Redbeard's Place...MS Security 2007

Win 95/98/ME/NT/2000/XP
Microsoft Security Bulletin Center - 2007

Subscribe to the Microsoft Security Notification Service

Microsoft Security Bulletin MS07-001
Vulnerability in Microsoft Office 2003 Brazilian Portuguese Grammar Checker Could Allow Remote Code Execution (921585)

Affected Software:
• Microsoft Office 2003 Service Pack 2 (Brazilian Portuguese Version) -(KB921585)
    • Microsoft Word 2003
    • Microsoft Excel 2003
    • Microsoft Outlook 2003
    • Microsoft Access 2003
    • Microsoft OneNote 2003
    • Microsoft PowerPoint 2003
    • Microsoft Publisher 2003
    • Microsoft Access 2003
    • Microsoft InfoPath 2003
    • Microsoft FrontPage 2003
    • Microsoft Visio 2003
    • Microsoft Visio Enterprise Architects 2003
• Microsoft Office Multilingual User Interface 2003 Service Pack 2 - (KB921585)
• Microsoft Project Multilingual User Interface 2003 Service Pack 2 - (KB921585)
• Microsoft Visio Multilingual User Interface 2003 Service Pack 2 - (KB921585)
• Microsoft Office Proofing Tools 2003 Service Pack 2 - (KB921585)

NON Affected Software:
• Microsoft Office 2000
• Microsoft Office XP
• Microsoft Office 2007
• Microsoft Office v.X for Mac
• Microsoft Office 2004 for Mac
Microsoft Security Bulletin MS07-002
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (927198)

Affected Software:
• Microsoft Office 2000 Service Pack 3
    • Microsoft Excel 2000 - (KB925524)
• Microsoft Office XP Service Pack 3
    • Microsoft Excel 2002 - (KB925523)
• Microsoft Office 2003 Service Pack 2
    • Microsoft Excel 2003 - (KB925257)
    • Microsoft Office Excel Viewer 2003 - (KB925525)
• Microsoft Works Suites:
    • Microsoft Works Suite 2004 - (KB925523) (same as the Microsoft Excel 2002 update)
    • Microsoft Works Suite 2005 - (KB925523) (same as the Microsoft Excel 2002 update)
• Microsoft Office 2004 for Mac - (KB930402)
• Microsoft Office v. X for Mac - (KB930403)

NON Affected Software:
• 2007 Microsoft Office system
    • Microsoft Office Excel 2007
• Microsoft Works Suites:
    • Microsoft Works Suite 2006
Microsoft Security Bulletin MS07-003
Vulnerabilities in Microsoft Outlook Could Allow Remote Code Execution (925938)

Affected Software:
• Microsoft Office 2000 Service Pack 3
    • Microsoft Outlook 2000 — (KB921593)
• Microsoft Office XP Service Pack 3
    • Microsoft Outlook 2002 — (KB921594)
• Microsoft Office 2003 Service Pack 2
    • Microsoft Outlook 2003 — (KB924085)

NON Affected Software:
• Microsoft Office 2007
    • Microsoft Office Outlook 2007
Microsoft Security Bulletin MS07-004
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (929969)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition

NON Affected Software:
• Windows Vista

Affected Components:
• Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4
• Internet Explorer 6 Service Pack 1 on Microsoft Windows 2000 Service Pack 4
• Internet Explorer 7 on Microsoft Windows XP Service Pack 2
• Internet Explorer 7 on Microsoft Windows XP Professional x64 Edition
• Internet Explorer 7 on Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Internet Explorer 7 on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Internet Explorer 7 on Microsoft Windows Server 2003 x64 Edition
Microsoft Security Bulletin MS07-005
Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723)

Affected Software:
• Step-by-Step Interactive Training when installed on Microsoft Windows 2000 Service Pack 4
• Step-by-Step Interactive Training when installed on Microsoft Windows XP Service Pack 2
• Step-by-Step Interactive Training when installed on Microsoft Windows XP Professional x64 Edition
• Step-by-Step Interactive Training when installed on Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Step-by-Step Interactive Training when installed on Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Step-by-Step Interactive Training when installed on Microsoft Windows Server 2003 x64 Edition
Microsoft Security Bulletin MS07-006
Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255)

