Hello. My name is Jeremy Dallman. I am the project manager for Internet Explorer security bulletins.
Information about the IE Security update can be found at: MS05-025 – Cumulative Security Update for Internet Explorer (883939)
This security update package contains fixes for the following vulnerabilities:
- PNG Image Rendering Memory Corruption Vulnerability – CAN-2005-1211
- XML Redirect Information Disclosure Vulnerability – CAN-2002-0648
Details on the vulnerabilities and workarounds can be found at http://www.microsoft.com/technet/security/Bulletin/MS05-025.mspx.
This is a “Critical” update and affects all supported IE configurations from IE5.01 to IE6 for XPSP2 and IE6 for Server 2003 Service Pack 1. All IE security updates are cumulative and contain all previously released patches for each version of IE.
I encourage everybody to download these security updates and other non-IE security updates via Windows Update. Windows users are also strongly encouraged to turn on automatic updates on their systems so updates are downloaded more easily.