Microsoft Security Bulletin Summary for January, 2005

http://www.microsoft.com/technet/security/bulletin/ms05-jan.mspx

Critical (2)

Bulletin Identifier Microsoft Security Bulletin MS05-001
Bulletin Title
Vulnerability in HTML Help Could Allow Code Execution (890175)

Executive Summary
A vulnerability exists in Windows that could allow remote code execution on an affected system.

Maximum Severity Rating
Critical

Impact of Vulnerability
Remote Code Execution

Affected Software
Windows. For more information, see the Affected Software and Download Locations section.

=======================================================

Bulletin Identifier Microsoft Security Bulletin MS05-002
Bulletin Title
Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711)

Executive Summary
A vulnerability exists in Windows that could allow remote code execution on an affected system.

Maximum Severity Rating
Critical

Impact of Vulnerability
Remote Code Execution

Affected Software
Windows. For more information, see the Affected Software and Download Locations section.

=========================================================

Important (1)

Bulletin Identifier Microsoft Security Bulletin MS05-003
Bulletin Title
Vulnerability in Indexing Service Could Allow Remote Code Execution (871250)

Executive Summary
A vulnerability exists in the Indexing Service that could allow remote code execution on an affected system. The Indexing Service is not enabled by default on the affected systems.

Maximum Severity Rating
Important

Impact of Vulnerability
Elevation of Privilege

Affected Software
Windows. For more information, see the Affected Software and Download Locations section.