Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

MS05-019: Vulnerabilities in TCP/IP could allow remote code execution and denial of service


View products that this article applies to.

Technical Update

  • June 14, 2005: Security update MS05-019 was re-released.
  • June 14, 2005: Updated the "Known issues" section.
  • August 17, 2005: Updated the "Known issues" section.

↑ Back to the top


Summary

Microsoft has released security bulletin MS05-019. The security bulletin contains all the relevant information about the security update. The information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:

↑ Back to the top


Known issues

  • For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    901159 Some Internet Security Systems products stop running after you install the revised MS05-019 security update or after you install the Update Rollup 1 for Windows 2000 SP4 on a Windows 2000-based computer

  • After you install the updated version of security update MS05-019 on a Windows 2000-based computer, you may notice that there is no Remove button for the KB893066 entry in the Add or Remove Programs (ARP) tool in Control Panel.
  • Security update MS05-019 modifies the way that the affected operating systems validate the ICMP requests. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    900926 Recommended TCP/IP settings for WAN links with a MTU size of less than 576

  • In Windows XP Service Pack 2, the Add or Remove Programs tool in Control Panel lists software updates. Add or Remove Programs lists software updates under the name of the product that they update. In Windows XP Service Pack 2, Add or Remove Programs will list this update under Windows XP – Software Updates. In Windows XP Service Pack 2, Add or Remove Programs will not show "Installed On" for this software update. Therefore, this software update does not show up in the order of installation. Instead, this software update shows at the top of the Windows XP – Software Updates list.
  • After you install this security update, you may notice network performance degradation. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    890345 Security update 893066 returns the default size of the TCP receive window in Windows 2000 to the pre-Service Pack 3 default size of 17,520 bytes

  • This security update supports a new registry key that is named MaxIcmpHostRoutes. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    896350 Security update 893066 introduces the MaxIcmpHostRoutes registry entry

  • On computers that are running Microsoft Windows XP with Service Pack 1 (SP1), networking programs and tools that send manually crafted Transmission Control Protocol (TCP) packets over raw Internet Protocol (IP) sockets may stop working. This behavior may also affect programs and tools that send User Datagram Protocol (UDP) packets. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    897656 Networking programs that send TCP packets or UDP packets over raw IP sockets may stop working after you apply security update MS05-019 to a computer that is running Windows XP with Service Pack 1

  • Network connectivity between clients and servers may not work after you install security update MS05-019. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    898060 Network connectivity between clients and servers may fail after you install security update MS05-019 or Windows Server 2003 Service Pack 1

  • For more information, click the following article number to view the article in the Microsoft Knowledge Base:

    898542 Windows Server 2003 systems using IPsec tunnel-mode functionality may experience problems after you install the original version of 893066

↑ Back to the top


Keywords: kbbug, kbretire, kbhotfixserver, kbsecbulletin, kbsecurity, kbsecvulnerability, kbfix, kblangall, kbwinserv2003presp1fix, kbwinserv2003sp1fix, kbwinxppresp3fix, kbwin2000presp5fix, kbmustloc, kb, kbqfe

↑ Back to the top

Article Info
Article ID : 893066
Revision : 3
Created on : 3/30/2017
Published on : 3/30/2017
Exists online : False
Views : 525