Affected Software:
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition

NON Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows Vista
Microsoft Security Bulletin MS07-007
Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802)

Affected Software:
• Microsoft Windows XP Service Pack 2

NON Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition
• Windows Vista
Microsoft Security Bulletin MS07-008
Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition

NON Affected Software:
• Windows Vista
Microsoft Security Bulletin MS07-009
Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution (927779)

Affected Software:
• Microsoft Data Access Components 2.5 Service Pack 3 on Microsoft Windows 2000 Service Pack 4
• Microsoft Data Access Components 2.8 Service Pack 1 on Microsoft Windows XP Service Pack 2
• Microsoft Data Access Components 2.8 on Microsoft Windows Server 2003
• Microsoft Data Access Components 2.8 on Microsoft Windows Server 2003 for Itanium-based Systems

NON Affected Software:
• Microsoft Data Access Components 2.8 Service Pack 2 on Microsoft Windows XP Professional x64 Edition
• Microsoft Data Access Components 2.8 Service Pack 2 on Microsoft Windows Server 2003 Service Pack 1
• Microsoft Data Access Components 2.8 Service Pack 2 on Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Data Access Components 2.8 Service Pack 2 on Microsoft Windows Server 2003 x64 Edition
• Windows Data Access Components 6.0 on Windows Vista

Affected Components:
• Internet Explorer 5.01 Service Pack 4 on Microsoft Windows 2000 Service Pack 4
• Microsoft Data Access Components 2.7 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4
• Microsoft Data Access Components 2.8 when installed on Microsoft Windows 2000 Service Pack 4
• Microsoft Data Access Components 2.8 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4
Microsoft Security Bulletin MS07-010
Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135)

Affected Software:
• Windows Live OneCare
• Microsoft Antigen for Exchange 9.x
• Microsoft Antigen for SMTP Gateway 9.x
• Microsoft Windows Defender
• Microsoft Windows Defender x64 Edition
• Microsoft Windows Defender in Windows Vista
• Microsoft Forefront Security for Exchange Server
• Microsoft Forefront Security for SharePoint

Affected Components:
• Microsoft Malware Protection Engine
Microsoft Security Bulletin MS07-011
Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition

NON Affected Software:
• Windows Vista
Microsoft Security Bulletin MS07-012
Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition
• Microsoft Visual Studio .NET 2002 (KB924641)
• Microsoft Visual Studio .NET 2002 Service Pack 1 (KB924642)
• Microsoft Visual Studio .NET 2003 (KB924643)
• Microsoft Visual Studio .NET 2003 Service Pack 1

NON Affected Software:
• Windows Vista
• Microsoft Visual Studio 2005
Microsoft Security Bulletin MS07-013
Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118)

Affected Software:
Windows Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition

Office Software:
• Microsoft Office 2000 Service Pack 3 (KB920906)
    • Microsoft Access 2000
    • Microsoft Excel 2000
    • Microsoft FrontPage 2000
    • Microsoft Outlook 2000
    • Microsoft PowerPoint 2000
    • Microsoft Publisher 2000
    • Microsoft Word 2000

• Microsoft Office XP Service Pack 3 (KB920816)
    • Microsoft Access 2002
    • Microsoft Excel 2002
    • Microsoft FrontPage 2002
    • Microsoft Outlook 2002
    • Microsoft PowerPoint 2002
    • Microsoft Publisher 2002
    • Microsoft Word 2002

• Microsoft Office 2003 Service Pack 2 (KB920813)
    • Microsoft Access 2003
    • Microsoft Excel 2003
    • Microsoft FrontPage 2003
    • Microsoft InfoPath 2003
    • Microsoft OneNote 2003
    • Microsoft Outlook 2003
    • Microsoft PowerPoint 2003
    • Microsoft Project 2003
    • Microsoft Publisher 2003
    • Microsoft Visio 2003
    • Microsoft Word 2003
    • Microsoft Word 2003 Viewer

