Threat Level: green Handler on Duty: Tom Webb

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2004-06-08 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

* Microsoft Security Bulletins for June 2004

Published: 2004-06-08
Last Updated: 2004-06-09 11:15:19 UTC
by Scott Fendley (Version: 1)
0 comment(s)


Microsoft Security Bulletins
Today two (2) security bulletins were released on the regularly scheduled patch day. The 2 vulnerabilities that were addressed were both listed as Moderate by Microsoft.
Bulletin MS04-016 (KB839643) involves the Microsoft DirectX versions 7.0a-9.0b on Windows 2000, XP and 2003 and potentially could be a non-critical problem for Windows 98 through ME. The vulnerability if exploited could cause the DirectPlay application to fail and require the user to restart the application to resume functionality.
For more information on the vulnerability or for patches please see: http://www.microsoft.com/technet/security/bulletin/MS04-016.mspx
Bulletin MS04-017 (KB842689) involves a potential Denial of Service and/or Information Disclosure for those customers that use Visual Studio .Net 2003, Outlook 2003 with Business Contact Manager or the Business Solutions Customer Relationship Management (CRM 1.2). The vulnerability involves a problem with web interfaces in Crystal Report or Crystal Enterprise that is re-distributed as a part of the above programs. If these products are used in your environment, this set of patches should be evaluated for installation in your regularly scheduled patch cycle this month.
For more information on the vulnerability or for patches please see: http://www.microsoft.com/technet/security/bulletin/MS04-017.mspx
Monthly Threat Update Webcast

Wednesday June 9th, 2 pm EDT (8pm CEST). For details, see
http://www.sans.org/webcasts/show.php?webcastid=90489

Keywords:
0 comment(s)
Diary Archives