Information Technology Services: Alerts Archive

ALARM Group ALERTclick for a description of ALARM, The Computing Alert System
Alert Number:  080905-02
Alert Date:  08/09/05
Alert Title:  Microsoft updates two security bulletins for August
Update-to:  none
OS/Platform/Application: 
Microsoft Windows 2000 (Service Packs 3 and 4)
Microsoft Windows XP (Service Packs 1 and 2, Professional x64 Edition, plus 64-Bit Edition Service Pack 1 'Itanium' and 64-Bit Edition Version 2003 'Itanium')
Microsoft Windows Server 2003 (including Service Pack 1, Itanium-based systems, and x64 Edition)
Microsoft Windows 98, Microsoft Windows 98 Second Edition (SE), and Microsoft Windows Millennium Edition (ME)

Microsoft Word 2000 and Microsoft Works Suite 2001
Microsoft Word 2002, Microsoft Works Suite 2002, Microsoft Works Suite 2003, and Microsoft Works Suite 2004
Microsoft Office Word 2003
Microsoft Word 2003 Viewer
Category:  ALERT
Severity:  MEDIUM
Attention:  Windows System Administrators, Desktop Support Personnel

Summary:  In addition to releasing six new security bulleting on August 9, Microsoft released updates for two previously-released Bulletins (MS05-032 Vulnerability in Microsoft Agent Could Allow Spoofing, originally released June 14 2005 and MS-05023 Vulnerabilities in Microsoft Word May Lead to Remote Code Execution, originally released April 12 2005). MS05-032 has been deemed a 'Moderate' vulnerability by the vendor, and MS05-023 has been deemed 'critical'.

Recommended Actions:  Windows system managers and support personnel are encouraged to read the bulletin re-releases (including all potential caveats) and (if appropriate) apply the patch(es) immediately as per the instructions provided by the vendor.

ITS Actions:  ITS Systems Management and Operations Staff will apply any necessary patches to the appropriate ITS servers as part of the next scheduled system update.

Resources:
Microsoft Security Bulletin MS05-032
Microsoft Security Bulletin MS05-023

University at Albany homepage