MS 06-035: Vulnerability in Server Service Could Allow Remote Code Execution (917159)

My Océ

Contact Océ

MS 06-035: Vulnerability in Server Service Could Allow Remote Code Execution (917159)

This update resolves several newly discovered, privately reported vulnerabilities.

There is a remote code execution vulnerability in the Server driver that could
allow an attacker who successfully exploited this vulnerability to take complete
control of the affected system.
There is an information disclosure vulnerability in the Server service that could
allow an attacker to view fragments of memory used to store SMB traffic during
transport.

Océ systems	Vulnerability / Status	Recommended action
Océ TCS300 1.x Océ TCS500 1.2 and upper versions	Not vulnerable	None
Océ TDS300 1.1.4 and lower versions Océ TDS320 1.0.1 and lower versions Océ TDS400 2.1.4 and lower versions Océ TDS450 3.0/3.0.1 Océ TDS600 4.1.4 and lower versions Océ TDS800 2.1.4 and lower versions Océ TDS860 1.0.2 and lower versionsX Océ TCS400 2.2.3 and lower versions Océ TCS500 1.1.1	These systems may be affected by this security issue	Download Patch
Océ DPS400 Océ VP2105	Not vulnerable	None
Océ VP2090 Océ VP21x0 Océ VP3xx0	Not vulnerable	None
Océ 900C Océ 950C	Not vulnerable	None
Océ 910C Océ 960C Océ 1000C	Not vulnerable	None

Océ Corporate Site

Home \| Products \| Software \| Services \| Solutions \| Support \| Supplies

Privacy policy \| Terms of use \| Other Océ websites »

	© 2008 Océ

	All rights reserved