nCircle VERT Blog: June 2007

June 12, 2007

Lucky Number 6 (as in 6 Patches)

Another MS Tuesday... another half dozen patches.

MS07-030
Rating: Important
Visio Version Memory Corruption Vulnerability (CVE-2007-0934)
Visio Document Packaging Vulnerability (CVE-2007-0936)

MS07-031
Rating: Critical
Vulnerability in the Windows Schannel Security Package (CVE-2007-2218)

MS07-032
Rating: Moderate
Permissive User Information Store ACLs Information Disclosure Vulnerability (CVE-2007-2229)

MS07-033
Rating: Critical
COM Object Instantiation Memory Corruption Vulnerability (CVE-2007-0218)
CSS Tag Memory Corruption Vulnerability (CVE-2007-1750)
Language Pack Installation Vulnerability (CVE-2007-3027)
Uninitialized Memory Corruption Vulnerability (CVE-2007-1751)
Navigation Cancel Page Spoofing Vulnerability (CVE-2007-1752)
Speech Control Memory Corruption Vulnerability (CVE-2007-2222)

MS07-034
Rating: Critical
URL Redirect Cross Domain Information Disclosure Vulnerability (CVE-2006-2111)
Windows Mail UNC Navigation Request Remote Code Execution Vulnerability (CVE-2007-1658)
URL Parsing Cross Domain Information Disclosure Vulnerability (CVE-2007-2225)
Content Disposition Parsing Cross Domain Information Disclosure Vulnerability (CVE-2007-2227)

MS07-035
Rating: Critical
Win32 API Vulnerability (CVE-2007-2219)

Bio

Blog: VERT
Author: nCircle VERT

nCircle VERT is the research team behind nCircle, continuously publishing updates for nCircle IP360 and nCircle's family of products. VERT conducts deep research across a broad class of network security intelligence, creating unique, agentless detection for: vunerabilities, host configurations, applications, services, user accounts, operating systems, and other network security conditions. Members of the group use this blog to share their opinions on the security industry, emerging threats, technology trends, and the world at large.

nCircle VERT Blog: June 2007 Archives

June 12, 2007

Lucky Number 6 (as in 6 Patches)

Bio

Search

Recent Posts

Archives

Categories