Main | WinConnections Conference »
April 15, 2005
The April Security Updates
This month's security updates were made available this past Tuesday. This month's security updates include several critical updates:
- MS05-016 fixes how the Windows shell handles application associations for user's logged in as members of the local Administrators group. This update replace the February MS05-008 security update.
- MS05-019, fixes a TCP/IP vulnerability that allowed an attacker to send IP or ICMP messages to reset TCP connections or start a DoS attack
- MS05-020 is a cumulative security update for IE 5 and 6 that fixes the way IE handles DHTML objects, Content Advisor files, and certain URLs in a Web page created by an attacker to take control of the user's computer.
- MS05-021 updates a critical bug found for Exchange 2003 and Exchange 2003 Service Pack 1 that fixes a weakness in how SMTP handles DNS lookups.
- MS05-022 Updates a previous bug for MSN Messenger that prevents an attacker from sending a PNG image that attempts to remotely control a computer.
- MS05-023 protects Microsoft Word from a buffer overrun attack that could allow an attacker to view, change or delete data on the computer.
Brian
Posted by at April 15, 2005 09:36 AM