Tuesday, September 26, 2006

Important Update: Security Bulletin MS06-49 Re-Released

The Microsoft Security Response Center Blog announced that MS06-049 for Windows 2000 users is being re-released. This is related to a vulnerability in Windows kernel that could result in an elevation of privilege.

For more information, see Microsoft Knowledge Base Article 920958.

Note: This is an important update for Microsoft Windows 2000 Service Pack 4.

Known issues from KB 920958: After you install the original version of security update 920958 (MS06-049) on a computer that is using NTFS file system compression, compressed files that are larger than 4 kilobytes (KB) may be corrupted when you create or update the files.

To resolve this problem, install the new version of security update 920958 (MS06-049) that released on September 26, 2006.

================================================
Re-released Security Bulletins
================================================

In addition, Microsoft is re-releasing the following security bulletins

(NOTE: This list contains ONLY those products affected by the re-release and the severity of the vulnerability for those products affected by the re-release)


Microsoft Security Bulletin MS06-049 - Vulnerability in Windows Kernel Could Result in Elevation of Privilege (920958)

Summary: Who Should Read this Document: Customers who use Microsoft Windows

Impact of Vulnerability: Elevation of Privilege

Maximum Severity Rating: Important

Recommendation: Customers should apply the update at the earliest opportunity

Reason for re-release: A security issue has been identified in the way Vector Markup Language (VML) is handled that could allow an attacker to compromise a computer running Microsoft Windows and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restart your computer.

After you install security update 920958 (MS06-049) on a computer that is using NTFS file system compression, compressed files that are larger than 4 kilobytes (KB) may be corrupted when you create or update the files. (See http://support.microsoft.com/kb/920958 for details)

Information on these re-released bulletins may be found at the following pages:
http://www.microsoft.com/technet/security/Bulletin/MS06-049.mspx





No comments: