Maker tech hub — AI · 3D print · Pi · ESP32 · plus the classic tech archive.

Free ESP32 kit · Books · Network Ninja · Archive

Classic tech archive. From the original averyjparker.com tech blog — historical context; pair with modern guides where noted. Full archive · Maker projects · Network Ninja

Classic tip · Security

Microsoft December 2005 Security updates

Sans has the tip that information on the critical Windows updates expected tomorrow from Microsoft has started to be released. MS 05-54: Cumulative Security Update for Internet Explorer This will hop…

Written by

Avery J. Parker

IT veteran, maker educator, and author of Network Ninja, 3D Printing Mastery, and AI Workflow Mastery. Business IT: Diversified Tech Solutions.

Sans has the tip that information on the critical Windows updates expected tomorrow from Microsoft has started to be released.
MS 05-54: Cumulative Security Update for Internet Explorer

This will hopefully patch the javascript issues...


MS 05-55: Vulnerability in Windows Kernel Could Allow Elevation of Privilege.
More later in the day I'm sure. The Kernel Vulnerability described here is an escalation of privilige vulnerability (local only?) The Internet Explorer update does appear to address the remote code execution (recent javascript 0-day) vulnerability. There are caveats with this update. There may be problems with the update. They will be described in this knowledge base article http://support.microsoft.com/kb/905915 (which isn't yet up at 1:28PM EST 12/13/05). Here's some info from SANs... kernel vulnerability:
A vulnerability in the Asynchronous Procedure Call queue allows local users to escalate their privileges. A regular user (who has to be logged in first) could use this vulnerability to gain Administrator privileges.
Microsoft rates this vulnerability as "Important" as there is no direct remote vector to exploit this issue. However, coupled with an Internet Explorer vulnerability or similar issues, this could be used to gain Administrator privileges even if a user runs Internet Explorer as a less privileged user. Note that remote exploit may be possible if user credentials are known.
Explorer cumulitive update:
File Download Dialog Box Manipulation Vulnerability - CAN-2005-2829


HTTPS Proxy Vulnerability- CAN-2005-2830:


COM Object Instantiation Memory Corruption Vulnerability - CAN-2005-2831:


Mismatched Document Object Model Objects Memory Corruption Vulnerability - CAN-2005-1790:
This last item addresses the javascript 0-day exploit that was exploited late November. --update 2:18 EST-- The security fix has mentioned the fixes and details the history of the zero-day exploit. It's also worth mentioning - he points out that this cumulitive fix also removes a component left behind by Sony's uninstaller for the XCP software. I need to re-read....