ðòïåëôù 

  áòèé÷ 

Apache-Talk @lexa.ru 

Inet-Admins @info.east.ru 

Filmscanners @halftone.co.uk 

Security-alerts @yandex-team.ru 

nginx-ru @sysoev.ru 

  óôáôøé 

  ðåòóïîáìøîïå 

  ðòïçòáííù 

ðéûéôå
ðéóøíá














     áòèé÷ :: Security-alerts
Security-Alerts mailing list archive (security-alerts@yandex-team.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[security-alerts] Ms update for vml vulnerability

http://isc.sans.org/diary.php?storyid=1738

        
Handler's Diary September 26th 2006

* VML Update Released (NEW)
Published: 2006-09-26,
Last Updated: 2006-09-26 20:09:21 UTC by Robert Danford (Version:
4(click to highlight changes))

Microsoft has just released an update to address the VML (VGX) issue

The update can currently be found on Microsoft Update and is titled
Security Update for Windows XP (KB925486)
http://www.microsoft.com/technet/security/Bulletin/MS06-055.mspx


It is recommended that the patch be applied immediately (after testing)
unless a suitable mitigation strategy is in place.

Update: Also, note that if you applied the ACL mitigation (removing
Everyone Read access from the DLL), you will need to undo that before
this update will apply successfully. 

Thanks to everyone that submitted analysis, news, samples, malicious
website reports, etc

More info:
http://isc.sans.org/diary.php?storyid=1727
http://blogs.technet.com/msrc/archive/2006/09/26/459194.aspx

 



Copyright © Lexa Software, 1996-2009.