From alerts@us-cert.gov Tue Oct 11 19:13:56 2005
From: US-CERT Alerts <alerts@us-cert.gov>
To: alerts@us-cert.gov
Date: Tue, 11 Oct 2005 19:03:40 -0400
Subject: US-CERT Cyber Security Alert SA05-284A -- Microsoft Windows, Internet Explorer, and Windows Media Technology Vulnerabilities 


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


                     National Cyber Alert System

                   Cyber Security Alert SA05-284A


Microsoft Windows, Internet Explorer, and Windows Media Technology
Vulnerabilities

   Original release date: October 11, 2005
   Last revised: --
   Source: US-CERT



Systems Affected

     * Microsoft Windows
     * Microsoft Internet Explorer
     * Windows Media Technologies (DirectX)

   For more complete information, refer to the Microsoft Security
   Bulletin Summary for October 2005.



Overview

     Microsoft has released updates that address critical
     vulnerabilities in Windows, Internet Explorer, and Windows Media
     technologies.



Solution

Apply Updates

     Microsoft has released security updates for Windows, Internet
     Explorer, and Windows Media technologies. To obtain the updates,
     visit the Microsoft Update web site. US-CERT also recommends
     enabling Automatic Updates.



Description

     Microsoft Security Bulletins for October 2005 address
     vulnerabilities in Windows, Internet Explorer, and Windows Media
     technologies. These vulnerabilities may allow an attacker to take
     control of your computer or cause it to crash. For more technical
     information, see US-CERT Technical Cyber Security Alert TA05-284A.



References

     * Microsoft Security Bulletin Summary for October 2005 -
       <http://www.microsoft.com/technet/security/bulletin/ms05-oct.mspx>

     * US-CERT Vulnerability Note VU#922708 -
       <http://www.kb.cert.org/vuls/id/922708>

     * US-CERT Vulnerability Note VU#995220 -
       <http://www.kb.cert.org/vuls/id/995220>

     * US-CERT Vulnerability Note VU#180868 -
       <http://www.kb.cert.org/vuls/id/180868>

     * US-CERT Vulnerability Note VU#950516 -
       <http://www.kb.cert.org/vuls/id/950516>

     * US-CERT Vulnerability Note VU#680526 -
       <http://www.kb.cert.org/vuls/id/680526>

     * US-CERT Vulnerability Note VU#959049 -
       <http://www.kb.cert.org/vuls/id/959049>

     * US-CERT Technical Cyber Security Alert TA05-284A -
       <http://www.us-cert.gov/cas/techalerts/TA05-284A.html>

     * Microsoft Update - <https://update.microsoft.com/microsoftupdate>

     * Microsoft Update Overview -
       <http://www.microsoft.com/technet/prodtechnol/microsoftupdate/defa
       ult.mspx>

 
____________________________________________________________________

   The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/alerts/SA05-284A.html>
 ____________________________________________________________________

   Feedback can be directed to US-CERT. Please send email to
   <cert@cert.org> with "SA05-284A Feedback VU#959049" in the subject.
 ____________________________________________________________________

   Revision History

   October 11, 2005: Initial release
 ____________________________________________________________________

   Produced 2005 by US-CERT, a government organization.

   Terms of use:

     <http://www.us-cert.gov/legal.html>
 ____________________________________________________________________

   For instructions on subscribing to or unsubscribing from this 
   mailing list, visit <http://www.us-cert.gov/cas/>.

  





-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iQEVAwUBQ0xDl30pj593lg50AQKSNwgAmMSEeXg79FUmLAOb//QCORwFo7zZYHeo
xIBVl0M8bcPYZpTn+U8GjB9mW0kqWEot6L2we7UbIRFX8wos804UJciUXoIMTEg9
mqzI+BYO0NziAd/EdXGKgeS923ch3Bzop71SUuCqllR0zV+y2QwPDHZX8QkpPO+V
Djw2bZjZoF1eKQxCVuZxs6XpraeDR9WhXq18sENq0zGNyfDJUL8yn0sCMXYh4aWb
SFXmwvndO1fYLg0BRZJMfmm1yETpNbm5dFNIO66OQ84CSXmxW8a0aT0SZ161hYSF
DTkVAgKEsUPGDVHYAsnDDiLSu2r8Q+ct1W6KIJuMd+KvD/Ba46uT7Q==
=uCmV
-----END PGP SIGNATURE-----