Quote:

---

After a further read this evening, it appears that we may need to do nothing for client systems running XP with SP2 for these two new bulletins.

MS06-011 DACLs vulnerability is rated as "important" but XP w/SP2 and W2K w/SP4 are listed as non-affected systems.

MS06-012 MSO vulnerability is rated as "critical" but only for Office 2000 suite of products. Under Office 2003, only Excel is the affected product, and it's vulnerability is rated at "important". Our W2K systems with Office 2000 need to have the patch deployed (manually, tech by tech on remaining systems)

---