• Microsoft Project 2000 Service Release 1 (KB920906)
• Microsoft Office 2000 Multilanguage Packs (KB920906)
• Microsoft Project 2002 Service Pack 1(KB920816)
• Microsoft Visio 2002 Service Pack 2 (KB920816)
• Microsoft Learning Essentials 1.0, 1.1, and 1.5 for Microsoft Office (KB929437)
• Microsoft Global Input Method Editor for Office 2000 (Japanese) (KB920906)
• Microsoft Office 2004 for Mac (KB932185)

NON Affected Software:
• Windows Vista
• Microsoft Visual Studio 2005
Microsoft Security Bulletin MS07-014
Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)

Affected Software:
• Microsoft Office 2000 Service Pack 3
    • Microsoft Word 2000 (KB929139)

•Microsoft Office XP Service Pack 3
    • Microsoft Word 2002 (KB929061)

• Microsoft Office 2003 Service Pack 2
    • Microsoft Word 2003 (KB929057)
    • Microsoft Word Viewer 2003 (KB924883)

• Microsoft Works Suites:
    • Microsoft Works Suite 2004 (KB929061) (same as the Microsoft Word 2002 update)
    • Microsoft Works Suite 2005e (KB929061) (same as the Microsoft Word 2002 update)
    • Microsoft Works Suite 2006 (KB929061) (same as the Microsoft Word 2002 update)

• Microsoft Office 2004 for Mac

NON Affected Software:
• 2007 Microsoft Office System
    • Microsoft Office Word 2007
Microsoft Security Bulletin MS07-015
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554)

Affected Software:
• Microsoft Office 2000 Service Pack 3 (KB 929062)
    • Microsoft Access 2000
    • Microsoft Excel 2000
    • Microsoft FrontPage 2000
    • Microsoft Outlook 2000
    • Microsoft PowerPoint 2000
    • Microsoft Publisher 2000
    • Microsoft Word 2000

• Microsoft Office XP Service Pack 3 (KB929063)
    • Microsoft Access 2002
    • Microsoft Excel 2002
    • Microsoft FrontPage 2002
    • Microsoft Outlook 2002
    • Microsoft PowerPoint 2002
    • Microsoft Publisher 2002
    • Microsoft Visio 2002
    • Microsoft Word 2002

• Microsoft Office 2003 Service Pack 2 (KB929064)
    • Microsoft Access 2003
    • Microsoft Excel 2003
    • Microsoft Excel 2003 Viewer
    • Microsoft FrontPage 2003
    • Microsoft InfoPath 2003
    • Microsoft OneNote 2003
    • Microsoft Outlook 2003
    • Microsoft PowerPoint 2003
    • Microsoft Project 2003
    • Microsoft Publisher 2003
    • Microsoft Visio 2003
    • Microsoft Word 2003
    • Microsoft Excel 2003 Viewer
    • Microsoft Word 2003 Viewer

• Microsoft Project 2000 Service Release 1 (KB929062)
• Microsoft Project 2002 Service Pack 1 (KB929063)
• Microsoft Visio 2002 Service Pack 2 (KB929063)
• Microsoft Office 2004 for Mac (KB932185)

NON Affected Software:
• 2007 Microsoft Office System

• Microsoft Office 2003 Service Pack 2
    • Microsoft PowerPoint 2003 Viewer

• Microsoft Works Suites:
    • Microsoft Works Suite 2004
    • Microsoft Works Suite 2005
    • Microsoft Works Suite 2006
Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition

NON Affected Software:
• Windows Vista

Affected Components:
• Microsoft Internet Explorer 5.01 Service Pack 4 on Windows 2000 Service Pack 4
• Microsoft Internet Explorer 6 Service Pack 1 when installed on Windows 2000 Service Pack 4
• Microsoft Internet Explorer 6 for Windows XP Service Pack 2
• Microsoft Internet Explorer 6 for Windows XP Professional x64 Edition
• Microsoft Internet Explorer 6 for Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1
• Microsoft Internet Explorer 6 for Windows Server 2003 for Itanium-based Systems and Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Internet Explorer 6 for Windows Server 2003 x64 Edition
• Windows Internet Explorer 7 for Windows XP Service Pack 2
• Windows Internet Explorer 7 for Windows XP Professional x64 Edition
• Windows Internet Explorer 7 for Windows Server 2003 Service Pack 1
• Windows Internet Explorer 7 for Windows Server 2003 with SP1 for Itanium-based Systems
• Windows Internet Explorer 7 for Windows Server 2003 x64 Edition

