DP's Security Bits

Published: October 14, 2008 | Updated: October 23, 2008 to add 1 Critical

MS08-067 - Vulnerability in Server Service Could Allow Remote Code Execution (958644)

Note: There may be latency issues due to replication, if the page does not display keep refreshing
October 23

Today Microsoft released the following Security Bulletin(s). 

Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

October Bulletin Summary

Critical (5)

MS08-067 - Vulnerability in Server Service Could Allow Remote Code Execution (958644)
MS08-060 - Vulnerability in Active Directory Could Allow Remote Code Execution (957280)
MS08-058 - Cumulative Security Update for Internet Explorer (956390)
MS08-059 - Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695)
MS08-057 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (956416)

Important (6)

MS08-066 - Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege (956803)
MS08-061 - Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (954211)
MS08-062 - Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution (953155)
MS08-063 - Vulnerability in SMB Could Allow Remote Code Execution (957095)
MS08-064 - Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841)
MS08-065 - Vulnerability in Message Queuing Could Allow Remote Code Execution (951071)

Moderate (1)

MS08-056 - Vulnerability in Microsoft Office Could Allow Information Disclosure (957699)

This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary.