Security...

 

Microsoft Security Bulletin Update

February 2006

Medical Automation Systems reviews all Microsoft security patches when they are released.  MAS has evaluated and completed reviews for the security patches listed below for February 2006.  Microsoft rates some of these as 'critical' but the vulnerabilities may in fact pose no risk to the RALS system if customers adhere to the intended use of RALS.

The potential impact to RALS customers are Color Coded as follows:

MS06-004 - Critical

Cumulative Security Update for Internet Explorer (905915)

  • This update addresses a newly discovered public vulnerability in the way Internet Explorer handles Windows Metafile (WMF) images.  Note that this vulnerability in Internet Explorer is separate from the vulnerabilities addressed in Windows in MS05-053 and MS06-001.

  • This affects Windows 2000 systems running IE 5.01 SP4.  Windows 2000 systems running IE 6.0 SP1 are NOT affected.

  • As a cumulative update to IE this update replaces the previous IE cumulative update MS05-054 on Windows 2000 systems.

  • An attacker could exploit the vulnerabilities by hosting a malicious web page and enticing the user to visit this site or delivering the malicious HTML content by other means such as email. These issues can NOT be exploited without user interaction. The impact of successful exploit could be remote code execution. If the logged in user had administrative rights, the code execution could take complete control over the system.

  • Typical RALS systems have a minimum installation of IE 5.5, and would be unaffected by this vulnerability.

  • Recommendation is no action needed for this update since the affected Internet browser version is not currently used with RALS installations.

Back to top

MS06-005 - Critical

Vulnerability in Windows Media Player Could Allow Remote Code Execution (911565)

  • This update addresses a newly discovered, privately reported vulnerability in the way Windows Media Player renders bitmap files.

  • This affects Media Player 7.1, 9, and 10 on Windows 2000, XP, and 2003 operating systems.  Windows Media Player version 6.4 is NOT affected by this vulnerability. 

  • An attacker could exploit the vulnerability by crafting a malicious bitmap file (.bmp) that could potentially allow remote code execution if a user visited a malicious Web site or viewed a malicious email message.  This vulnerability cannot be exploited without SIGNIFICANT user interaction.

  • While a current RALS system may have a version of Media Player installed (by default this is version 6.4), many may not have been upgraded to versions 7.1, 9, or 10 since Media Player is not used for RALS functions.  Further, since the configuration of RALS and stated intended use does not support receiving emails or provide for users "web surfing"; the threat for this vulnerability to be exploited is greatly reduced.

  • Recommend that the update for Windows XP be included with the next regular RALS product test and release cycle.  The expected risk for adverse effects on RALS operations from this update is low.

Back to top

MS06-006 - Important

Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564)

  • This update resolves newly-discovered, privately-reported remote code execution vulnerability in the Windows Media Player plug-in for non-Microsoft Internet browsers, i.e. Firefox.

  • Recommendation is no action needed for this update since the affected Internet browsers are not used with RALS installations.

Back to top

MS06-007 - Important

Vulnerability in TCP/IP Could Allow Denial of Service (913446)

  • This update resolves newly discovered, privately reported vulnerability affecting Windows XP SP2 and Windows 2003 Server.  Windows 2000 based systems are unaffected. 

  • This replaces the previous windows update MS05-019.

  • Current RALS systems running on the Windows 2000 platform will be unaffected.   RALS systems running the Windows XP operating system would be at risk from this issue.   An attacker who successfully exploited this vulnerability if successful could cause the system to stop responding, however they would NOT be able to execute code or to elevate their user rights.  Firewall best practices can help protect networks from attacks that originate outside the enterprise perimeter.

  • Recommend that the update for Windows XP be included with the next regular RALS product test and release cycle.  The expected risk for adverse effects on RALS operations from this update is low.

Back to top

MS06-008 - Important

Vulnerability in Web Client Service Could Allow Remote Code Execution (911927)

  • This update resolves newly discovered, privately reported vulnerability in the way Windows processes Web Client requests that could allow an attacker to take control of the affected system. 

  • This affects Windows XP SP2 and Windows 2003 Server.  Windows 2000 based systems are unaffected. 

  • An attacker must have valid logon credentials to try to exploit this vulnerability. Anonymous users could not exploit the vulnerability remotely.  Firewall best practices can help protect networks from attacks that originate outside the enterprise perimeter.

  • Recommend that the update for Windows XP be included with the next regular RALS product test and release cycle.  The expected risk for adverse effects on RALS operations from this update is low.

Back to top

MS06-009 - Important

Vulnerability in the Korean Input Method Editor Could Allow Elevation of Privilege (901190)

  • This affects only Korean language versions of Windows.  This update replaces MS06-003 specifically for the Korean version of the Microsoft Office 2003.

  • Recommendation is no action needed for this update since the affected software is not provided with any RALS installations.

MS06-010 - Important

Vulnerability in PowerPoint 2000 Could Allow Information Disclosure (889167)

  • This affects only Microsoft PowerPoint 2000.  This product is not provided with any RALS product configuration.

  • Recommendation is no action needed for this update since the affected software is not provided with any RALS installations.

Back to top

MS Patches NOT Critical to RALS Functionality If MAS determines that the vulnerability as described in a Microsoft bulletin should not adversely affect the RALS functionality when the system is used as intended, the security patch will be tested and included in the next routine product version release.  Should the user apply the patches, MAS cannot guarantee or warrant its operation or impact on the RALS system.  In this situation there will be no routine customer notification.

MS Patches Critical to RALS Functionality If it is determined that the security vulnerability as described in a Microsoft bulletin is critical to the RALS functionality, MAS will notify customers via a broadcast email from SecurityUpdates@rals.com and by notice on the MAS website http://www.rals.com.

RALS-Plus I RALS-Web I RALS-eQuiz I RALS-TGCM I RALS-Report I Device Interfacing
Customer Support I Clinical Questions I MS Vulnerabilities I MS Updates I RRC Password of the Day
RRC Installation I RALS-Dataports I MAS News I About MAS I Case Studies
Contact Us I POC Links I Home I Legal Notice

© 2006 Medical Automation Systems, Inc., Charlottesville, VA USA. All rights reserved.