MS06-061

Hot Topic

Deployment of DotNet 2.0 application on Windows without any servicepacks
UDP Read Through router
DbCommand Property (Anyone can give me a tip to start?)
How to find the last occurence of <p> within a textblock tiltled <h2>??
FileWatcher Service doesnt watch outiside of debugger!
C++ Web Service
Display data retrieved from a datasource in a label
A Read-only dataset
Repeater and datalist
Getting an System.Data.OracleClient.OracleException : ORA-22275: invalid LOB locator specified when connecting to a 10.1.0.3 DB

.NET Development

Hashtable insert failed. Load factor too high - NET 2.0 bug ?
Secure Webservices
what's the members of CORINFO_METHOD_STRUCT_ (from rotor src)
need help inserting into a dbf file
Change parameter value for tableadapter update command
XML File Comparision USing VB and storing the result in thir file
Problem with usercontrol and class library
To return a DataSet from the CSV
Getting hardware device name?
Windows Service cannot connect to the network.

MS06-061

last night, wedenesday, i, for the first time, noticed a microsoft vulnerability on my pccillen scan; referring me to the vulnerability addressed in the microsoft MS06-061 bulletin .

i can't figure out how to solve this particular vulnerability.

"the microsoft vulnerability" MS06-061; rated as "very risky," by my pccillen security software; continues to be identified by my security software; no matter what actions i take!

i am dedicated to the following ongoing practices AND have taken the following steps, attempting to address this vulnerabilty, with no success:

  1. i am religious about updating and scanning my computer (I scan it daily, with "full system scans"; using not only my pccillen, but also my ad-aware SE personal spyware program)
  2. i know when the microsoft monthly updates are coming out in advance, as i subscribe to a microsoft security newsletter
  3. all updates get installed the day they are released; such as the 10/13 release of what i understand was a re-release of a security update to account for this MS06-061 vulnerability
  4. i follow the suggestions made in subsequent "revision emials" recieved from "shai" at the microsoft security update center
  5. it was not until yesterday, that i noticed the MS06-061 vulnerability; which just happened to coincide with my recent installation of ie7 and windows media 11
  6. at the suggestion of my pccillen 2007 internet security software, i went to the microsoft update site to scan for new updates. no updates were forthcoming.
  7. i also went to the office update site (again no updates)
  8. and the windows update site (no updates)
  9. i have scoured the "tech net" article concerning the vulnerability addressed in the MS06-061 notification.........have applied all the relevent updates that i can think may apply to my system......although i don't know how to determine what version of xml or xml core, is on my system.
  10. i applied the updates for windows xp, home, with sp2; and also office 2003.

no matter what i do, the "very risky threat"; as it is quantified by my pccillen 2007 security software, still appears on my security scans. i ran four different scans with my pccillen; just last night.

i would be most beholdin to anyone who can help me solve this dilema of mine; and rid my system of this vulnerability.

i have the following installed on my computer:

  1. ie7 (as of the beginning of this week)
  2. windows media 11 (also as of this week)
  3. windows xp, home edition, SP 2
  4. office 2003, SP2
  5. pccillen 2007 internet security; including spyware detection
  6. ad-aware SE personal spyware software

Answer this question

MS06-061

  • Kanhaiya

    I am having the exact same problem and I too just installed IE 7. I have pccillen too. Also, since installing IE 7, it shuts down about every 10 minutes. Encounters a problem and shuts down. Reading the warnings about the ms06-061 was like trying to read stereo instructions!

  • adwins04

    This is particularly annoying. I've been having the same issue for a week now and still haven't seen a resolution. I've also done all the updates, scans. etc. to resolve this "Very High" Risk Level and have not been able to correct it. Trend better get this one figured out soon.

  • calmal20

    Try installing this update:
    SQL Server Feature Pack MSXML 4.0 SP2 Security Update (925672)
    It seems to have worked for me.

  • Yogesh Ranade

    Count me in too! My Trend Micro just ran the Vulnerability Scan and I got the same vulnerability. My computer is updated. I installed Explorer 7, I ran the Trend Micro Vulnerability Scan and again and got the same message. I too am interest in finding out how to correct this issue. I can't stand the thought of my system being compromised.

    It must be a problem between Microsoft and Trend Micro. Don't you think


  • Tim Wagner

    Wish I had an answer for you, but I don't. I have the same issue. Hopefully someone will address the problem.


  • Jari Lampinen

    THANK YOU SO MUCH GRAZER!!!!!!

    I INSTALLED THE SAME THING ON MINE AND RAN THE TREND MICRO VULNERABILITY CHECK AND IT WAS CLEAR!!!!!!!

    I OWE YOU BIG TIME!

  • Muzzzy

    Thank you very much! The forums are more helpful than anything else on this site.

  • Billy Porter

    Having the same issue here as well! Hope Micro is listening ! Running Windows XP PRO on a Pentium II, with IE7. Old'e but good test machine for me .

  • Igor Tkachev

    I may have hit on something. I went to M/S updates for the month of Oct. There I found MS06-061(924191). I then went to Windows Update, and there it was 924191. Do you think its the name MS06-061 that is not being recognized by Windows and 924191 is not being recognized by PC-cill. Just a thought. Any comments


  • Amorous

    Wow< You sound Identical to me in every way...and my computer which has your same exact set-up just started thowing out the same pccillian vulnerabilty...ms06-061...I would like an answer as well..also a file downloaded its self to my computer programs...its called saftey alerter 2006...and when I try to remove it, it keeps thowing out a virus which pccillian catches and quarantines but I cannot find it anywhere in the computer to delete it.. fricking wierd ***...I swear I will beat a virus builder to a pulp if I ever catch one...fricking little jerks...Good luck and if you find out how to fix it..please post..

  • Soumya B

    Grazer wrote:
    Try installing this update:
    SQL Server Feature Pack MSXML 4.0 SP2 Security Update (925672)

    It seems to have worked for me.

    I had the same problem as people above so I used Grazer's information and installed the patch; now I don't get the High Risk alert from Trend. Big Thanks to Grazer

    The only problem was I had to go searching for the patch as the above link did not take me to the download site. I found the download patch at the Microsoft Web Site:

    http://www.microsoft.com/downloads/details.aspx familyid=961f3c95-ec4e-4561-ab27-b31809139c5

  • Scionwest

    Hi. I have exactly the same issue . . . . pc-cillin detecting vulnerability with reference to MS06-061. But I haven't installed IE7 or Windows Media 11. I still have IE6 & Windows Media 10, so they are not the problem. I too have tried everything, so am very interested if anyone can help!!!!!

  • SOAC

    Yes... exact same situation here. I'm inclined to believe it's just a flaw in the PC-Cillin scan.

  • newindotnet

    Update worked for me also ! Thank's Grazer

  • MS06-061
Answer this question