August 2006
Two Microsoft Security Bulletins: 1. MS06-042 - Internet Explorer 2. Advisory no. 923762 - Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit
ID: 00578
Ref: 553/2006
Date: 29 August 2006:15:00:07
Version: 1
Title: Two Microsoft Security Bulletins: 1. MS06-042 - Internet Explorer 2. Advisory no. 923762 - Long URLs to sites using HTTP 1.1 and compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit
Abstract:
Vendors affected: Microsoft
Operating systems affected: Microsoft
Applications affected: Microsoft
Title
=====
Two Microsoft Security Bulletins:
1. MS06-042 - Internet Explorer
2. Advisory no. 923762 - Long URLs to sites using HTTP 1.1 and
compression Could Cause Internet Explorer 6 Service Pack 1 to Unexpectedly Exit
Detail
======
1. The following bulletin has undergone a major revision increment.
Please see the appropriate bulletin for more details.
2. Advisory updated to direct customers to the revised version of Microsoft
Security Bulletin MS06-042 that includes new updates for Internet Explorer 6
Service Pack 1.
1.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
********************************************************************
Title: Microsoft Security Bulletin Re-Releases
Issued: August 24, 2006
********************************************************************
Summary
=======
The following bulletins have undergone a major revision increment.
Please see the appropriate bulletin for more details.
* MS06-042
Bulletin Information:
=====================
* MS06-042
- http://www.microsoft.com/technet/security/bulletin/ms06-042.mspx
- Reason for Revision: Bulletin reissued and updated with
additional information and vulnerability details affecting
Internet Explorer 6 Service Pack 1 customers.
- Originally posted: August 8, 2006
- Updated: August 24, 2006
- Bulletin Severity Rating: Critical
- Version: 2.0
********************************************************************
Support:
========
Technical support resources can be found at:
http://go.microsoft.com/fwlink/?LinkId=21131
International customers can get support from their local Microsoft
subsidiaries. Phone numbers for international support can be found
at: http://support.microsoft.com/common/international.aspx
Microsoft Support Lifecycle for Business and Developer Software
===============================================================
The Microsoft Support Lifecycle policy provides consistent and
predictable guidelines for product support availability at the
time that the product is released. Under this policy, Microsoft
will offer a minimum of ten years of support. This includes five
years of Mainstream Support and five years of Extended Support for
Business and Developer products. Microsoft will continue to provide
security update support, at a supported Service Pack level, for a
minimum of ten years through the Extended support phase. For more
information about the Microsoft Support Lifecycle, visit
http://support.microsoft.com/lifecycle/ or contact your Technical
Account Manager.
Additional Resources:
=====================
* Microsoft has created a free monthly e-mail newsletter containing
valuable information to help you protect your network. This
newsletter provides practical security tips, topical security
guidance, useful resources and links, pointers to helpful
community resources, and a forum for you to provide feedback
and ask security-related questions.
You can sign up for the newsletter at:
http://www.microsoft.com/technet/security/secnews/default.mspx
* Microsoft has created a free e-mail notification service that
serves as a supplement to the Security Notification Service
(this e-mail). The Microsoft Security Notification Service:
Comprehensive Version. It provides timely notification of any
minor changes or revisions to previously released Microsoft
Security Bulletins and Security Advisories. This new service
provides notifications that are written for IT professionals and
contain technical information about the revisions to security
bulletins. To register visit the following Web site:
http://www.microsoft.com/technet/security/bulletin/notify.mspx
* Protect your PC: Microsoft has provided information on how you
can help protect your PC at the following locations:
http://www.microsoft.com/security/protect/
If you receive an e-mail that claims to be distributing a
Microsoft security update, it is a hoax that may be distributing a
virus. Microsoft does not distribute security updates through
e-mail. You can learn more about Microsoft's software distribution
policies here:
http://www.microsoft.com/technet/security/topics/policy/swdist.mspx
********************************************************************
THE INFORMATION PROVIDED IN THE THIS EMAIL IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************
- -----BEGIN PGP SIGNATURE-----
Version: PGP 8.1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=wEfz
- -----END PGP SIGNATURE-----
2.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
********************************************************************
Title: Microsoft Security Advisory Notification
Issued: August 24, 2006
********************************************************************
Security Advisories Updated or Released Today
==============================================
* Microsoft Security Advisory (923762)
- Title: Microsoft Security Advisory (923762): Long
URLs to sites using HTTP 1.1 and compression Could Cause
Internet Explorer 6 Service Pack 1 to Unexpectedly Exit
- http://www.microsoft.com/technet/security/advisory/923762.mspx
- Revision Note: Advisory updated to direct customers to the
revised version of Microsoft Security Bulletin MS06-042 that
includes new updates for Internet Explorer 6 Service Pack 1.
********************************************************************
Support:
========
Technical support resources can be found at:
http://go.microsoft.com/fwlink/?LinkId=21131
International customers can get support from their local Microsoft
subsidiaries. Phone numbers for international support can be found
at: http://support.microsoft.com/common/international.aspx
Microsoft Support Lifecycle for Business and Developer Software
===============================================================
The Microsoft Support Lifecycle policy provides consistent and
predictable guidelines for product support availability at the
time that the product is released. Under this policy, Microsoft
will offer a minimum of ten years of support. This includes five
years of Mainstream Support and five years of Extended Support for
Business and Developer products. Microsoft will continue to provide
security update support, at a supported Service Pack level, for a
minimum of ten years through the Extended support phase. For more
information about the Microsoft Support Lifecycle, visit
http://support.microsoft.com/lifecycle/ or contact your Technical
Account Manager.
Additional Resources:
=====================
* Microsoft has created a free monthly e-mail newsletter containing
valuable information to help you protect your network. This
newsletter provides practical security tips, topical security
guidance, useful resources and links, pointers to helpful
community resources, and a forum for you to provide feedback
and ask security-related questions.
You can sign up for the newsletter at:
http://www.microsoft.com/technet/security/secnews/default.mspx
* Microsoft has created a free e-mail notification service that
serves as a supplement to the Security Notification Service
(this e-mail). The Microsoft Security Notification Service:
Comprehensive Version. It provides timely notification of any
minor changes or revisions to previously released Microsoft
Security Bulletins and Security Advisories. This new service
provides notifications that are written for IT professionals and
contain technical information about the revisions to security
bulletins. To register visit the following Web site:
http://www.microsoft.com/technet/security/bulletin/notify.mspx
* Protect your PC: Microsoft has provided information on how you
can help protect your PC at the following locations:
http://www.microsoft.com/security/protect/
If you receive an e-mail that claims to be distributing a
Microsoft security update, it is a hoax that may be distributing a
virus. Microsoft does not distribute security updates through
e-mail. You can learn more about Microsoft's software distribution
policies here:
http://www.microsoft.com/technet/security/topics/policy/swdist.mspx
********************************************************************
THE INFORMATION PROVIDED IN THE THIS EMAIL IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************
- -----BEGIN PGP SIGNATURE-----
Version: PGP 8.1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=0pfB
- -----END PGP SIGNATURE-----