[Microsoft Alert] Microsoft Security Bulletin MS06-032

Vulnerability in TCP/IP Could Allow Remote Code Execution (917953)

Issued: June 13, 2006

Version: 1.0

 

Summary

Who should read this document: Customers who use Microsoft Windows

 

Impact of Vulnerability: Remote Code Execution

 

Maximum Severity Rating: Important

 

Recommendation: Customers should apply the update at the earliest opportunity.

 

Security Update Replacement: This bulletin replaces a prior security update. See the frequently asked questions (FAQ) section of this bulletin for the complete list.

 

 

Vulnerability Details:

There is a remote code execution vulnerability in the TCP/IP Protocol driver that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system.

 

 

Affected Software:

Microsoft Windows 2000 Service Pack 4

 

Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2

 

Microsoft Windows XP Professional x64 Edition

 

Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1

 

Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems

 

Microsoft Windows Server 2003 x64 Edition

 

 

Non-Affected Software:

Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE), and Microsoft Windows Millennium Edition (Me)

 

 

References: http://www.microsoft.com/security/bulletins/current.mspx (Microsoft Security Updates)<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />

 

 

---