Multiple Vulnerabilities in Microsoft Windows Components and Outlook Express
Systems Affected
- Microsoft Windows Systems
Overview
Microsoft has released a Security
Bulletin Summary for July, 2004. There are several security bulletins
released in this summary.
Description
I. Description
Microsoft's Security
Bulletin Summary for July, 2004 includes summaries of several
bulletins that address vulnerabilities in various Windows applications and
components.
For more technical information, see US-CERT
Technical Alert
TA04-196A.
II. Impact
An attacker may be able to control your computer if these vulnerabilities
are exploited.
III. Solution
Apply a patch
Microsoft has provided the patches for these vulnerabilities in the
Security
Bulletins and on Windows Update.
Do not follow unsolicited links
Do not click on unsolicited links received in email, instant messages, web
forums, or chat rooms. While this is generally a good security practice,
following this behavior will not prevent the exploitation of these
vulnerabilities in all cases.
Maintain updated anti-virus software
Anti-virus software with updated virus definitions may identify and
prevent some exploit attempts. Update your anti-virus software. More
information about viruses and anti-virus vendors is available on the US-CERT Computer
Virus Resources page.
Appendix A. Vendor Information
Specific information about the Security bulletins are available in the Security
Bulletin Summary for July, 2004 and the US-CERT Vulnerability Notes
for these issues.
Appendix B. References
- Microsoft's Security Bulletin Summary for July, 2004 - <http://www.microsoft.com/security/bulletins/200407_windows.mspx>
- US-CERT Technical Cyber Security Alert TA04-196A - <http://www.us-cert.gov/cas/techalerts/TA04-196A.html>
- US-CERT Vulnerability Note VU#106324 - <http://www.kb.cert.org/vuls/id/106324>
- US-CERT Vulnerability Note VU#187196 - <http://www.kb.cert.org/vuls/id/187196>
- US-CERT Vulnerability Note VU#920060 - <http://www.kb.cert.org/vuls/id/920060>
- US-CERT Vulnerability Note VU#228028 - <http://www.kb.cert.org/vuls/id/228028>
- US-CERT Vulnerability Note VU#717748 - <http://www.kb.cert.org/vuls/id/717748>
- US-CERT Vulnerability Note VU#647436 - <http://www.kb.cert.org/vuls/id/647436>
- US-CERT Vulnerability Note VU#868580 - <http://www.kb.cert.org/vuls/id/868580>
- US-CERT Vulnerability Note VU#869640 - <http://www.kb.cert.org/vuls/id/869640>
- Increase Your Browsing and E-Mail Safety - <http://www.microsoft.com/security/incident/settings.mspx>
- Working with Internet Explorer 6 Security Settings - <http://www.microsoft.com/windows/ie/using/howto/security/settings.mspx>
This alert was created by Jason A. Rafail. Feedback can be directed to
the Vulnerability Note authors: Jason
A. Rafail, Jeffrey P. Lanza, Chad R. Dougherty, Damon G. Morda, and Art
Manion.
Copyright 2004 Carnegie Mellon University.
Terms of use
Revision History
-
July 14, 2004: Initial release
Last updated
This product is provided subject to this Notification and this Privacy & Use policy.