Microsoft Security Bulletins - April 2008
Microsoft has released several important monthly updates that improve the security of Windows, IE, and Office. These should be applied promptly to protect against malicious exploit developments that could surface later. So far, these updates are working well on my two XP based systems at work.
Microsoft Security Bulletins - April 2008
http://www.microsoft.com/technet/security/bulletin/ms08-apr.mspx
Microsoft Security Bulletins - Additional Resources
ISC provides excellent updates on issues or exploit developments
http://isc.sans.org/diary.html?storyid=4264
http://www.f-secure.com/weblog/archives/00001417.html
MS08-018: Vulnerability in Microsoft Project Could Allow Remote Code Execution (950183)
Summary: This security update resolves a privately reported vulnerability in Microsoft Office Project that could allow remote code execution if a user opens a specially crafted Project file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Rating: Critical
Impact: Remote Code Execution
Affected Software: Project 2000, 2003
http://www.microsoft.com/technet/security/Bulletin/MS08-018.mspx
MS08-021: Vulnerabilities in GDI Could Allow Remote Code Execution (948590)
Summary: This security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted EMF or WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Rating: Critical
Impact: Remote Code Execution
Affected Software: Microsoft Windows
http://www.microsoft.com/technet/security/Bulletin/MS08-021.mspx
MS08-022: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
Summary: This security update resolves a privately reported vulnerability in the VBScript and JScript scripting engines in Windows. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Rating: Critical
Impact: Remote Code Execution
Affected Software: Microsoft Windows
http://www.microsoft.com/technet/security/Bulletin/MS08-022.mspx
MS08-023: Security Update of ActiveX Kill Bits (948881)
Summary: This security update resolves one privately reported vulnerability for a Microsoft product. This update also includes a kill bit for the Yahoo! Music Jukebox product. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Rating: Critical
Impact: Remote Code Execution
Affected Software: Microsoft Windows, Internet Explorer.
http://www.microsoft.com/technet/security/Bulletin/MS08-023.mspx
MS08-024: Cumulative Security Update for Internet Explorer (947864)
Summary: This security update resolves one privately reported vulnerability. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Rating: Critical
Impact: Remote Code Execution
Affected Software: Microsoft Windows, Internet Explorer.
http://www.microsoft.com/technet/security/Bulletin/MS08-024.mspx
MS08-020: Vulnerability in DNS Client Could Allow Spoofing (945553)
Summary: This security update resolves a privately reported vulnerability. This spoofing vulnerability exists in Windows DNS clients and could allow an attacker to send specially crafted responses to DNS requests, thereby spoofing or redirecting Internet traffic from legitimate locations.
Rating: Important
Impact: Spoofing
Affected Software: Microsoft Windows.
http://www.microsoft.com/technet/security/Bulletin/MS08-020.mspx
MS08-025: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (941693)
Summary: This security update resolves a privately reported vulnerability in the Windows kernel. A local attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
Rating: Important
Impact: Elevation of Privilege
Affected Software: Microsoft Windows.
http://www.microsoft.com/technet/security/Bulletin/MS08-025.mspx
MS08-019: Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (949032)
Summary: This security update resolves privately reported vulnerabilities in Microsoft Office Visio that could allow remote code execution if a user opens a specially crafted Visio file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Rating: Important
Impact: Remote Code Execution
Affected Software: Microsoft Visio
http://www.microsoft.com/technet/security/Bulletin/MS08-019.mspx