Knowledge Base

MS05-033: Vulnerability in Telnet client could allow information disclosure

Article ID: 896428

Article Last Modified on 10/11/2007

APPLIES TO

Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)
Microsoft Windows Server 2003, Enterprise Edition
Microsoft Windows Server 2003, Standard Edition (32-bit x86)
Microsoft Windows Server 2003, Web Edition
Microsoft Windows Server 2003, Datacenter Edition for Itanium-Based Systems
Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems
Microsoft Windows Server 2003, Datacenter x64 Edition
Microsoft Windows Server 2003, Enterprise x64 Edition
Microsoft Windows Server 2003, Standard x64 Edition
Microsoft Windows XP Home Edition
Microsoft Windows XP Home Edition
Microsoft Windows XP Media Center Edition 2002
Microsoft Windows XP Media Center Edition 2005
Microsoft Windows XP Professional
Microsoft Windows XP Professional
Microsoft Windows XP Tablet PC Edition
Microsoft Windows XP Tablet PC Edition 2005
Microsoft Windows XP Professional for Itanium-based systems
Microsoft Windows XP Professional 64-Bit Edition (Itanium)
Microsoft Windows XP Professional for Itanium-based systems
Microsoft Windows Services for UNIX 2.0 Standard Edition
Microsoft Windows Services for UNIX 2.1
Microsoft Windows Services for Unix 2.2
Microsoft Windows Services for UNIX 3.0 Standard Edition
Microsoft Windows Services for UNIX 3.5

Technical update

July 12, 2005: Security update 896428 was rereleased to include a security update for the following services:

Windows Services for UNIX 2.0
Windows Services for UNIX 2.1

SUMMARY

Microsoft has released security bulletin MS05-033. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:

Home users:

http://www.microsoft.com/athome/security/update/bulletins/200507.mspx
IT professionals:

http://www.microsoft.com/technet/security/bulletin/ms05-033.mspx

MORE INFORMATION

For more information about a related topic, click the following article number to view the article in the Microsoft Knowledge Base:

900934 Security update 896428 adds a new registry key that lets the Telnet client disclose additional environment variables in Windows Server 2003 and in Windows XP

Additional query words: update security_patch security_update bug flaw vulnerability malicious attacker exploit registry unauthenticated specially-formed scope specially-crafted script

Keywords: kbbug kbfix kbsecvulnerability kbqfe kbsecurity kbsecbulletin atdownload kbwinxppresp3fix kbhotfixserver kbwinserv2003sp2fix KB896428

Microsoft KB Archive/896428

Contents

MS05-033: Vulnerability in Telnet client could allow information disclosure

Technical update

SUMMARY

MORE INFORMATION