• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Windows Embedded Web Font Buffer Overflow Vulnerability

Solution:

Avaya security advisory ASA-2006-004 addresses this issue. Avaya recommends following Microsoft's instructions for installing the Operating System patch.

Nortel has released an advisory (2006006582) to identify vulnerable products. The vendor advises customers to follow Microsoft's recommendations and install fixes supplied by Microsoft.

Fixes are available:


Microsoft Windows Server 2003 Datacenter Edition SP1

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5

Microsoft Windows XP Tablet PC Edition SP2

• Microsoft Security Update for Windows XP (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=6DAEA2AF-3723 -4CDF-B5BD-B21AC75B5243

Microsoft Windows XP Media Center Edition SP1

• Microsoft Security Update for Windows XP (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=6DAEA2AF-3723 -4CDF-B5BD-B21AC75B5243

Microsoft Windows Server 2003 Standard Edition SP1

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5

Microsoft Windows Server 2003 Standard Edition

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5

Microsoft Windows Server 2003 Enterprise x64 Edition

• Microsoft Windows Server x64 Edition (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=80B05C56-5BCE -4262-8142-AF0D8A7BC388

Microsoft Windows Server 2003 Datacenter Edition Itanium 0

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5


• Microsoft Security Update for Windows Server 2003 for Itanium-based systems (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=E39D2E29-8934 -4AA1-844D-11EFA57D9CC5

Microsoft Windows Server 2003 Enterprise Edition SP1

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5

Microsoft Windows Server 2003 Datacenter Edition

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5

Microsoft Windows 2000 Advanced Server SP4

• Microsoft Security Update for Windows 2000 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=DC6C2FE8-3C81 -4661-994B-4146775BF590

Microsoft Windows XP Home SP1

• Microsoft Security Update for Windows XP (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=6DAEA2AF-3723 -4CDF-B5BD-B21AC75B5243

Microsoft Windows XP Professional x64 Edition

• Microsoft Security Update for Windows XP x64 Edition (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=1990B2CF-AE88 -4849-AEAB-3F833969E197

Microsoft Windows Server 2003 Datacenter Edition Itanium SP1

• Microsoft Security Update for Windows Server 2003 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=5FC12654-486F -45BF-8D34-BDF0998869C5


• Microsoft Security Update for Windows Server 2003 for Itanium-based systems (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=E39D2E29-8934 -4AA1-844D-11EFA57D9CC5

Microsoft Windows Server 2003 Standard x64 Edition

• Microsoft Windows Server x64 Edition (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=80B05C56-5BCE -4262-8142-AF0D8A7BC388

Microsoft Windows 2000 Professional SP4

• Microsoft Security Update for Windows 2000 (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=DC6C2FE8-3C81 -4661-994B-4146775BF590

Microsoft Windows XP Media Center Edition SP2

• Microsoft Security Update for Windows XP (KB908519)
  http://www.microsoft.com/downloads/details.aspx?familyid=6DAEA2AF-3723 -4CDF-B5BD-B21AC75B5243