Microsoft KB Archive/910729

= MS06-054: Vulnerability in Microsoft Publisher could allow remote code execution =

Article ID: 910729

Article Last Modified on 10/22/2007

-

APPLIES TO


 * Microsoft Office Publisher 2003
 * Microsoft Publisher 2002 Standard Edition
 * Microsoft Publisher 2000 Standard Edition

-



SUMMARY
Microsoft has released security bulletin MS06-054. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites, depending on whether you are a home user or an IT professional.  Home users:

http://www.microsoft.com/protect/computer/updates/bulletins/200609.mspx

 IT professionals:

http://www.microsoft.com/technet/security/bulletin/ms06-054.mspx





Service pack information
This problem was first corrected in Microsoft Office 2003 Service Pack 3. To resolve this problem, obtain the latest service pack for Office 2003. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

870924 How to obtain the latest service pack for Office 2003

Known issues that may occur after the security update is installed
 After the update for Microsoft Office Publisher 2003, Microsoft Publisher 2002, or Microsoft Publisher 2000 is installed, users can no longer open Microsoft Publisher 2.0 files. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

924685 Error message when you try to open a Publisher 2.0 publication in Publisher 2003, Publisher 2002, or Publisher 2000: &quot;Publisher cannot open this file&quot;

 After you install this update, you cannot copy and paste content between separate instances of Publisher 2000. If you copy content from one instance of Publisher 2000 and then switch to a separate instance of Publisher 2000, the Paste command will be unavailable (dimmed) as if there is nothing on the clipboard.



For more information, click the following article numbers to view the articles in the Microsoft Knowledge Base:

894540 Description of the security update for Publisher 2000: September 12, 2006

894541 Description of the security update for Publisher 2002: September 12, 2006

894542 Description of the security update for Publisher 2003: September 12, 2006

Additional query words: update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS TSE

Keywords: kbbug kbfix kbsecvulnerability kbqfe kbsecurity kbsecbulletin kbpubtypekc kbexpertiseinter kbexpertisebeginner KB910729

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.