October 2007

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

********************************************************************
Title: Microsoft Security Bulletin Re-Releases
Issued: October 9, 2007
********************************************************************

Summary
=======
The following bulletins have undergone a major revision increment.
Please see the appropriate bulletin for more details.

  * MS05-004

Bulletin Information:
=====================

* MS05-004

 - http://www.microsoft.com/technet/security/bulletin/ms05-004.mspx
 - Reason for Revision: Bulletin updated as Windows Server 2003
    Service Pack 2 and Windows Vista have been added to the
    "Affected Software" sections for .NET Framework 1.0 Service
    Pack 3 KB886906 and .NET Framework 1.1 Service Pack 1 KB886903. 
 - Originally posted: February 8, 2005
 - Updated: October 9, 2007
 - Bulletin Severity Rating: Important
 - Version: 4.0
       

Other Information
=================

Recognize and avoid fraudulent e-mail to Microsoft customers:
=============================================================
If you receive an e-mail message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious Web sites. Microsoft does not distribute security updates via e-mail.

The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, it is not required to read security notifications, security bulletins, security advisories, or install security updates. You can obtain the MSRC public PGP key at https://www.microsoft.com/technet/security/bulletin/pgp.mspx.

To receive automatic notifications whenever Microsoft Security Bulletins and Microsoft Security Advisories are issued or revised, subscribe to Microsoft Technical Security Notifications on http://www.microsoft.com/technet/security/bulletin/notify.mspx.

********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1
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=8Zqp
-----END PGP SIGNATURE-----

This advisory contains information released by the original author. Some of the information may have changed since it was released. If the issue affects you, it may be prudent to retrieve the advisory from the site of the original source to ensure that you receive the most current information concerning that problem. Reference to any specific commercial product, process, or service by trade name, trademark manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favouring by CPNI.

The views and opinions of authors expressed within this notice shall not be used for advertising or product endorsement purposes. CPNI shall not accept responsibility for any errors or omissions contained within this advisory. In particular, they shall not be liable for any loss or damage whatsoever, arising from or in connection with the usage of information contained within this advisory.

CSIRTUK is a member of the Forum of Incident Response and Security Teams (FIRST) and has contacts with other international Incident Response Teams (IRTs) in order to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing amongst its members and the community at large.