• info
• discussion
• exploit
• solution
• references

RETIRED: Microsoft April Advance Notification Multiple Vulnerabilities

Microsoft has released advance notification that they will be releasing five security bulletins for Windows on April 11, 2006. The highest severity rating for these issues is Critical.

Further details about these issues are not currently available. Individual BIDs will be created and this record will be removed when the security bulletins are released.

These vulnerabilities have been assigned to the following BIDs:

17196 Microsoft Internet Explorer CreateTextRange Remote Code Execution Vulnerability
17131 Microsoft Internet Explorer Script Action Handler Buffer Overflow Vulnerability
17181 Microsoft Internet Explorer Unspecified Remote HTA Execution Vulnerability
17450 Microsoft Internet Explorer Invalid HTML Parsing Code Execution Vulnerability
17453 Microsoft Internet Explorer COM Object Instantiation Code Execution Vulnerability
17468 Microsoft Internet Explorer HTML Tag Memory Corruption Vulnerability
17454 Microsoft Internet Explorer Double Byte Character Memory Corruption Vulnerability
17455 Microsoft Internet Explorer Erroneous IOleClientSite Data Zone Bypass Vulnerability
17457 Microsoft Internet Explorer Popup Cross-Domain Information Disclosure Vulnerability
17460 Microsoft Internet Explorer Persistent Window Content Address Bar Spoofing Vulnerability
17462 Microsoft MDAC RDS.Dataspace ActiveX Control Remote Code Execution Vulnerability
17464 Microsoft Windows Shell COM Object Remote Code Execution Vulnerability
17459 Microsoft Outlook Express Windows Address Book File Parsing Buffer Overflow Vulnerability
17452 Microsoft FrontPage Server Extensions Cross-Site Scripting Vulnerability