Microsoft Updates for Multiple Vulnerabilities
http://jvnrss.ise.chuo-u.ac.jp/jtg/trn/en/TRTA07-100A.html
JVNRSS based Status Tracking Notes: Microsoft has released updates that address critical vulnerabilities in Microsoft Windows and Microsoft Content Management Server. Exploitation of these vulnerabilities could allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system.JVNRSS Feasibility Study Teamjvn@jvn.jpTRTA07-100A2007-04-12T08:51+00:002007-04-10T20:02+00:002007-04-12T08:51+00:00April 2007 Microsoft Security Bulletin (including five critical patches)
http://www.jpcert.or.jp/at/2007/at070010.txt
JPCERT/CCJPCERT-AT-2007-0008http://www.uscert.gov/cas/techalerts/TA07-100A.html2007-04-11T00:59+00:002007-04-11T00:59+00:002007-04-11T00:59+00:00Microsoft Update for Windows Animated Cursor Vulnerability
http://www.us-cert.gov/cas/techalerts/TA07-100A.html
Via US-CERT Mailing List
US-CERTTA07-100Ahttp://www.uscert.gov/cas/techalerts/TA07-100A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms07-017.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-018.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-019.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-020.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-021.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-022.mspx2007-04-10T16:29-04:002007-04-10T16:29-04:002007-04-10T16:29-04:00Microsoft Releases April Security Bulletin
http://www.us-cert.gov/current/archive/2007/04/10/archive.html#ms07apr
Microsoft has released updates to address vulnerabilities in Microsoft Windows and Content Management Server as part of the Microsoft Security Bulletin Summary for April 2007.
US-CERThttp://www.uscert.gov/cas/techalerts/TA07-100A.html2007-04-10T13:30-04:002007-04-10T13:30-04:002007-04-10T13:30-04:00Microsoft Security Bulletin Summary for April 2007
http://www.microsoft.com/technet/security/bulletin/ms07-apr.mspx
Included in this advisory are updates for newly discovered vulnerabilities.
MicrosoftMS07-APRhttp://www.microsoft.com/technet/security/bulletin/ms07-017.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-018.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-019.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-020.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-021.mspxhttp://www.microsoft.com/technet/security/bulletin/ms07-022.mspx2007-04-102007-04-102007-04-10Microsoft Windows Universal Plug and Play HTTP Buffer Overflow
http://www.iss.net/threats/259.html
Microsoft Windows is vulnerable to a buffer overflow, caused by improper bounds checking by the Universal Plug and Play (UPnP) service.
Internet Security Systemshttp://xforce.iss.net/xforce/xfdb/33268http://www.microsoft.com/technet/security/bulletin/ms07-019.mspx2007-04-102007-04-102007-04-10Windows Vista CSRSS Dangling Process Pointer Privilege Escalation
http://research.eeye.com/html/advisories/published/AD20070410b.html
CSRSS Local Elevation of Privilege Vulnerability (CVE-2007-1209,MS07-021)
Vulnerability Reported
