-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Alert System
Cyber Security Alert SA06-220A
Microsoft Windows, Office, and Internet Explorer Vulnerabilities
Original release date: August 8, 2006
Last revised: --
Source: US-CERT
Systems Affected
* Microsoft Windows
* Microsoft Office
* Microsoft Internet Explorer
Overview
Critical vulnerabilities in Microsoft Windows, Microsoft Office,
and Microsoft Internet Explorer may allow an attacker to take
control of your computer.
Solution
Apply Update
Microsoft has provided updates to remedy these
vulnerabilities. To obtain these updates, visit the Microsoft
Update web site. US-CERT also recommends enabling Automatic
Updates.
Microsoft Office 2000 users must visit the Microsoft Office
Update web site to get the appropriate updates.
Apple Mac OS X users should obtain updates from the Mactopia web
site.
Description
Vulnerabilities in Microsoft Windows and Microsoft Office may
allow an attacker to access your computer, install and run
malicious software on your computer, or cause it to crash. We
are aware of attacks using this vulnerability.
For more technical information, see US-CERT Technical Alert
TA06-220A.
References
* US-CERT Technical Cyber Security Alert TA06-220A -
<http://www.us-cert.gov/cas/techalerts/TA06-220A.html>
* US-CERT Vulnerability Note VU#650769 -
<http://www.kb.cert.org/vuls/id/650769>
* US-CERT Vulnerability Notes -
<http://www.kb.cert.org/vuls/byid?searchview&query=ms06-aug>
* Microsoft Security Bulletin Summary for August 2006 -
<http://www.microsoft.com/technet/security/bulletin/ms06-aug.mspx>
* Microsoft Update -
<https://update.microsoft.com/microsoftupdate/>
* Microsoft Office Update - <http://officeupdate.microsoft.com/>
* Mactopia - <http://www.microsoft.com/mac/>
____________________________________________________________________
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/alerts/SA06-220A.html>
____________________________________________________________________
Feedback can be directed to US-CERT. Please send email to
<cert@cert.org> with "SA06-220A Feedback VU#650769" in the subject.
____________________________________________________________________
Mailing list information:
<http://www.us-cert.gov/cas/>
____________________________________________________________________
Produced 2006 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
____________________________________________________________________
Revision History
August 8, 2006: Initial release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iQEVAwUBRNj/dOxOF3G+ig+rAQL11Qf/f79tvkBBYhBafiYtmzQlyx3RnfWDeOEj
yDoyyqGt1lv1AGJ+ALGKyEgZOmM7e8099dw8acaqIE9Kp3o1tOV4BFOXXgUpA/pg
PRuHkNZd7Bmp48+SkKZRW5BU8y5ynPE7GAuvZPwZhxFrWo/RWgsySMW7XzyHo8t/
DCWWdaZ3FPBj25By3WSj/6JELDG0JSrMHbINeTm39Q3ieoLt9W8okgMs5FcWs9la
/kX6CkdrtHgsbFXtCAH0o3aF0ztKiFEnzSUdny2sZ5fcgmPYYgld8AMGWFj4djoP
g8ULYFyjF6ZfhqRsVGNBaAcAmZcSulRxB9WXcd0Wrq8uAE1eT1uS2w==
=1tFp
-----END PGP SIGNATURE-----
