Symantec Security Response 12 Jan 2005
Wed, 12 Jan 2005
Symantec Security Response - Microsoft Security Bulletin
On Tuesday, January 11, Microsoft issued information on three new security updates: Microsoft Security Bulletin MS05-001 Microsoft Security Bulletin MS05-002 Microsoft Security Bulletin MS05-003
Symantec Security Response has identified MS05-001 as the most serious ( http://www.microsoft.com/technet/security/Bulletin/MS05-001.mspx) This vulnerability has been rated as "high" by Symantec and can be exploited through Microsoft Internet Explorer or other applications that use the same HTML rendering engine. Three pieces of recent malicious code have leveraged this vulnerability.
"These new vulnerabilities announced by Microsoft can impact both server and desktop systems in both enterprise and home computing environments," said Oliver Friedrichs, senior manager, Symantec Security Response. "We have already seen multiple malicious code threats, including Spyware, exploiting one of these vulnerabilities so it is critical that home users and enterprise administrators run Windows Update, install all patches, and keep security software current to minimize their risk."
Information on Microsoft's January 2005 Security Bulletin can be found at ( http://www.microsoft.com/technet/security/bulletin/ms05-jan.mspx).