|
|
Retired: Microsoft October 2008 Advance Notification Multiple Vulnerabilities
Microsoft has released advance notification that the vendor will be releasing eleven security bulletins on October 14, 2008. The highest severity rating for these issues is 'Critical'. Successfully exploiting these issues may allow remote or local attackers to compromise affected computers. The following individual records have been created to better document these issues: 29960 Microsoft Internet Explorer 'location' & 'location.href' Cross Domain Security Bypass Vulnerability 31609 Microsoft Windows Active Directory LDAP Request Handling Remote Code Execution Vulnerability 31615 Microsoft Internet Explorer HTML Element Cross Domain Security Bypass Vulnerability 31616 Microsoft Internet Explorer Event Handling Cross Domain Security Bypass Vulnerability 31617 Microsoft Internet Explorer Uninitialized Object Remote Memory Corruption Vulnerability 31618 Microsoft Internet Explorer HTML Objects Uninitialized Memory Corruption Vulnerability 31620 Microsoft Host Integration Server RPC Remote Code Execution Vulnerability 31637 Microsoft Message Queuing Service RPC Query Heap Corruption Vulnerability 31647 Microsoft Windows SMB Buffer Underflow Code Execution Vulnerability 31651 Microsoft Windows Kernel Window Creation Local Privilege Escalation Vulnerability 31652 Microsoft Windows Kernel Memory Corruption Local Privilege Escalation Vulnerability 31653 Microsoft Windows Kernel Unhandled System Call Local Privilege Escalation Vulnerability 31654 Microsoft Internet Explorer Cross Domain Information Disclosure Vulnerability 31673 Microsoft Windows AFD Driver Local Privilege Escalation Vulnerability 31675 Microsoft Windows VAD Local Privilege Escalation Vulnerability 31682 Microsoft Windows Internet Printing Service Integer Overflow Vulnerability 31693 Microsoft Office CDO Protocol Cross Site Scripting Vulnerability 31702 Microsoft Excel Calendar Object Validation Remote Code Execution Vulnerability 31705 Microsoft Excel BIFF File Format Parsing Remote Code Execution Vulnerability 31706 Microsoft Excel Formula Parsing Remote Code Execution Vulnerability |
|
Privacy Statement |