NON Affected Components:
• Windows Internet Explorer 7 in Windows Vista
Microsoft Security Bulletin MS07-017
Vulnerabilities in GDI Could Allow Remote Code Execution (925902)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition and Microsoft Windows XP Professional x64 Edition Service Pack 2
• Microsoft Windows Server 2003, Microsoft Windows Server 2003 Service Pack 1, and Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition
• Microsoft Windows Server 2003 x64 Edition Service Pack 2
• Windows Vista
• Windows Vista x64 Edition
Microsoft Security Bulletin MS07-018
Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939)

Affected Software:
• Microsoft Content Management Server 2001 Service Pack 1 (KB924430)
• Microsoft Content Management Server 2002 Service Pack 2 (KB924429)
Microsoft Security Bulletin MS07-019
Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261)

Affected Software:
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition and Microsoft Windows XP Professional x64 Edition Service Pack 2

NON Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows Server 2003
• Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition
• Microsoft Windows Server 2003 x64 Edition Service Pack 2
• Windows Vista
• Windows Vista x64 Edition
Microsoft Security Bulletin MS07-020
Vulnerability in Microsoft Agent Could Allow Remote Code Execution (932168)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows XP Professional x64 Edition Service Pack 2
• Microsoft Windows Server 2003
• Microsoft Windows Server 2003 Service Pack 1
• Microsoft Server 2003 Service Pack 2
• Microsoft Windows Server 2003 x64 Edition with Service Pack 1
• Microsoft Windows Server 2003 x64 Edition with Service Pack 2
• Microsoft Windows Server 2003 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP2 for Itanium-based Systems

NON Affected Software:
• Windows Vista
• Windows Vista x64 Edition
Microsoft Security Bulletin MS07-021
Vulnerabilities in CSRSS Could Allow Remote Code Execution (930178)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows XP Professional x64 Edition Service Pack 2
• Microsoft Windows Server 2003
• Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
• Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition
• Microsoft Windows Server 2003 x64 Edition Service Pack 2
• Windows Vista
• Windows Vista x64 Edition
Microsoft Security Bulletin MS07-022
Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows Server 2003, Microsoft Windows Server 2003 Service Pack 1, and Microsoft 2003 Service Pack 2

NON Affected Software:
• Microsoft Windows XP Professional x64 Edition and Microsoft Windows XP
Professional x64 Edition Service Pack 2
• Microsoft Windows Server 2003 x64 Edition and Microsoft Windows Server 2003 x64 Edition Service Pack 2
• Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 and SP2 for Itanium-based Systems
• Windows Vista
• Windows Vista x64 Edition
Microsoft Security Bulletin MS07-023
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (934233)

Affected Software:
• Microsoft Office 2000 Service Pack 3
    • Microsoft Excel 2000 - (KB934447)

• Microsoft Office XP Service Pack 3
    • Microsoft Excel 2002 - (KB934453)

• Microsoft Office 2003 Service Pack 2
    • Microsoft Excel 2003 - (KB933666)
    • Microsoft Excel 2003 Viewer - (KB934445)

• 2007 Microsoft Office System
    • Microsoft Office Excel 2007 - (KB934670)
    • Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats - (KB933688)

• Microsoft Office 2004 for Mac - (KB936749)

NON Affected Software:
• Microsoft Works Suites:
    • Microsoft Works Suite 2004
    • Microsoft Works Suite 2005
    • Microsoft Works Suite 2006
Microsoft Security Bulletin MS07-024
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (934232)

Affected Software:
• Microsoft Office 2000 Service Pack 3
    • Microsoft Word 2000 - (KB934392)

