Common Tasks

Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Microsoft Security updates - July 2009 available UPDATE NOW

With active DirectShow and other attacks in the wild, it is beneficial for all corporate and home users to apply these protective updates promptly.

Star QUOTE: The full July Security Bulletin is available at the following Web page: 

http://www.microsoft.com/technet/security/bulletin/MS09-Jul.mspx

Star ISC has 2 PATCH NOW recommendations
http://isc.sans.org/diary.html?storyid=6790  


==================================
New Security Bulletins - July 2009
==================================

Microsoft is releasing the following six new security bulletins for July 2009:

----------------------------------
Bulletin ID: MS09-028
Bulletin Title: Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)
Max Severity Rating: Critical
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003

----------------------------------
Bulletin ID: MS09-029
Bulletin Title: Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution (961371)
Max Severity Rating: Critical
Vulnerability Impact: Remote Code Execution
Restart Requirement: Requires restart
Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008

----------------------------------
Bulletin ID: MS09-030
Bulletin Title: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (969516)
Max Severity Rating: Important
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft Office Publisher 2007

----------------------------------
Bulletin ID: MS09-031
Bulletin Title: Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953)
Max Severity Rating: Important
Vulnerability Impact: Elevation of Privilege
Restart Requirement: Requires restart
Affected Software: Microsoft Internet Security and Acceleration Server 2006

----------------------------------
Bulletin ID: MS09-032
Bulletin Title: Cumulative Security Update of ActiveX Kill Bits (973346)
Max Severity Rating: Critical
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft Windows XP, Windows Server 2003

----------------------------------
Bulletin ID: MS09-033
Bulletin Title: Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856)
Max Severity Rating: Important
Vulnerability Impact: Elevation of Privilege
Restart Requirement: Requires restart
Affected Software: Virtual PC 2004, Virtual PC 2007, Virtual Server 2005

Posted: Jul 14 2009, 01:00 PM by Harry Waldron | with no comments