Win 95/98/ME/NT/2000/XP
Microsoft Security Bulletin Center - 2001
Subscribe to the Microsoft Security Notification Service
- MS Office 2000, MS Win 2000, MS Win Me (MS01-001)
Patch Available for "Web Client NTLM Authentication" Vulnerability
- Power Point 2000 (MS01-002)
Patch Available for "PowerPoint File Parsing" Vulnerability
- MS Win NT 4.0 & MS Win NT 4.0, Terminal Server Edition (MS01-003)
Patch Available for "Winsock Mutex" Vulnerability
- MS Internet Information Server 4.0 & 5.0 (MS01-004)
Patch Available for New Variant of “File Fragment Reading via .HTR” Vulnerability
- MS Win 2000 Professional, MS Win 2000 Server, MS Win 2000 Advanced Server (MS01-005)
Tool and Patch Available to correct Hotfix Packaging Anomalies
- MS Win 2000 Server & MS Win 2000 Advanced Server (MS01-006)
Patch Available for “Invalid RDP Data” Vulnerability
- MS Win 2000 Professional, MS Win 2000 Server & MS Win 2000 Advanced Server (MS01-007)
Patch Available for “Network DDE Agent Request” Vulnerability
- MS Win NT 4.0 Workstation, MS Win NT 4.0 Server, MS Win NT 4.0 Server, Enterprise Edition, MS Win NT 4.0 Server, Terminal Server Edition (MS01-008)
Patch Available for "NTLMSSP Privilege Elevation" Vulnerability
- MS Win NT 4.0 Server, MS Win NT 4.0 Server, Enterprise Edition, MS Win NT 4.0 Server, Terminal Server Edition (MS01-009)
Patch Available for “Malformed PPTP Packet Stream” Vulnerability
- Microsoft Win Media Player 7 (MS01-010)
Patch Available for "Win Media Player Skins File Download" Vulnerability
- MS Win 2000 Server, MS Win 2000 Advanced Server, MS Win 2000 Datacenter Server (MS01-011)
Patch Available for "Malformed Request to Domain Controller can Cause Denial of Service" Vulnerability
- MS Outlook 97, MS Outlook 2000, MS Outlook Express 5.01, MS Outlook Express 5.5 (MS01-012)
Patch Available for "Outlook, Outlook Express VCard Handler Contains Unchecked Buffer" Vulnerability
- MS Win 2000 Professional, MS Win 2000 Server, MS Win 2000 Advanced Server, MS Win 2000 Datacenter Server (MS01-013)
Patch Available for "Win 2000 Event Viewer Contains Unchecked Buffer" Vulnerability
- Microsoft Internet Information Server 5.0, Microsoft Exchange 2000 (MS01-014)
Patch Available for "Malformed URL can cause Service Failure in IIS 5.0 and Exchange 2000" Vulnerability
- MS IE 5.01, MS IE 5.5, MS Win Scripting Host 5.1, MS Win Scripting Host 5.5 (MS01-015)
Patch Available for "IE can Divulge Location of Cached Content" Vulnerability
- Microsoft Internet Information Services 5.0 (MS01-016)
Patch Available for "Malformed WebDAV Request Can Cause IIS to Exhaust CPU Resources" Vulnerability
- MS Win 95, MS Win 98, MS Win Me, MS Win NT® 4.0, MS Win 2000 (MS01-017)
Patch Available for "Erroneous VeriSign-Issued Digital Certificates Pose Spoofing Hazard" Vulnerability
- Microsoft Visual Studio 6.0 Enterprise Edition (MS01-018)
Patch Available for "Visual Studio VB-TSQL Object Contains Unchecked Buffer" Vulnerability
- Microsoft Plus! 98, Microsoft Win Me (MS01-019)
Patch Available for "Passwords for Compressed Folders are Recoverable" Vulnerability
- MS Internet Explorer 5.01 & MS Internet Explorer 5.5 (MS01-020)
Patch Available for "Incorrect MIME Header Can Cause IE to Execute E-mail Attachment" Vulnerability
- Microsoft ISA Server 2000 (MS01-021)
Patch Available for "Web Request Can Cause Access Violation in ISA Server Web Proxy Service" Vulnerability
- MS Win® 95, MS Win 98, MS Win 98 SE, MS Win Me, MS Win NT® 4.0, MS Win 2000 (MS01-022)
Patch Available for "WebDAV Service Provider Can Allow Scripts to Levy Requests as User" Vulnerability