• Microsoft Office XP Service Pack 3
    • Microsoft Word 2002 - (KB934394)

• Microsoft Office 2003 Service Pack 2
    • Microsoft Word 2003 - (KB934181)
    • Microsoft Word Viewer 2003 - (KB934041)

• Microsoft Office 2004 for Mac - (KB936749)

• Microsoft Works Suites:
    • Microsoft Works Suite 2004 - (KB934394) (same as the Microsoft Word 2002 update)
    • Microsoft Works Suite 2005 - (KB934394) (same as the Microsoft Word 2002 update)
    • Microsoft Works Suite 2006 - (KB934394) (same as the Microsoft Word 2002 update)

NON Affected Software:
• 2007 Microsoft Office System
    • Microsoft Word 2007
Microsoft Security Bulletin MS07-025
Vulnerability in Microsoft Office Could Allow Remote Code Execution (934873)

Affected Software:
• Microsoft Office 2000 Service Pack 3 — (KB934526)
    • Microsoft Excel 2000
    • Microsoft FrontPage 2000
    • Microsoft Publisher 2000

• Microsoft Office XP Service Pack 3 — (KB934705)
    • Microsoft Excel 2002
    • Microsoft FrontPage 2002
    • Microsoft Publisher 2002

• Microsoft Office 2003 Service Pack 2 — (KB934180)
    • Microsoft Excel 2003
    • Microsoft FrontPage 2003
    • Microsoft Publisher 2003
    • Microsoft Excel 2003 Viewer

• 2007 Microsoft Office System — (KB934062)
    • Microsoft Office Excel 2007
    • Microsoft Office Publisher 2007
    • Microsoft Office SharePoint Designer 2007
    • Microsoft Expression Web

• Microsoft Office 2004 for Mac — (KB936749)

NON Affected Software:
• Microsoft Works Suites:
    • Microsoft Works Suite 2004
    • Microsoft Works Suite 2005
    • Microsoft Works Suite 2006

• Microsoft Office 2000 Service Pack 3
    • Microsoft Access 2000
    • Microsoft Outlook 2000
    • Microsoft PowerPoint 2000
    • Microsoft Project 2000 Service Release 1
    • Microsoft Word 2000

• Microsoft Office XP Service Pack 3
    • Microsoft Access 2002
    • Microsoft Outlook 2002
    • Microsoft PowerPoint 2002
    • Microsoft Project 2002 Service Pack 1
    • Microsoft Visio 2002
    • Microsoft Word 2002

• Microsoft Office 2003 Service Pack 2:
    • Microsoft Access 2003
    • Microsoft InfoPath 2003
    • Microsoft OneNote 2003
    • Microsoft Outlook 2003
    • Microsoft Project 2003
    • Microsoft PowerPoint 2003
    • Microsoft PowerPoint 2003 Viewer
    • Microsoft Visio 2003
    • Microsoft Word 2003
    • Microsoft Word 2003 Viewer

• 2007 Microsoft Office System
    • Microsoft Office Access 2007
    • Microsoft Office PowerPoint 2007
    • Microsoft Office Project 2007
    • Microsoft Office Visio 2007
    • Microsoft Office Word 2007
Microsoft Security Bulletin MS07-026
Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832)

Affected Software:
• Microsoft Exchange 2000 Server Service Pack 3 with the Exchange 2000 Post-Service Pack 3 Update Rollup of August 2004 — (KB931832)
• Microsoft Exchange Server 2003 Service Pack 1 — (KB931832)
• Microsoft Exchange Server 2003 Service Pack 2 — (KB931832)
• Microsoft Exchange Server 2007 — (KB935490)
Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)

Affected Software:
• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
• Microsoft Windows Server 2003 Service Pack 1 and Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems and Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition Service Pack 1 and Microsoft Windows Server 2003 x64 Edition Service Pack 2
• Windows Vista
• Windows Vista x64 Edition

