eEye Digital Security
Patch Tuesday: August 8, 2006
The eEye Digital Security Research Team is dedicated to finding and educating the public about new and existing security vulnerabilities. Below is a list of resources to help you understand the scope of the vulnerabilities behind this month's patches and how to make informed decisions about best ways to proceed with patch installation.
Patch Tuesday Email Bulletin
Immediately following each Patch Tuesday's releases from Microsoft, eEye provides an email bulletin detailing the specifics of each patch's underlying vulnerability, along with information to help administrators plan for patch deployment. The email is available to subscribers of eEye's "Alert" mailing list only. Subscribers also receive timely bulletins when important network security events are unfolding, such as worms and zero-day exploits.
Free Webinar: Vulnerability Experts Forum
As a service to the network security community, eEye's Research Team - headed by Marc Maiffret, eEye's co-founder and Chief Hacking Officer - conducts a Vulnerability Expert Forum web seminar during the second week of every month. To accommodate our customers and partners worldwide, eEye hosts two sessions. These Vulnerability Expert Forums enable participants to stay current on the potential risks and remediation requirements, such as those announced today, by exploring the effect that high-risk vulnerabilities and exploits have on network environments and infrastructures. To register for this month's Vulnerability Expert Forums, visit: http://www.eeye.com/events.
Trial Downloads
Each of eEye's vulnerability management products is designed to help you better prepare your network for remediation activities resulting from Patch Tuesday.
- Retina® Network Security Scanner
Retina proactively identifies known vulnerabilities, allowing security teams to remediate them before they are exploited. - Blink® Endpoint Vulnerability Prevention
For organizations where patching isn't an immediate option, Blink offers host-based intrusion prevention for total protection of systems, without the need for patching. - Iris® Network Traffic Analyzer
Iris captures network traffic and allows for the sessions to be played back in its native format, allowing security admins to identify and track certains types of traffic associated with today's flaws.
Retina Audits
eEye's Retina Network Security Scanner has been updated to verify if this month's Microsoft patches are installed. Retina version 5.5 is available to customers via Auto-Update, and has been updated with the following audits:
MS06-040 - Vulnerability in Server Service Could Allow Remote Code Execution (921883)
[5276] Microsoft Server Service Remote Code Execution (921883) - 2000
[5277] Microsoft Server Service Remote Code Execution (921883) - XP
[5278] Microsoft Server Service Remote Code Execution (921883) - 2003
MS06-041 - Vulnerability in DNS Resolution Could Allow Remote Code Execution (920683)
[5279] Windows DNS Resolution Remote Code Execution (920683) - 2000
[5280] Windows DNS Resolution Remote Code Execution (920683) - XP
[5281] Windows DNS Resolution Remote Code Execution (920683) - 2003
MS06-042 - Cumulative Security Update for Internet Explorer (918899)
[5282] Microsoft IE Cumulative Update - August 2006 (918899) - IE 5.01
[5283] Microsoft IE Cumulative Update - August 2006 (918899) - IE 6 SP1
[5284] Microsoft IE Cumulative Update - August 2006 (918899) - XP
[5285] Microsoft IE Cumulative Update - August 2006 (918899) - XP
MS06-043 - Vulnerability in Microsoft Windows Could Allow Remote Code Execution (920214)
[5286] Microsoft MHTML Parsing Remote Code Execution (920214) - XP SP1
[5287] Microsoft MHTML Parsing Remote Code Execution (920214) - 2003 SP1
MS06-044 - Vulnerability in Microsoft Management Console Could Allow Remote Code Execution (917008)
[5288] Microsoft Management Console Cross-Site Scripting (917008)
MS06-045 - Vulnerability in Windows Explorer Could Allow Remote Code Execution (921398)
[5289] Microsoft Explorer Remote Code Execution (921398) - 2000
[5290] Microsoft Explorer Remote Code Execution (921398) - XP
[5291] Microsoft Explorer Remote Code Execution (921398) - 2003
MS06-046 - Vulnerability in HTML Help Could Allow Remote Code Execution (922616)
[5292] Microsoft HTML Help Remote Code Execution (922616) - 2000
[5293] Microsoft HTML Help Remote Code Execution (922616) - XP
[5294] Microsoft HTML Help Remote Code Execution (922616) - 2003
MS06-047 - Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (921645)
[5295] Microsoft Visual Basic for Applications Remote code Execution (921645)
MS06-048 - Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922968)
[5303] Microsoft PowerPoint Remote Code Execution (922968) - PowerPoint 2003
[5304] Microsoft PowerPoint Remote Code Execution (922968) - PowerPoint 2002
[5305] Microsoft PowerPoint Remote Code Execution (922968) - PowerPoint 2000
[5306] Microsoft PowerPoint Remote Code Execution (922968) - Mac v.X
[5307] Microsoft PowerPoint Remote Code Execution (922968) - Mac 2004
MS06-049 - Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)
[5296] Microsoft Windows Kernel Elevation of Privilege (920958)
MS06-050 - Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (920670)
[5297] Microsoft Hyperlink Object Library Remote Code Execution (920670) - 2000
[5298] Microsoft Hyperlink Object Library Remote Code Execution (920670) - XP
[5299] Microsoft Hyperlink Object Library Remote Code Execution (920670) - 2003
MS06-051 - Vulnerability in Windows Kernel Could Result in Remote Code Execution (917422)
[5300] Microsoft Kernel Remote Code Execution (917422) - 2000
[5301] Microsoft Kernel Remote Code Execution (917422) - XP
[5302] Microsoft Kernel Remote Code Execution (917422) - 2003