Commonwealth Office of Technology

• Security Home
  • Security Main Page
• Alerts
  • Security Alerts
• Policies
  • Security Policies
  • SSPM Manual
• Anti-Virus Info
  • Anti-Virus Info
• Newsletters & Info
  • Cyber Security
  • Cyber Security Awareness
  • Security FAQ
  • Video: Public Folders
• Additional Resources
  • Security Forms
  • Security Links
  • COT Responsibilities

Security Alert - November 15, 2006

From: Ritchey, Gail (COT)
Sent: Wednesday, November 15, 2006 8:42 AM
To: COT Constitutional CIO Security Contacts; COT Cabinet CIO Security Contacts; COT Commonwealth Technology Council

Cc: COT Exchange Administrators; COT Security Alert Contacts; COT Security Contact COT-Support; COT Security Contact Pass; COT Security Contact Self-Support; COT Technical Contacts; SecurityContacts Group

Subject: COT Security Bulletin - Microsoft Updates for November 2006

Attachments: Picture (Metafile)

COT Security Bulletin

---

Microsoft Updates – November 2006

Microsoft has released its Security Bulletins for November 2006. Various vulnerabilities, including several critical vulnerabilities, are addressed in these bulletins. COT recommends applying all critical vulnerabilities as soon as possible. Of particular urgency are the updates contained in MS06-069, MS06-070, and MS06-071. Details of the vulnerabilities and their impact are provided in the links listed.

MS06-066 – Important Vulnerabilities in Client Service for NetWare Could Allow Remote Code Execution (923980)

http://www.microsoft.com/technet/security/Bulletin/MS06-066.mspx

MS06-067 - Critical

Cumulative Security Update for Internet Explorer (922760)

http://www.microsoft.com/technet/security/Bulletin/MS06-067.mspx

MS06-068 - Critical

Vulnerability in Microsoft Agent Could Allow Remote Code Execution (920213)

http://www.microsoft.com/technet/security/Bulletin/MS06-068.mspx

MS06-069 - Critical

Vulnerabilities in Macromedia Flash Player from Adobe Could Allow Remote Code Execution (923789)

http://www.microsoft.com/technet/security/Bulletin/MS06-069.mspx

MS06-070 - Critical

Vulnerability in Workstation Service Could Allow Remote Code Execution (924270)

http://www.microsoft.com/technet/security/Bulletin/MS06-070.mspx

MS06-071- Critical

Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (928088)

http://www.microsoft.com/technet/security/Bulletin/MS06-071.mspx

NOTICE: COT is providing this information so that you are aware of the latest security threats, vulnerabilities, software patches, etc. You should consult with your network administrator or other technical resources to ensure that the appropriate actions for these alerts are followed. If you are a network administrator and need additional information, please call the Service Desk at 502.564.7576.

Commonwealth Office of Technology
Office of Infrastructure Services
Division of Security Services
101 Cold Harbor Drive
Frankfort, KY 40601
COTSecurityServices@ky.gov
http://technology.ky.gov/security/