Affected Components:
• Microsoft Internet Explorer 5.01 Service Pack 4 on Windows 2000 Service Pack 4
• Microsoft Internet Explorer 6 Service Pack 1 when installed on Windows 2000 Service Pack 4
• Microsoft Internet Explorer 6 for Windows XP Service Pack 2
• Microsoft Internet Explorer 6 for Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
• Microsoft Internet Explorer 6 for Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
• Microsoft Internet Explorer 6 for Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 1 and Windows Server 2003 x64 Edition Service Pack 2
• Windows Internet Explorer 7 for Windows XP Service Pack 2
• Windows Internet Explorer 7 for Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
• Windows Internet Explorer 7 for Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
• Windows Internet Explorer 7 for Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
• Windows Internet Explorer 7 for Windows Server 2003 x64 Edition Service Pack 1 and Windows Server 2003 x64 Edition Service Pack 2
• Windows Internet Explorer 7 in Windows Vista
• Windows Internet Explorer 7 in Windows Vista x64 Edition
Microsoft Security Bulletin MS07-028
Vulnerability in CAPICOM Could Allow Remote Code Execution (931906)

Affected Software:
• CAPICOM
• Platform SDK Redistributable: CAPICOM
• BizTalk Server 2004 Service Pack 1
• BizTalk Server 2004 Service Pack 2

NON Affected Software:
• BizTalk Server 2000
• BizTalk Server 2002
• BizTalk Server 2006
Microsoft Security Bulletin MS07-029
Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution (935966)

Affected Software:
• Microsoft Windows 2000 Server Service Pack 4
• Microsoft Windows Server 2003 Service Pack 1 and Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 with SP1 for Itanium-based Systems and Microsoft Windows Server 2003 with SP2 for Itanium-based Systems
• Microsoft Windows Server 2003 x64 Edition Service Pack 1 and Microsoft Windows Server 2003 x64 Edition Service Pack 2

NON Affected Software:
• Microsoft Windows 2000 Professional Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition and Microsoft Windows XP Professional x64 Edition Service Pack 2
• Windows Vista
• Windows Vista x64 Edition
Microsoft Security Bulletin MS07-030
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (927051)

Affected Software:
Microsoft Visio 2002 Service Pack 2
Microsoft Office 2003
Microsoft Visio 2003 Service Pack 2

NON Affected Software:
2007 Microsoft Office System
Microsoft Office Visio 2007
Microsoft Security Bulletin MS07-031
Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840)

Affected Software:
Windows 2000 Service Pack 4
Windows XP Service Pack 2
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems

NON Affected Software:
Windows Vista
Windows Vista x64 Edition
Microsoft Security Bulletin MS07-032
Vulnerability in Windows Vista Could Allow Information Disclosure (931213)

Affected Software:
Windows Vista
Windows Vista x64 Edition

NON Affected Software:
Windows 2000 Service Pack 4
Windows XP Service Pack 2
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)

Affected Software:
Internet Explorer 5.01 and Internet Explorer 6 Service Pack 1
Microsoft Windows 2000 Service Pack 4
Microsoft Internet Explorer 5.01 Service Pack 4
Microsoft Windows 2000 Service Pack 4
Microsoft Internet Explorer 6 Service Pack 1

Internet Explorer 6
Windows XP Service Pack 2
Microsoft Internet Explorer 6
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Microsoft Internet Explorer 6
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Microsoft Internet Explorer 6
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Microsoft Internet Explorer 6
Remote Code Executio Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems Microsoft Internet Explorer 6

Internet Explorer 7
Windows XP Service Pack 2
Windows Internet Explorer 7
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Internet Explorer 7
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Internet Explorer 7
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Internet Explorer 7
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
Windows Internet Explorer 7
Windows Vista
Windows Internet Explorer 7
Windows Vista x64 Edition
Windows Internet Explorer 7

NON Affected Software:
NONE
Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)

Affected Software:
Windows 2000 Service Pack 4
Windows XP Service Pack 2
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems

NON Affected Software:
Windows Vista
Windows Vista x64 Edition
Microsoft Security Bulletin MS07-034
Cumulative Security Update for Outlook Express and Windows Mail (929123)

