Microsoft has released patches for 15 vulnerabilities

19th June 2007

In the context of the monthly set of patches Microsoft Corporation has released seven updates, four of which are marked as critical and three are related to Windows Vista. One of the important patches is related to vulnerabilities in Microsoft Visio. The first vulnerability can lead to performance of the code and referred to the processing of numbers of versions by the program, the second is related to processing of packed objects.
The critical update was released also for Schannel package, which provides the identification of protocols SSL and TLS. The errors are found in Windows 2000, XP and Server 2003. The vulnerability in Vista is evaluated as “medium-scale risk” and can lead to the spread of confidential data, including administrator passwords. They also released seven patches for the latest version of Internet Explorer, which are referred to Windows Vista, and Windows 2000, Windows XP and Windows Server 2003.
A separate patch is released for the email program Outlook Express, where they found vulnerabilities, which could lead to the spread of personal data and launch of malicious code. Finally, they corrected the error in Win32, which could be used when creating a special page, during the download of which the code could be performed. The vulnerability was connected with Windows 2000, XP and Server 2003.