7.6 High
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
<html><body><p>Resolves a vulnerability in Windows that could allow remote code execution if a user opened a specially crafted fax cover page file (.cov) by using Windows Fax Cover Page Editor.</p><h2></h2><div><span>Support for Windows Vista Service Pack 1 (SP1) ends on July 12, 2011. To continue receiving security updates for Windows, make sure youβre running Windows Vista with Service Pack 2 (SP2). For more information, refer to this Microsoft web page: <a href=βhttp://windows.microsoft.com/en-us/windows/help/end-support-windows-xp-sp2-windows-vista-without-service-packsβ target=β_selfβ>Support is ending for some versions of Windows</a></span>.</div><h2>INTRODUCTION</h2><div>Microsoft has released security bulletin MS11-024. To view the complete security bulletin, visit one of the following Microsoft websites:<br /><ul><li>Home users:<br /><div><a href=βhttp://www.microsoft.com/security/pc-security/bulletins/201104.aspxβ target=β_selfβ>http://www.microsoft.com/security/pc-security/bulletins/201104.aspx</a></div><span>Skip the details</span>: Download the updates for your home computer or laptop from the Microsoft Update website now:<br /><div><a href=βhttp://update.microsoft.com/microsoftupdate/β target=β_selfβ>http://update.microsoft.com/microsoftupdate/</a></div></li><li>IT professionals:<br /><div><a href=βhttp://www.microsoft.com/technet/security/bulletin/ms11-024.mspxβ target=β_selfβ>http://www.microsoft.com/technet/security/bulletin/MS11-024.mspx</a></div></li></ul><span><h3>How to obtain help and support for this security update</h3> <br />Help installing updates: <br /><a href=βhttps://support.microsoft.com/ph/6527β target=β_selfβ>Support for Microsoft Update</a><br /><br />Security solutions for IT professionals: <br /><a href=βhttp://technet.microsoft.com/security/bb980617.aspxβ target=β_selfβ>TechNet Security Troubleshooting and Support</a><br /><br />Help protect your computer that is running Windows from viruses and malware:<br /><a href=βhttps://support.microsoft.com/contactus/cu_sc_virsec_masterβ target=β_selfβ>Virus Solution and Security Center</a><br /><br />Local support according to your country: <br /><a href=βhttps://support.microsoft.com/common/international.aspxβ target=β_selfβ>International Support</a><br /><br /></span></div><h2>More Information</h2><div><h3>Known issues and additional information about this security update</h3>The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link. <ul><li><a href=βhttps://support.microsoft.com/en-us/help/2491683β>2491683 </a> MS11-024: Description of the security update for Windows Fax Cover Page Editor: April 12, 2011</li><li><a href=βhttps://support.microsoft.com/en-us/help/2506212β>2506212 </a> MS11-024: Description of the security update for Windows Fax Cover Page Editor MFC components: April 12, 2011<br /><br />The following are the known issues in security update 2506212. For more information about these known issues, see security updateΒ 2506212.<ul><li>After you install this security update, an application that uses objects that are derived from the CArchive class may crash.</li><li>After you install the Windows Fax Services component on Windows Server 2003, update 2506212 will be offered even if you have already installed it.</li></ul></li></ul></div></body></html>