Affected Software:
Windows XP Service Pack 2 - Microsoft Outlook Express 6
Windows XP Professional x64 Edition - Microsoft Outlook Express 6
Windows XP Professional x64 Edition Service Pack 2 - Microsoft Outlook Express 6
Windows Server 2003 Service Pack 1 - Microsoft Outlook Express 6
Windows Server 2003 Service Pack 2 - Microsoft Outlook Express 6
Windows Server 2003 x64 Edition - Microsoft Outlook Express 6
Windows Server 2003 x64 Edition Service Pack 2 - Microsoft Outlook Express 6
Windows Server 2003 with SP1 for Itanium-based Systems - Microsoft Outlook Express 6
Windows Server 2003 with SP2 for Itanium-based Systems - Microsoft Outlook Express 6
Windows Vista - Windows Mail
Windows Vista x64 Edition - Windows Mail

NON Affected Software:
Windows 2000 Service Pack 4 - Outlook Express 5.5 Service Pack 2
Windows 2000 Service Pack 4 - Outlook Express 6 Service Pack 1
Microsoft Security Bulletin MS07-035
Vulnerability in Win 32 API Could Allow Remote Code Execution (935839)

Affected Software:
Windows 2000 Service Pack 4
Windows XP Service Pack 2
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems

NON Affected Software:
Windows Vista
Windows Vista x64 Edition
Microsoft Security Bulletin MS07-036
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (936542)

Affected Software:
Microsoft Office 2000 Service Pack 3
Microsoft Office XP Service Pack 3 - Microsoft Excel 2002 Service Pack 3
Microsoft Office 2003 Service Pack 2 - Microsoft Excel 2003 Service Pack 2
Microsoft Excel 2003 Viewer
Microsoft Office 2004 for Mac
2007 Microsoft Office System - Microsoft Office Excel 2007
Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats
Microsoft Security Bulletin MS07-037
Vulnerability in Microsoft Office Publisher 2007 Could Allow Remote Code Execution (936548)

Affected Software:
2007 Microsoft Office System - Microsoft Office Publisher 2007

NON Affected Software:
Microsoft Office 2000 Service Pack 3 - Microsoft Publisher 2000
Microsoft Office XP Service Pack 3 - Microsoft Publisher 2002
Microsoft Office 2003 Service Pack 2 - Microsoft Publisher 2003
Microsoft Security Bulletin MS07-038
Vulnerability in Windows Vista Firewall Could Allow Information Disclosure (935807)

Affected Software:
Windows Vista
Windows Vista x64 Edition
Microsoft Security Bulletin MS07-039
Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122)

Affected Software:
Microsoft Windows 2000 Server Service Pack 4
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems

NON Affected Software:
Windows 2000 Professional Service Pack 4
Windows XP Service Pack 2
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Vista
Windows Vista x64 Edition
Active Directory Application Mode (ADAM) Service Pack 1
Microsoft Security Bulletin MS07-040
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)

Affected Software:
Microsoft .NET Framework 1.0
Windows 2000 Service Pack 4 - Microsoft .NET Framework 1.0 (KB928367)
Windows XP Service Pack 2 - Microsoft .NET Framework 1.0 (KB928367)
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Microsoft .NET Framework 1.0 (KB928367)
Windows XP Tablet PC Edition 2005 and Windows XP Media Center Edition 2005 - Microsoft .NET Framework 1.0 (KB930494)
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Microsoft .NET Framework 1.0 (KB928367)
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems - Microsoft .NET Framework 1.0 (KB928367)
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Microsoft .NET Framework 1.0 (KB928367)
Windows Vista - Microsoft .NET Framework 1.0 (KB928367)

Microsoft .NET Framework 1.1
Windows 2000 Service Pack 4 - Microsoft .NET Framework 1.1 (KB928366)
Windows XP Service Pack 2 - Microsoft .NET Framework 1.1 (KB928366)
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Microsoft .NET Framework 1.1 (KB928366)
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Microsoft .NET Framework 1.1 (KB933854)
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems - Microsoft .NET Framework 1.1 (KB928366)
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Microsoft .NET Framework 1.1 (KB928366)
Windows Vista - Microsoft .NET Framework 1.1 (KB929729)
Windows Vista x64 Edition - Microsoft .NET Framework 1.1 (KB929729)