- MS Win 2000 Server, MS Win 2000 Advanced Server, MS Win 2000 Datacenter Server (MS01-023)
Patch Available for "Unchecked Buffer in ISAPI Extension Could Enable Compromise of IIS 5.0 Server" Vulnerability
- MS Win 2000 Server, MS Win 2000 Advanced Server, MS Win 2000 Datacenter Server (MS01-024)
Patch Available for "Malformed Request to Domain Controller can Cause Memory Exhaustion" Vulnerability
- Microsoft Index Server 2.0, Indexing Service in Microsoft Win 2000 (MS01-025)
Patch Available for "Index Server Search Function Contains Unchecked Buffer" Vulnerability
- MS Internet Information Server 4.0, MS Internet Information Services 5.0 (MS01-026)
Patch Available for "Superfluous Decoding Operation Could Allow Command Execution via IIS" Vulnerability
- Microsoft Internet Explorer 5.01, Microsoft Internet Explorer 5.5 (MS01-027)
Patch Available for "Flaws in Web Server Certificate Validation Could Enable Spoofing" Vulnerability
- MS Word 97, MS Word 2000, MS Word 98 (J), MS Word 98 for the Mac, MS Word 2001 for the Mac (MS01-028)
Patch Available for "RTF document linked to template can run macros without warning" Vulnerability
- Microsoft Win Media Player 6.4, Microsoft Win Media Player 7 (MS01-029)
Patch Available for "Win Media Player .ASX Processor Contains Unchecked Buffer" Vulnerability
- Microsoft Exchange 2000 Server Outlook Web Access (MS01-030)
Patch Available for "Incorrect Attachment Handling in Exchange 2000 OWA Can Execute Script" Vulnerability
- Microsoft Win 2000 (MS01-031)
Patch Available for "Predictable Name Pipes Could Enable Privilege Elevation via Telnet" Vulnerability
- Microsoft SQL Server 7.0, Microsoft SQL Server 2000 Gold (MS01-032)
Patch Available for "SQL Query Method Enables Cached Administrator Connection to be Reused" Vulnerability
- Microsoft Index Server 2.0, Indexing Service in Win 2000 (MS01-033)
Patch Available for "Unchecked Buffer in Index Server ISAPI Extension Could Enable Web Server Compromise" Vulnerability
- MS Word 2002, MS Word 2000, MS Word 97, MS Word 98 (J), MS Word 2001 (Mac), MS Word 98 (Mac) (MS01-034)
Patch Available for "Malformed Word Document Could Enable Macro to Run Automatically" Vulnerability
- Microsoft Visual Studio RAD Support in FrontPage Server Extensions (MS01-035)
Patch Available for "FrontPage Server Extension Sub-Component Contains Unchecked Buffer" Vulnerability
- Win 2000 Server and Advanced Server, Win 2000 Datacenter Server (MS01-036)
Patch Available for "Function Exposed via LDAP over SSL Could Enable Passwords to be Changed" Vulnerability
- Microsoft Win 2000 (MS01-037)
Patch Available for "Authentication Error in SMTP Service Could Allow Mail Relaying" Vulnerability
- Microsoft Outlook 98, Microsoft Outlook 2000, Microsoft Outlook 2002 (MS01-038)
Patch Available Soon for "Outlook View Control Exposes Unsafe Functionality" Vulnerability
- Microsoft Services for Unix 2.0 (MS01-039)
Patch Available for "Services for Unix 2.0 Telnet and NFS Services Contain Memory Leaks" Vulnerability
- MS Win NT 4.0, Terminal Server Edition, MS Win 2000 Server, MS Win 2000 Advanced Server, MS Win 2000 Datacenter Server (MS01-040)
Patch Available for "Invalid RDP Data Can Cause Memory Leak in Terminal Services" Vulnerability
- MS Exchange Server 5.5, MS Exchange Server 2000, MS SQL Server 7.0, MS SQL Server 2000, MS Win NT 4.0, MS Win 2000 (MS01-041)
Patch Available for "Malformed RPC Request Can Cause Service Failure" Vulnerability
- MS Win Media Player 6.4, MS Win Media Player 7, MS Win Media Player 7.1 (MS01-042)
