This article has been archived. It is offered "as is" and will no longer be updated.
Note If you are using Microsoft Windows XP, Microsoft Windows 2000 Server, or the x64-based versions of Microsoft Windows Server 2003, see the following article in the Microsoft Knowledge Base:
911831 Description of the security update for FrontPage 2002 Server Extensions: April 11, 2006
Microsoft has released security bulletin MS06-017. The security bulletin contains all the relevant information about the security update for FrontPage 2002 Server Extensions from Microsoft. This information includes file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites, depending on whether you are a home user or an IT professional:
Besides the issues that are described in the security bulletin, the security update for FrontPage 2002 Server Extensions fixes the issues that are described in the following Microsoft Knowledge Base articles:
813380 Description of the FrontPage 2002 Server Extensions Security Patch: November 11, 2003
895193 Description of the FrontPage 2002 Server Extensions for Windows Server 2003 hotfix package: April 13, 2005
825809 FrontPage Server Extensions stops responding in Windows Server 2003
Besides the issues that are described in the security bulletin, the security update for FrontPage 2002 Server Extensions addresses the following issue that is not previously documented in a Microsoft Knowledge Base article:
By default, Integrated Windows Authentication is turned off at the global level and at the per virtual server level. This behavior is changed so that Integrated Windows Authentication is turned on by default on the virtual servers on which FrontPage 2002 Server Extensions is running.
Known issues during installation
After you install this security update for FrontPage 2002 Server Extensions (KB908981) on the original release version of Microsoft Windows Server 2003, you will be restricted to using Indexing Services as the default search method. This behavior was introduced with Microsoft Windows Server 2003 Service Pack 1 (SP1).
update security_patch security_update security bug flaw vulnerability malicious attacker exploit registry unauthenticated buffer overrun overflow specially-formed scope specially-crafted denial of service DoS