Free ms00 software for windows

IE5.5 File Upload via Form Vulnerability Patch MS00-093 is a powerful software which eliminates four security vulnerabilities in Microsoft Internet Explorer 5.x:

The 'Browser Print Template' vulnerability, which could enable a malicious Web site operator to take unauthorized actions on the computer of a user who visited their site.

The 'File Upload via Form' vulnerability, which could enable a malicious Web site operator to read files on a visiting user s computer.

New variants of the 'Scriptlet Rendering' and 'Frame Domain Verification' vulnerabilities, both of which could enable a malicious Web site operator to read files on a visiting user s computer.

WareSeeker Editor

IP Fragment Reassembly Vulnerability (Windows 2000) MS00-029 is a tool including a flaw in the code that performs IP fragment reassembly. If a continuous stream of fragmented IP datagrams with a particular malformation were sent to an affected machine, it could be made to devote most or all of its CPU availability to processing them. The data rate needed to completely deny service varies depending on the machine and network conditions, but in most cases even relatively moderate rates would suffice. The vulnerability would not allow a malicious user to compromise data on the machine or usurp administrative control.

Although it has been reported that the attack in some cases will cause an affected machine to crash, affected machines in all Microsoft testing returned to normal service shortly after the fragments stopped arriving. Machines protected by a proxy server or a firewall that drops fragmented packets would not be affected by this vulnerability. The machines most likely to be affected by this vulnerability would be machines located on the edge of a network, such as Web servers or proxy servers.

Microsoft IIS4 "Cross-Site Scripting" Vulnerability Patch (MS00-060) is a professional and smart patch which eliminates security vulnerabilities in the Microsoft Internet Information Server.

The vulnerabilities could allow a malicious Web site operator to misuse another Web site as a means of attacking users. This vulnerability, known as Cross-Site Scripting (CSS), results when Web applications don't properly validate inputs before using them in dynamic Web pages. If malicious Web site operators were able to lure a user to their site, and had identified a third-party Web site that was vulnerable to CSS, they could potentially use the vulnerability to ""inject"" script into a Web page created by the other Web site, which would then be delivered to the user.

The net effect would be to cause the malicious user's script to run on the user's machine. The vulnerability can affect any software that runs on a Web server, accepts user input, and blindly uses it to generate Web pages. Microsoft recommends that all vendors check their products to see if any are affected by the vulnerability, and initiated a check of its own products, as well. Several features in IIS were found to be affected--some were found by Microsoft internal teams, and others were identified by customers--and this patch eliminates all of them.

Windows 2000 ActiveX Parameter Validation Vulnerability Patch (MS00-085) is launched as an important and useful patch which can remove a security vulnerability in Microsoft Windows 2000. The vulnerability could allow enable a malicious user to potentially run code on another user's machine.

An ActiveX control that ships as part of Windows 2000 contains an unchecked buffer. If the control was called from a Web page or HTML mail using a specially-malformed parameter, it would be possible to cause code to execute on the machine via a buffer overrun. This could potentially enable a malicious user to take any desired action on the user's machine, limited only by the permissions of the user.

The vulnerability could only be exploited if ActiveX controls are enabled in IE, Outlook, or Outlook Express. The Security Zones feature in Internet Explorer enables customers to limit what Web sites can do, and customers who have used the feature to prevent untrusted sites from invoking ActiveX controls would be at minimal risk from the Web-based attack scenario. Customers who have applied the Outlook Security Update would be protected against the mail-borne scenario, since it moves mail into the Restricted Sites Zone, thereby preventing HTML mails from invoking ActiveX controls.

Microsoft IIS5 "Session ID Cookie Marking" Vulnerability Patch (MS00-080) is launched as an important and useful patch which can remove a security vulnerability in Microsoft Internet Information server that would allow a malicious user to hijack another user's secure Web session under a very restricted set of circumstances.

IIS supports the use of a Session ID cookie to track the current session identifier for a Web session. However, ASP in IIS does not support the creation of secure Session ID cookies as defined in RFC 2109. As a result, secure and non-secure pages on the same Web site use the same session ID. If a user initiated a session with a secure Web page, a session ID cookie would be generated and sent to the user, protected by SSL. But if the user subsequently visited a non-secure page on the same site, the same session ID cookie would be exchanged, this time in plaintext. If a malicious user had complete control over the communications channel, he could read the plaintext session ID cookie and use it to connect to the user's session with the secure page. At that point, he could take any action on the secure page that the user could take.

The conditions under which this vulnerability could be exploited are rather daunting. The malicious user would need to have complete control over the other user's communications with the Web site. Even then, the malicious user could not make the initial connection to the secure page; only the legitimate user could do that. The patch eliminates the vulnerability by adding support for secure Session ID cookies in ASP pages. (Secure cookies already are supported for all other types of cookies, under all other technologies in IIS).