eEye Digital SecurityEEYEB-AD20070410bhttp://www.microsoft.com/technet/security/bulletin/ms07-021.mspxhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-12092007-01-192007-01-192007-01-19Windows VDM Zero Page Race Condition Privilege Escalation
http://research.eeye.com/html/advisories/published/AD20070410a.html
Kernel Local Elevation of Privilege Vulnerability (CVE-2007-1206,MS07-022)
Vulnerability Reported
eEye Digital SecurityEEYEB-AD20070410ahttp://www.microsoft.com/technet/security/bulletin/ms07-022.mspxhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-12062006-12-122006-12-122006-12-12Microsoft Agent URL Parsing Memory Corruption Vulnerability
http://secunia.com/secunia_research/2006-74/advisory/
Microsoft Agent URL Parsing Vulnerability (CVE-2007-1205,MS07-020)
Vulnerability Reported
Secunia Research2006-74http://www.microsoft.com/technet/security/bulletin/ms07-020.mspxhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-12052006-12-112006-12-112006-12-11Microsoft Windows Universal Plug and Play Memory Corruption Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=509
UPnP Memory Corruption Vulnerability (CVE-2007-1204,MS07-019)
Vulnerability Reported
iDefensehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1204http://www.microsoft.com/technet/security/bulletin/ms07-019.mspx2006-12-062006-12-062006-12-06Yq/OjhTzMeKHWyLQ9xau7t/Bbgo=qYEJRv428qUoVixcewyg7sF2cNg=Pq6RD6rQT3w2W4HMaJG7w8zKhFjU0EYrqvhLfoMtNbeyyADD9HEItBWzk+DuCytyp7pKWA19p10NyCFAyyRaMIite0rzGgJqiqtrnlclk4LKz3suWlCF7S2cNCdmGFGthWxjoF3nMIcgD1QUpe1xaiLdYYoNX2rqmObiDj3jOXM=MIIEJTCCA46gAwIBAgIQH8+x187tRT6w02OJfpsddzANBgkqhkiG9w0BAQUFADCBzDEXMBUGA1UEChMOVmVyaVNpZ24sIEluYy4xHzAdBgNVBAsTFlZlcmlTaWduIFRydXN0IE5ldHdvcmsxRjBEBgNVBAsTPXd3dy52ZXJpc2lnbi5jb20vcmVwb3NpdG9yeS9SUEEgSW5jb3JwLiBCeSBSZWYuLExJQUIuTFREKGMpOTgxSDBGBgNVBAMTP1ZlcmlTaWduIENsYXNzIDEgQ0EgSW5kaXZpZHVhbCBTdWJzY3JpYmVyLVBlcnNvbmEgTm90IFZhbGlkYXRlZDAeFw0wNjA2MTMwMDAwMDBaFw0wNzA2MTMyMzU5NTlaMIIBGzEXMBUGA1UEChMOVmVyaVNpZ24sIEluYy4xHzAdBgNVBAsTFlZlcmlTaWduIFRydXN0IE5ldHdvcmsxRjBEBgNVBAsTPXd3dy52ZXJpc2lnbi5jb20vcmVwb3NpdG9yeS9SUEEgSW5jb3JwLiBieSBSZWYuLExJQUIuTFREKGMpOTgxHjAcBgNVBAsTFVBlcnNvbmEgTm90IFZhbGlkYXRlZDE0MDIGA1UECxMrRGlnaXRhbCBJRCBDbGFzcyAxIC0gTWljcm9zb2Z0IEZ1bGwgU2VydmljZTEgMB4GA1UEAxQXSlZOUlNTIFJlc2VhcmNoIFByb2plY3QxHzAdBgkqhkiG9w0BCQEWEGp2bnJzc0BpcGEuZ28uanAwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBANV6POygjjKOFc1uAG/YV5VpW07NCJpI3BGisMqVW8gkbU3Dk6gBCc4owM7r/JDIjJ0XmGUCMTsRCnijdbNnn9VR5tIgMhWC6p0+MeOzNQ0XOXEewfLV0nhd+7K3TgjwXNcWI02xqhv+NtD1BHzcDrkdCkGoxn/g1FgUnyhJ4Ob9AgMBAAGjgbUwgbIwCQYDVR0TBAIwADBEBgNVHSAEPTA7MDkGC2CGSAGG+EUBBxcDMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LnZlcmlzaWduLmNvbS9ycGEwCwYDVR0PBAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggrBgEFBQcDAjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLnZlcmlzaWduLmNvbS9jbGFzczEuY3JsMA0GCSqGSIb3DQEBBQUAA4GBAHv9wR3h5rhh1JXN/2GBxPnBDfHUi9Jn5sfxDXvu88rNJnd4kMOhxNctZVk18/oegHdhHoxsjaNJ6v1xxpF2/u5ARoWT8TwaKnvYWwefupiTS326EY/52RVXwPtep9M02v+S2CwgF3aIKXuF5EuoR2NndxqCRUzns9AJt0qQIwmY