Wed, 12 Jan 2005
Symantec Security Response - Microsoft Security Bulletin
On Tuesday, January 11, Microsoft issued information on three new security updates: Microsoft Security Bulletin MS05-001
Microsoft Security Bulletin MS05-002 Microsoft Security Bulletin MS05-003
Symantec Security Response has identified MS05-001 as the most serious ( http://www.microsoft.com/technet/security/Bulletin/MS05-001.mspx) This vulnerability has been rated as "high" by Symantec and can be exploited through Microsoft Internet Explorer or
other applications that use the same HTML rendering engine. Three pieces of recent malicious code have leveraged this
vulnerability.
"These new vulnerabilities announced by Microsoft can impact both server and desktop systems in both enterprise and home
computing environments," said Oliver Friedrichs, senior manager, Symantec Security Response. "We have already seen
multiple malicious code threats, including Spyware, exploiting one of these vulnerabilities so it is critical that home
users and enterprise administrators run Windows Update, install all patches, and keep security software current to
minimize their risk."
Information on Microsoft's January 2005 Security Bulletin can be found at ( http://www.microsoft.com/technet/security/bulletin/ms05-jan.mspx).
ENDS