Home > Microsoft Security > Microsoft Security Bulletin Ms01-028

Microsoft Security Bulletin Ms01-028

V1.3 (September 21, 2001): Bulletin updated to discuss need to perform a Full or Typical Install when eliminating this vulnerability via an IE 6 upgrade. Microsoft Customer Support Microsoft Community Forums United States (English) Sign in Security TechCenter Home Security Updates Tools Learn Library Support We’re sorry. In these cases, IE should only open the attachment if the user expressly asks to do so, and confirms that he wants to open it. We appreciate your feedback. check over here

What's a macro? The vulnerability cannot be exploited if the script mappings for Internet Data Administration (.ida) and Internet Data Query (.idq) files are not present. Am I vulnerable? Default installations of Windows 2000 Server are vulnerable. What could an attacker do if she exploited this vulnerability and gained access to a domain Guest account?

The Word 98(J) patch can be installed on systems running Word 98(J) Gold or any Word 98(J) service release. However, it is important to note that it is possible for the mapping to be reinstated. Yes No Additional feedback? 1500 characters remaining Submit Skip this Thank you! V1.1 (February 28, 2003): Updated links in the Frequently Asked Questions section.

Support: Microsoft Knowledge Base article Q302294 discusses this issue and will be available approximately 24 hours after the release of this bulletin. Although the functionality provided by idq.dll supports Index Server and Indexing Service, the .dll is installed whenever IIS is installed, and is exposed anytime IIS is running. More information on this is available in Knowledge Base article Q308411. Disclaimer: The information provided in the Microsoft Knowledge Base is provided "as is" without warranty of any kind.

Patches for consumer platforms are available from the WindowsUpdate web site Other information: Acknowledgments Microsoft thanks Yoichi Ubukata and Yoshihiro Kawabata for reporting this issue to us and working with us Support: Microsoft Knowledge Base article Q299553 discusses this issue and will be available approximately 24 hours after the release of this bulletin. The scope of the new variants is exactly the same as for the original variant, discussed in Microsoft Security Bulletin MS00-033. This vulnerability would provide John with a way to convince visitors that they actually were at Jane's site, by providing a certificate that would pass all of the expected checks.

Does the vulnerability affect any Office products other than Word? As a general rule, it is probably worth questioning the trustworthiness of any e-mail that automatically starts a file download. Obtaining other security patches: Patches for other security issues are available from the following locations: Security patches are available from the Microsoft Download Center, and can be most easily found by Verifying patch installation: To verify that the patch has been installed on the machine, open IE, select Help, then select About Internet Explorer and confirm that Q295106 (IE 5.01) or Q299618

What security context would the code run in? Two new variants of the previously discussed "Frame Domain Verification" vulnerability. One of the functions is only present on Windows 2000 systems, and as a result the variant associated with that function couldn't be exploited on any other system. However, a flaw exists in the type of processing that is specified for certain unusual MIME types.

Would the vulnerability enable the attacker to spoof SSL-protected sessions? Yes. http://blackplanetsupport.com/microsoft-security/microsoft-security-bulletin-ms06-013.html Vulnerability identifier: CAN-2001-0014 Frequently asked questions What's the scope of the vulnerability? Because of this, Microsoft recommends that all customers using IIS install the patch, even if the script mappings have been removed. What's Remote Desktop Protocol?

The content you requested has been removed. Yes No Additional feedback? 1500 characters remaining Submit Skip this Thank you! Word 2000: Verify that the version number of Winword.exe is 9.00.00.5302. http://blackplanetsupport.com/microsoft-security/microsoft-security-bulletin-ms05-014.html What's wrong with the way CRLs are checked? There's nothing wrong with how IE checks CRLs.

If an attacker entered such a command, it would cause the Telnet service to fail. A security vulnerability results because idq.dll contains an unchecked buffer in a section of code that handles input URLs. It's worth noting that a macro also could change the user's security setting.

It does not affect how code-signing certificates or any other type of certificate are validated.

If one is found, and the user enters the right password for that account, it will log her onto the server. What causes the vulnerability? The vulnerability results because it's possible for a browser window to display another site's URL in the address bar. By repeatedly starting sessions and then terminating them, an attacker could deplete the supply of handles on the server to point where it could no longer perform useful work. The template, which might also contain macros, is not checked.

Previous versions are no longer supported, and may or may not be affected by these vulnerabilities. Am I vulnerable? Default installations of Windows NT 4.0 are not vulnerable. By default, the Guest account is disabled. http://blackplanetsupport.com/microsoft-security/microsoft-security-bulletin-ms02-065.html No.

What does the patch do? Since the default IE settings assume that any program run under the local computer zone is safe -- any Java code (malicious or not)will be allowed to run under this setting.