Thu, Feb 12 2009 3:51 Don

Microsoft Security Bulletin Minor Revisions - February 11, 2009

Issued: February 11, 2009

Summary

The following bulletins have undergone a minor revision increment.
Please see the appropriate bulletin for more details.

  * MS08-070 - Critical
  * MS08-040 - Important

Bulletin Information:

* MS08-070 - Critical

  - http://www.microsoft.com/technet/security/bulletin/ms08-070.mspx
  - Reason for Revision: V1.2 (February 11, 2009): Clarified the
    class IDs for two ActiveX controls. First, listed a second
    class ID in the workaround, "Prevent Windows Common AVI
    ActiveX Control from running in Internet Explorer," for
    CVE-2008-4255. Second, listed in the section, Frequently
    asked questions (FAQ) related to this security update, the
    class ID for the Winsock Control for which the kill bit is
    being set as a security-related change to functionality in
    this update. This is an informational change only. There were
    no changes to the security update files in this bulletin. 
  - Originally posted: December 9, 2008
  - Updated: February 11, 2009
  - Bulletin Severity Rating: Critical
  - Version: 1.2
   
* MS08-040 - Important

  - http://www.microsoft.com/technet/security/bulletin/ms08-040.mspx
  - Reason for Revision: V1.8 (February 11, 2009): Removed erroneous
    reference to Microsoft SQL Server 2000 Desktop Engine (WMSDE)
    on Microsoft Windows 2000 Service Pack 4 from the Affected
    Software table for Windows Components. Also changed the log
    file entry in the Reference table for Windows Internal
    Database (WYukon) in the Security Update Deployment section. 
  - Originally posted: July 8, 2008
  - Updated: February 11, 2009
  - Bulletin Severity Rating: Important
  - Version: 1.8

Filed under: