RETIRED: Microsoft March Advance Notification Multiple Vulnerabilities
BID:17049
Info
RETIRED: Microsoft March Advance Notification Multiple Vulnerabilities
| Bugtraq ID: | 17049 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Mar 09 2006 12:00AM |
| Updated: | Apr 17 2007 03:31PM |
| Credit: | Reported by the vendor. |
| Vulnerable: |
Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microsoft Windows XP Professional x64 Edition Microsoft Windows XP Professional SP2 Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional Microsoft Windows XP Media Center Edition SP2 Microsoft Windows XP Media Center Edition SP1 Microsoft Windows XP Media Center Edition Microsoft Windows XP Home SP2 Microsoft Windows XP Home SP1 Microsoft Windows XP Home Microsoft Windows XP 64-bit Edition Version 2003 SP1 Microsoft Windows XP 64-bit Edition Version 2003 Microsoft Windows XP 64-bit Edition SP1 Microsoft Windows XP 64-bit Edition Microsoft Windows XP 0 Microsoft Windows Server 2003 Web Edition SP1 Beta 1 Microsoft Windows Server 2003 Web Edition SP1 Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2003 Standard x64 Edition Microsoft Windows Server 2003 Standard Edition SP1 Beta 1 Microsoft Windows Server 2003 Standard Edition SP1 Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Enterprise x64 Edition Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Beta 1 Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Microsoft Windows Server 2003 Enterprise Edition Itanium 0 Microsoft Windows Server 2003 Enterprise Edition SP1 Beta 1 Microsoft Windows Server 2003 Enterprise Edition SP1 Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Datacenter x64 Edition Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1 Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Microsoft Windows Server 2003 Datacenter Edition Itanium 0 Microsoft Windows Server 2003 Datacenter Edition SP1 Beta 1 Microsoft Windows Server 2003 Datacenter Edition SP1 Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows NT Workstation 4.0 SP6a Microsoft Windows NT Workstation 4.0 SP6 Microsoft Windows NT Workstation 4.0 SP5 Microsoft Windows NT Workstation 4.0 SP4 Microsoft Windows NT Workstation 4.0 SP3 Microsoft Windows NT Workstation 4.0 SP2 Microsoft Windows NT Workstation 4.0 SP1 Microsoft Windows NT Workstation 4.0 Microsoft Windows NT Terminal Server 4.0 SP6a Microsoft Windows NT Terminal Server 4.0 SP6 Microsoft Windows NT Terminal Server 4.0 SP5 Microsoft Windows NT Terminal Server 4.0 SP4 Microsoft Windows NT Terminal Server 4.0 SP3 Microsoft Windows NT Terminal Server 4.0 SP2 Microsoft Windows NT Terminal Server 4.0 SP1 Microsoft Windows NT Terminal Server 4.0 Microsoft Windows NT Server 4.0 SP6a Microsoft Windows NT Server 4.0 SP6 Microsoft Windows NT Server 4.0 SP5 Microsoft Windows NT Server 4.0 SP4 Microsoft Windows NT Server 4.0 SP3 Microsoft Windows NT Server 4.0 SP2 Microsoft Windows NT Server 4.0 SP1 Microsoft Windows NT Server 4.0 Microsoft Windows NT Enterprise Server 4.0 SP6a Microsoft Windows NT Enterprise Server 4.0 SP6 Microsoft Windows NT Enterprise Server 4.0 SP5 Microsoft Windows NT Enterprise Server 4.0 SP4 Microsoft Windows NT Enterprise Server 4.0 SP3 Microsoft Windows NT Enterprise Server 4.0 SP2 Microsoft Windows NT Enterprise Server 4.0 SP1 Microsoft Windows NT Enterprise Server 4.0 Microsoft Windows ME Microsoft Windows 98SE Microsoft Windows 98 Microsoft Windows 95 Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server Microsoft Office XP Developer Edition Microsoft Office XP SP3 Microsoft Office XP SP2 Microsoft Office XP SP1 Microsoft Office XP Microsoft Office 2003 SP3 Microsoft Office 2003 SP2 Microsoft Office 2003 SP1 Microsoft Office 2003 0 Microsoft Office 2001 For Macintosh SR1 Microsoft Office 2001 For Macintosh Microsoft Office 2001 for Mac Microsoft Office 2000 Korean Version Microsoft Office 2000 Japanese Version Microsoft Office 2000 Chinese Version Microsoft Office 2000 SP3 Microsoft Office 2000 SP2 Microsoft Office 2000 SP1 Microsoft Office 2000 Microsoft Internet Explorer for Unix SP2 Microsoft Internet Explorer for Unix SP2 |
| Not Vulnerable: | |
Discussion
RETIRED: Microsoft March Advance Notification Multiple Vulnerabilities
Microsoft has released advanced notification that they will be releasing two security bulletins for Windows on March 14, 2006. The highest severity rating for these issues is Critical.
Further details about these issues are not currently available. Individual BIDs will be created and this record will be removed when the security bulletins are released.
These vulnerabilities have been assigned to the following BIDs:
16484 Microsoft Windows Multiple Local Privilege Escalation Vulnerabilities
15780 Microsoft Excel Malformed Range Memory Corruption Vulnerability
17091 Microsoft Excel Malformed Parsing Format File Remote Code Execution Vulnerability
17100 Microsoft Excel Malformed Description Remote Code Execution Vulnerability
16181 Microsoft Excel Malformed Graphic File Code Execution Vulnerability
17101 Microsoft Excel Malformed Record Remote Code Execution Vulnerability
17000 Microsoft Office Routing Slip Processing Remote Buffer Overflow Vulnerability
Microsoft has released advanced notification that they will be releasing two security bulletins for Windows on March 14, 2006. The highest severity rating for these issues is Critical.
Further details about these issues are not currently available. Individual BIDs will be created and this record will be removed when the security bulletins are released.
These vulnerabilities have been assigned to the following BIDs:
16484 Microsoft Windows Multiple Local Privilege Escalation Vulnerabilities
15780 Microsoft Excel Malformed Range Memory Corruption Vulnerability
17091 Microsoft Excel Malformed Parsing Format File Remote Code Execution Vulnerability
17100 Microsoft Excel Malformed Description Remote Code Execution Vulnerability
16181 Microsoft Excel Malformed Graphic File Code Execution Vulnerability
17101 Microsoft Excel Malformed Record Remote Code Execution Vulnerability
17000 Microsoft Office Routing Slip Processing Remote Buffer Overflow Vulnerability
Exploit / POC
RETIRED: Microsoft March Advance Notification Multiple Vulnerabilities
Currently we are not aware of any exploits for these issues. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Currently we are not aware of any exploits for these issues. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution / Fix
RETIRED: Microsoft March Advance Notification Multiple Vulnerabilities
Solution:
Microsoft plans to release fixes to address these issues on March 14, 2006.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
Solution:
Microsoft plans to release fixes to address these issues on March 14, 2006.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]
References
RETIRED: Microsoft March Advance Notification Multiple Vulnerabilities
References:
References: