Hello guys!

It seems like Microsoft is releasing many new patches for several different vulnerabilities (credits to: eeye and iDefense). Here's some more details:


Critical

MS05-050 - Vulnerability in DirectShow Could Allow Remote Code Execution
MS05-051 - Vulnerabilities in MSDTC and COM+ Could Allow Remote Code Execution
MS05-052 - Cumulative Security Update for Internet Explorer

Important

MS05-046 - Vulnerability in the Client Services for Netware Could Allow Remote Code Execution
MS05-047 - Vulnerability in Plug and Play Could Allow Remote code Execution and Local Elevation of Privilege
MS05-048 - Vulnerability in the Microsoft Collaboration Objects Could Allow Remote Code Execution
MS05-049 - Vulnerabilities in Windows Shell Could Allow Remote Code Execution

Moderate

MS05-044 - Vulnerability in the Windows FTP Client Could Allow File Transfer Location a nd Tampering
MS05-045 - Vulnerability in Network Connection Manager Could Allow Denial of Service


Here's the link in case you want to know more....

http://www.microsoft.com/technet/security/current.aspx

It's time for patching (or coding?! who knows?!) :wink:

Yog

if all this is critical, rpc , wins are ultra critical lol :D

imo MS05-051 is really critical :)

Today, the Frsirt has released the PoC for these above mentioned vulnerabilites. MS-044 MS-045 MS-048

So code a PoC for that MS-051 one and you'll be the first... or should I say the frsirt?! :lol:

Good day (commander....)

Yog-Zeratul