Microsoft December patches
Posted 2005-12-13 20:21 by Christopher
Today Microsoft has released two security patches for Microsoft Windows as follows:
| ID | Title | Severity | Impacts |
| MS05-054 | Cumulative Security Update for Internet Explorer | Critical | 2000, XP, 2003 |
| MS05-055 | Vulnerability in Windows Kernel Could Allow Elevation of Privilege |
Important |
2000 |
The cumulative security update for IE contains fixes for the following vulnerabilities:
| CAN-2005-2829 | File Download Dialog Box Manipulation Vulnerability |
| CAN-2005-2830 | HTTPS Proxy Vulnerability |
| CAN-2005-2831 | COM Object Instantiation Memory Corruption Vulnerability |
| CAN-2005-1790 | Mismatched Document Object Model Objects Memory Corruption Vulnerability |
The vulnerability CAN-2005-1790 is the infamous IE Javascript 0-day exploit
