Common Tasks

Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Microsoft Security Updates - July 2008 includes SQL-Server update

Microsoft have released this month's patches as part of their usual Patch Tuesday monthly cycle.  This months patches are:

MS08-037 - Vulnerabilities in DNS Could Allow Spoofing (953230)

Affects: Windows 2000, XP (inc x64), Server 2003 (inc x64), Server 2008 (inc x64)
LInk: http://www.microsoft.com/technet/security/Bulletin/MS08-037.mspx


MS08-038 - Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)

Affects: Windows Vista and Windows 2008 Server
Link: http://www.microsoft.com/technet/security/Bulletin/MS08-038.mspx


MS08-039 - Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation of Privilege (953747)
Affects: Microsoft Exchance Server 2003 & 2007
Link: http://www.microsoft.com/technet/security/Bulletin/MS08-039.mspx


MS08-040 - Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203)
Affects: SQL Server 7, 2000, 2005, MSDE 1.0, SQL 2000 Desktop Engine, SQL 2005 Express Edition, Windows 2000, Server 2003 & Server 2008
Link: http://www.microsoft.com/technet/security/Bulletin/MS08-040.mspx


Additional Links:  

Microsoft: http://www.microsoft.com/technet/security/bulletin/ms08-jul.mspx
MS Blog: http://blogs.technet.com/msrc/archive/2008/07/08/july-2008-bulletin-monthly-release.aspx
ISC: http://isc.sans.org/diary.html?storyid=4684

So far, the July updates are working well on my XP SP3 PCs at home and work ...

IMPORTANT NOTE -- Don't forget to patch SQL-Server as applicable (after pilot testing your web or client/server based applications)

Posted: Jul 14 2008, 01:43 PM by Harry Waldron | with no comments