Microsoft .NET Framework 2.0
Windows 2000 Service Pack 4 - Microsoft .NET Framework 2.0 (KB928365)
Windows XP Service Pack 2 - Microsoft .NET Framework 2.0 (KB928365)
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Microsoft .NET Framework 2.0 (KB928365)
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Microsoft .NET Framework 2.0 (KB928365)
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems - Microsoft .NET Framework 2.0 (KB928365)
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Microsoft .NET Framework 2.0 (KB928365)
Windows Vista - Microsoft .NET Framework 2.0 (KB929916)
Windows Vista x64 Edition - Microsoft .NET Framework 2.0 (KB929916)

NON Affected Software:
Windows XP Service Pack 2 - Microsoft .NET Framework 3.0
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Microsoft .NET Framework 3.0
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Microsoft .NET Framework 3.0
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Microsoft .NET Framework 3.0
Windows Vista - Microsoft .NET Framework 3.0
Windows Vista x64 Edition - Microsoft .NET Framework 3.0
Microsoft Security Bulletin MS07-041
Vulnerability in Microsoft Internet Information Services Could Allow Remote Code Execution (939373)

Affected Software:
Windows XP Professional Service Pack 2 - Microsoft Internet Information Services (IIS) 5.1

NON Affected Software:
Windows 2000 Service Pack 4
Windows XP Home Service Pack 2
Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista
Windows Vista x64 Edition

GOTO:   Microsoft Security Bulletin Center - 2000
GOTO:   Microsoft Security Bulletin Center - 2001
GOTO:   Microsoft Security Bulletin Center - 2002
GOTO:   Microsoft Security Bulletin Center - 2003
GOTO:   Microsoft Security Bulletin Center - 2004
GOTO:   Microsoft Security Bulletin Center - 2005
GOTO:   Microsoft Security Bulletin Center - 2006
GOTO:   Microsoft Security Bulletin Center - 2008

Subscribe to the Microsoft Security Notification Service

Microsoft Security Bulletin MS07-001

Microsoft Security Bulletin MS07-002

Microsoft Security Bulletin MS07-003

Microsoft Security Bulletin MS07-004

Microsoft Security Bulletin MS07-005

Microsoft Security Bulletin MS07-006

Microsoft Security Bulletin MS07-007

Microsoft Security Bulletin MS07-008

Microsoft Security Bulletin MS07-009

Microsoft Security Bulletin MS07-010

Microsoft Security Bulletin MS07-011

Microsoft Security Bulletin MS07-012

Microsoft Security Bulletin MS07-013

Microsoft Security Bulletin MS07-014

Microsoft Security Bulletin MS07-015

Microsoft Security Bulletin MS07-016

Microsoft Security Bulletin MS07-017

Microsoft Security Bulletin MS07-018

Microsoft Security Bulletin MS07-019

Microsoft Security Bulletin MS07-020

Microsoft Security Bulletin MS07-021

Microsoft Security Bulletin MS07-022

Microsoft Security Bulletin MS07-023

Microsoft Security Bulletin MS07-024

Microsoft Security Bulletin MS07-025

Microsoft Security Bulletin MS07-026

Microsoft Security Bulletin MS07-027

Microsoft Security Bulletin MS07-028

Microsoft Security Bulletin MS07-029

Microsoft Security Bulletin MS07-030

Microsoft Security Bulletin MS07-031

Microsoft Security Bulletin MS07-032

Microsoft Security Bulletin MS07-033

Microsoft Security Bulletin MS07-033

Microsoft Security Bulletin MS07-034

Microsoft Security Bulletin MS07-035

Microsoft Security Bulletin MS07-036

Microsoft Security Bulletin MS07-037

Microsoft Security Bulletin MS07-038

Microsoft Security Bulletin MS07-039

Microsoft Security Bulletin MS07-040

Microsoft Security Bulletin MS07-041