March 11, 2004 Information Security Advisory

Earlier this week, Microsoft issued Security Bulletin MS04-009:
Vulnerability in Microsoft Outlook Could Allow Code Execution (828040)

Issued: March 9, 2004
Updated: March 10, 2004
Version: 2.1 

Summary 
Who Should Read This Document:
Customers that are using Microsoft® Office XP and Outlook 2002

Impact of Vulnerability:
Remote Code Execution

Maximum Severity Rating:
Critical

Recommendation:
Customers should apply the update immediately.

Tested Software and Security Update Download Locations:

Affected Software

• Microsoft Office XP Service Pack 2 and 
• Microsoft Outlook 2002 Service Pack 2

Download the update from the following site:
http://www.microsoft.com/downloads/details.aspx?FamilyId=52F1A951-24DB-44A5-9475-EA5D302BCA6A&displaylang=en

Non Affected Software

• Microsoft Office 2000 Service Pack 3
• Microsoft Office XP Service Pack 3
• Microsoft Office 2003
• Microsoft Outlook 2000 Service Pack 3
• Microsoft Outlook 2002 Service Pack 3
• Microsoft Outlook 2003

The software listed above has been tested to determine if the versions are affected.
Other versions either no longer include security patch support or may not be affected.  

You can also obtain updates for your Microsoft Office products from the following address:
http://office.microsoft.com/OfficeUpdate/default.aspx
and run the Microsoft applet that will check your system for updates.

Happy safe computing!

Frederic Martin
www.workingarts.com

PS1: If you want to be removed from this computer security advisory mailing list, please 
reply with "remove" in the subject of the message. To review archived security warnings, 
please go to http://www.workingarts.com/infosecarchives.html

PS2: Please forward this email to your friends and colleagues, who can register to receive
these alerts at http://www.workingarts.com/specialoffer.html