Microsoft KB Archive/929123

= MS07-034: Cumulative security update for Outlook Express and for Windows Mail =

Article ID: 929123

Article Last Modified on 10/11/2007

-

APPLIES TO

 Windows Mail in Windows Vista, when used with:  Windows Vista Enterprise

 Windows Vista Business

 Windows Vista Home Basic

 Windows Vista Home Premium</li></ul>

 Windows Vista Starter</li></ul>

 Windows Vista Ultimate</li></ul>

 Windows Vista Enterprise 64-bit edition</li></ul>

 Windows Vista Home Basic 64-bit edition</li></ul>

 Windows Vista Home Premium 64-bit edition</li></ul>

 Windows Vista Ultimate 64-bit edition</li></ul>

 Windows Vista Business 64-bit edition</li></ul> </li> Microsoft Outlook Express 6.0, when used with:  <li>Microsoft Windows XP Service Pack 2</li></ul>

<ul> <li>Microsoft Windows XP Professional 64-Bit Edition (Itanium)</li></ul>

<ul> <li>Microsoft Windows Server 2003 SP1</li></ul>

<ul> <li>Microsoft Windows Server 2003 Service Pack 2</li></ul>

<ul> <li>Microsoft Windows Server 2003, Standard x64 Edition</li></ul>

<ul> <li>Microsoft Windows Server 2003, Enterprise x64 Edition</li></ul>

<ul> <li>Microsoft Windows Server 2003, Datacenter x64 Edition</li></ul>

<ul> <li>Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems</li></ul> </li></ul>

-

<div class="summary_section">

INTRODUCTION
Microsoft has released security bulletin MS07-034. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites: <ul> <li>Home users:

http://www.microsoft.com/protect/computer/updates/bulletins/200706.mspx

</li> <li>IT professionals:

http://www.microsoft.com/technet/security/bulletin/ms07-034.mspx

</li></ul>

<div class="moreinformation_section">

Known issues with this security update
<ul> <li>

937912 After you apply security update 929123, you may be prompted by a dialog box that requests more input about how to continue when you browse a Web site

</li> <li>After you apply the update that is described in security update 929123, visit the Microsoft Update Web site:

http://update.microsoft.com/microsoftupdate

Install the latest available cumulative security update for Internet Explorer. This is necessary because three of the vulnerabilities that are described in security update 929123 could allow information disclosure if a user visits a specially-crafted Web page by using Internet Explorer. These vulnerabilities cannot be exploited directly by using Outlook Express.</li> <li>After you apply the update that is described in security update 929123, you maybe affected by the issues described in Microsoft Knowledge Base article 933612.

For more information, click the following article number to view the article in the Microsoft Knowledge Base:

933612 A mail program cannot connect to an Exchange Server 2007 server by using SSL over SMTP port 587

</li></ul>

Additional query words: update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE WinNT Win2000

Keywords: kbbug kbfix kbsecvulnerability kbqfe kbsecurity kbsecbulletin kbpubtypekc kbexpertisebeginner KB929123

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.