Microsoft Corp. has released three security bulletins encompassing three vulnerabilities. This report provides an initial summary of the pending issues.
 

Security Bulletin MS06-052: Vulnerability in Pragmatic General Multicast (PGM) Could Allow Remote Code Execution (919007)
http://www.microsoft.com/technet/security/bulletin/MS06-052.mspx

CVE Number: CVE-2006-3442
iDefense Title: Microsoft Windows XP PGM Buffer Overflow Vulnerability
iDefense Master ID: 451989
iDefense Severity: MEDIUM

Remote exploitation of a buffer overflow vulnerability within Microsoft Corp.'s Windows XP operating system could allow an attacker to execute arbitrary code on the affected system.
 

Security Bulletin MS06-053: Vulnerability in Indexing Service Could Allow Cross-Site Scripting (920685)
http://www.microsoft.com/technet/security/bulletin/MS06-053.mspx

CVE Number: CVE-2006-0032
iDefense Title: Microsoft Indexing Service Cross-Site Scripting Vulnerability
iDefense Master ID: 451990
iDefense Severity: LOW

Remote exploitation of a cross-site scripting vulnerability within Microsoft Corp.'s Indexing Service could allow an attacker to gain sensitive information.
 

Security Bulletin MS06-054: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (910729)
http://www.microsoft.com/technet/security/bulletin/MS06-054.mspx

CVE Number: CVE-2006-0001
iDefense Title: Microsoft Publisher PUB File Processing Buffer Overflow Vulnerability
iDefense Master ID: 451988
iDefense Severity: HIGH

Remote exploitation of a buffer overflow vulnerability in multiple versions of Microsoft Corp.'s Publisher could allow an attacker to execute arbitrary code with the privileges of the user running Publisher.