=====================================================================
                                  CERT-Renater

                       Note d'Information No. 2005/VULN621
_____________________________________________________________________

DATE                      : 12/10/2005

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Windows 2000, Windows XP, Windows Server 2003,
                                Windows 98, Windows Me.

======================================================================

MS05-052 - Cumulative Security Update for Internet Explorer (896688)

   - Affected Software:
     - Windows 2000 Service Pack 4
     - Windows XP Service Pack 1
     - Windows XP Service Pack 2
     - Windows XP Professional x64 Edition
     - Windows Server 2003
     - Windows Server 2003 Service Pack 1
     - Windows Server 2003 for Itanium-based Systems
     - Windows Server 2003 with SP1 for Itanium-based Systems
     - Windows Server 2003 x64 Edition

     - Review the FAQ section of bulletin MS05-O52 for information
       about these operating systems:
         - Windows 98
         - Windows 98 Second Edition (SE)
         - Windows Millennium Edition (ME)

     - Impact: Remote Code Execution
     - Version Number: 1.0

Full MS05-052 advisory:
http://www.microsoft.com/technet/security/bulletin/MS05-052.mspx


Vulnerability Details:
	
COM Object Instantiation Memory Corruption Vulnerability - CAN-2005-2127:

A remote code execution vulnerability exists in the way Internet Explorer
instantiates COM objects that are not intended to be instantiated in Internet
Explorer. An attacker could exploit the vulnerability by constructing a
malicious Web page that could potentially allow remote code execution if a
user visited the malicious Web site. An attacker who successfully exploited
this vulnerability could execute arbitrary code with the privileges of the
user visiting the malicious site.

More details are provided in the following eEye advisory:
http://www.eeye.com/html/research/advisories/AD20051011d.html

======================================================================

         =========================================================
         Les serveurs de référence du CERT-Renater
         http://www.urec.fr/securite
         http://www.cru.fr/securite
         http://www.renater.fr
         =========================================================
         + CERT-RENATER          | tel : 01-53-94-20-44          +
         + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
         + 75013 Paris           | email: certsvp@renater.fr     +
         =========================================================