-022http://www.microsoft.com/technet/security/bulletin/MS06-037.mspxhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-23882006-06-152006-06-152006-06-15Microsoft Excel Array Index Error Remote Code Execution
http://secway.org/advisory/AD20060711.txt
Microsoft Excel Malformed OBJECT record Vulnerability(CVE-2006-1306,MS06-037)
Vulnerability Reported
Sowhat of Nevis Labshttp://www.microsoft.com/technet/security/bulletin/MS06-037.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-13062006-05-302006-05-302006-05-30Microsoft Excel COLINFO Record Buffer Overflow Vulnerability
http://www.nsfocus.com/english/homepage/research/0606.htm
Microsoft Excel Malformed COLINFO record Vulnerability(CVE-2006-1304,MS06-037)
Vulnerability Reported
NSFOCUSSA2006-06http://www.microsoft.com/technet/security/bulletin/MS06-037.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-13042006-03-302006-03-302006-03-30Microsoft Excel SELECTION Record Memory Corruption Vulnerability
http://www.nsfocus.com/english/homepage/research/0605.htm
Microsoft Excel Malformed SELECTION record Vulnerability(CVE-2006-1302,MS06-037)
Vulnerability Reported
NSFOCUSSA2006-05http://www.microsoft.com/technet/security/bulletin/MS06-037.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-13022006-03-302006-03-302006-03-30Microsoft SRV.SYS Mailslot Ring0 Memory Corruption Vulnerability
http://www.tippingpoint.com/security/advisories/TSRT-06-02.html
Mailslot Heap Overflow Vulnerability(CVE-2006-1314,MS06-035)
Vulnerability Reported
TippingPointTSRT-06-02http://www.microsoft.com/technet/security/bulletin/MS06-035.mspxhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-13142006-03-012006-03-012006-03-01Microsoft Windows DHCP Client Service Remote Buffer Overflow
http://www.cybsec.com/vuln/CYBSEC-Security_Pre-Advisory_Microsoft_Windows_DHCP_Client_Service_Remote_Buffer_Overflow.pdf
Buffer Overrun in DHCP Client Service Vulnerability(CVE-2006-2372,MS06-036)
Vulnerability Reported
Cybsec Security Systemshttp://www.microsoft.com/technet/security/bulletin/MS06-036.mspxhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-23722005-12-262005-12-262005-12-26Microsoft Office GIF Filter Buffer Overflow Vulnerability
http://www.nsfocus.com/english/homepage/research/0604.htm
Microsoft Office Remote Code Execution Using a Malformed GIF Vulnerability(CVE-2006-0007,MS06-039)
Vulnerability Reported
NSFOCUSSA2006-04http://www.microsoft.com/technet/security/bulletin/MS06-039.mspxhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-00072005-05-272005-05-272005-05-275Xa8kthg++XQa2AFZryalm3oeuQ=skiQfG23OrIcw4JCquQ7onf9djk=JPZziKXJzk7eN0Fdgk7amTMtuk3uf1vS6O2E3ae6bezRmM/P/gZotoY1i+ulJNQ6rlxVCXXtCiS+b3LDygIgyxiJO93BY4DjyzdUp4fkUvyBi1IhZGkA7UeydKWqFMibfzhzEBCdw+Exvmp4PIx2ppt2wTGzu2lZwjUCqqj/FQ0=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