Patch Available for "Win Media Player .NSC Processor Contains Unchecked Buffer" Vulnerability
- MS Win NT 4.0, MS Win 2000, MS Exchange 2000 (MS01-043)
Patch Available for "NNTP Service Contains Memory Leak" Vulnerability
- MS Internet Information Server 4.0, MS Internet Information Server 5.0 (MS01-044)
15 August 2001 Cumulative Patch for IIS
- Microsoft ISA Server 2000 (MS01-045)
Patch Available for "ISA Server H.323 Gatekeeper Service Contains Memory Leak" Vulnerability
- Microsoft Win 2000 (MS01-046)
Patch Available for "Access Violation in Win 2000 IrDA Driver Can Cause System to Restart" Vulnerability
- Microsoft Exchange 5.5 (MS01-047)
Patch Available for "OWA Function Allows Unauthenticated User to Enumerate Global Address List" Vulnerability
- Microsoft Win NT 4.0 (MS01-048)
Patch Available for "Malformed Request to RPC Endpoint Mapper can Cause RPC Service to Fail" Vulnerability
- Microsoft Exchange 2000 Server Outlook Web Access (MS01-049)
Patch Available for "Deeply-nested OWA Request Can Consume Server CPU Availability" Vulnerability
- MS Excel 2000(Win), MS Excel 2002(Win), MS Excel 98(Mac), MS Excel 2001(Mac), MS PowerPoint 2000(Win), MS PowerPoint 2002(Win), MS PowerPoint 98(Mac), MS PowerPoint 2001(Mac) (MS01-050)
Patch Available for "Malformed Excel or PowerPoint Document Can Bypass Macro Security" Vulnerability
- MS Internet Explorer 5.01 SP 2, MS Internet Explorer 5.5 SP 2, MS Internet Explorer 6 (MS01-051)
Patch Available for "Malformed Dotless IP Address Can Cause Web Page to be Handled in Intranet Zone" Vulnerability
- MS Win NT Server 4.0, Terminal Server Edition, MS Win 2000 Server, MS Win 2000 Advanced Server, MS Win 2000 Datacenter Server (MS01-052)
Patch Available for "Invalid RDP Data can Cause Terminal Service Failure" Vulnerability
- Microsoft Internet Explorer 5.1 for the Macintosh (MS01-053)
Patch Available for "Downloaded Applications Can Execute on Mac IE 5.1 for OS X" Vulnerability
- Microsoft Windows 98, Microsoft Windows 98SE, Microsoft Windows ME, Microsoft Windows XP (MS01-054)
Patch Available for "Invalid Universal Plug and Play Request can Disrupt System Operation" Vulnerability
- Microsoft Internet Explorer 5.5 Service Pack 2, Microsoft Internet Explorer 6.0 (MS01-055)
Patch Available for "Cookie Data in IE Can Be Exposed or Altered Through Script Injection" Vulnerability
- Windows Media Player 6.4, Windows Media Player 7, Windows Media Player 7.1, Windows Media Player for Windows XP (MS01-056)
Patch Available for "Windows Media Player .ASF Processor Contains Unchecked Buffer" Vulnerability
- Microsoft Exchange 5.5 Server Outlook Web Access (MS01-057)
Patch Available for "Specially Formed Script in HMTL Mail can Execute in Exchange 5.5 OWA" Vulnerability
- Microsoft Internet Explorer 5.5, Microsoft Internet Explorer 6.0 (MS01-058)
"13 December 2001 Cumulative Patch for IE"
- Microsoft Windows 98, Microsoft Windows 98SE, Microsoft Windows ME, Microsoft Windows XP (MS01-059)
Patch Available for "Unchecked Buffer in Universal Plug and Play can Lead to System Compromise" Vulnerability
- Microsoft SQL Server 7.0, Microsoft SQL Server 2000 (MS01-060)
Patch Available for "SQL Server Text Formatting Functions Contain Unchecked Buffers" Vulnerability
GOTO: Microsoft Security Bulletin Center - 2000
GOTO: Microsoft Security Bulletin Center - 2002
GOTO: Microsoft Security Bulletin Center - 2003
GOTO: Microsoft Security Bulletin Center - 2004
GOTO: Microsoft Security Bulletin Center - 2005
GOTO: Microsoft Security Bulletin Center - 2006
GOTO: Microsoft Security Bulletin Center - 2007
GOTO: Microsoft Security Bulletin Center - 2008
