Add to that MS03-046 and MS03-047. Critical: Vulnerability in Exchange Server Could Allow Arbitrary Code Execution (829436) http://www.microsoft.com/technet/security/bulletin/MS03-046.asp Moderate: Vulnerability in Exchange Server 5.5 Outlook Web Access Could Allow Cross-Site Scripting Attack (828489) http://www.microsoft.com/technet/security/bulletin/MS03-047.asp Regards Thor Larholm PivX Solutions, LLC - Senior Security Researcher http://pivx.com/larholm/ - PivX Security Mailing List -----Original Message----- From: Giovanni Campagnoli [mailto:bioia@yahoo.com] Sent: Wednesday, October 15, 2003 12:10 PM To: bugtraq@securityfocus.com Subject: Microsoft Windows Security Bulletin Summary October The new Security Bulletin is available at : http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/winoct03.asp In this last security bulletin Microsoft has patched 4 remote buffer overflow. Microsoft Security Bulletin MS03-041 - Vulnerability in Authenticode Verification Could Allow Remote Code Execution (823182) Microsoft Security Bulletin MS03-042 - Buffer Overflow in the Windows Troubleshooter ActiveX Control Could Allow Code Execution (826232) Microsoft Security Bulletin MS03-043 - Buffer Overrun in Messenger Service Could Allow Code Execution (828035) Microsoft Security Bulletin MS03-044 - Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise (825119) Giovanni Campagnoli ===== --------------------------------------------------------------------------------- L'intelligenza sulla terra è costante, la popolazione sempre in aumento --------------------------------------------------------------------------------- __________________________________ Do you Yahoo!? The New Yahoo! Shopping - with improved product search http://shopping.yahoo.com
