• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

RETIRED: Microsoft July 2008 Advance Notification Multiple Vulnerabilities

Microsoft has released advance notification that the vendor will be releasing four security bulletins on July 8, 2008. The highest severity rating for these issues is 'Important'.

Successfully exploiting these issues may allow remote or local attackers to compromise affected computers.

NOTE: The following individual records have been created to document these vulnerabilities:

30083 Microsoft SQL Server Memory Page Reuse Information Disclosure Vulnerability
30082 Microsoft SQL Server Convert Function Remote Memory Corruption Vulnerability
30119 Microsoft SQL Server On-Disk MTF Data Structures Remote Memory Corruption Vulnerability
30118 Microsoft SQL Server INSERT Statement Remote Memory Corruption Vulnerability
30109 Microsoft Windows Explorer saved-search File Remote Code Execution Vulnerability
30130 Microsoft Outlook Web Access for Exchange Server Email Field Cross-Site Scripting Vulnerability
30078 Microsoft Outlook Web Access for Exchange Server HTML Parsing Cross-Site Scripting Vulnerability
30131 Multiple Vendor DNS Protocol Insufficient Socket Entropy DNS Spoofing Vulnerability
30132 Microsoft Windows DNS Server Cache Poisoning Vulnerability