IE flaw opens door to infection on sight   09 Aug 2005 21:08 GMT
Microsoft plugs six holes, including an IE bug that could expose a PC user to attack just for looking at a picture.
Source: ZDNet

Microsoft fixes serious Windows flaws   09 Aug 2005 21:08 GMT
Microsoft warned of serious security flaws in Windows and urged users to patch as soon as possible.
Source: ZDNet

Netscape catches up to Firefox patches   09 Aug 2005 18:21 GMT
New version of Netscape 8 brings it as up to date on security as its underlying Firefox Web browser.
Source: ZDNet

TippingPoint leans into network threats   09 Aug 2005 14:00 GMT
Intrusion-detection and intrusion-prevention products have come a long way in a short time. TippingPoint is one vendor that has blazed the trail to multipronged protection.
Source: Computerworld

Sender ID's fading message   09 Aug 2005 11:00 GMT
Lack of popularity of Microsoft's antispam technology could make it harder to reverse consumers' eroding faith in e-mail.
Source: ZDNet

MS05-043: Vulnerability in Print Spooler Service Could Allow Remote Code Execution (896423)   09 Aug 2005 00:00 GMT
This update resolves a newly-discovered, privately-reported vulnerability. A vulnerability exists in the Print Spooler service that could allow remote code execution. The vulnerability is documented in the “Vulnerability Details” section of this bulletin. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Source: TechNet

MS05-042: Vulnerabilities in Kerberos Could Allow Denial of Service, Information Disclosure, and Spoofing (899587)   09 Aug 2005 00:00 GMT
This update resolves two newly-discovered vulnerabilities, a privately reported vulnerability and a publicly reported vulnerability. Each vulnerability is documented in this bulletin in its own “Vulnerability Details” section of this bulletin. An attacker who successfully exploited the most severe of these vulnerabilities could cause the service responsible for authenticating users in an Active Directory domain to stop responding.
Source: TechNet

MS05-041: Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591)   09 Aug 2005 00:00 GMT
This update resolves a newly-discovered, privately-reported vulnerability. A vulnerability in the Remote Desktop Protocol (RDP) exists that could allow an attacker to cause a system to stop responding. The vulnerability is documented in the “Vulnerability Details” section of this bulletin.
Source: TechNet

MS05-040: Vulnerability in Telephony Service Could Allow Remote Code Execution (893756)   09 Aug 2005 00:00 GMT
This update resolves a newly-discovered, privately-reported vulnerability. A vulnerability exits in the Telephony Application Programming Interface (TAPI) service that could allow remote code execution. The vulnerability is documented in the “Vulnerability Details” section of this bulletin. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Source: TechNet

MS05-039: Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588)   09 Aug 2005 00:00 GMT
This update resolves a newly-discovered, privately-reported vulnerability. A remote code execution vulnerability exists in Plug and Play (PnP) that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. The vulnerability is documented in the “Vulnerability Details” section of this bulletin.
Source: TechNet