MVP Jubo Security Blog

Microsoft TechNet Magazine (Dutch)

News for our Dutch speaking audience. It's here! The first Dutch TechNet Magazine. Will be published 6 times a year and, as I'm Dutch myself, it's totally free! Full of technical articles, news about cutting edge technology and more. Of course, this first edition is all about Windows Server 2008.

Subscribe here: Microsoft TechNet (Netherlands)

WinCE/InfoJack - Trojan disables Windows Mobile Application Installation Security

From: McAfee Avert Labs Blog

"A Window Mobile PocketPC trojan that disables Windows Mobile application installation security has been discovered in China.

WinCE/InfoJack sends the infected device’s serial number, operating system and other information to the author of the trojan. It also leaves the infected mobile device vulnerable by allowing silent installation of malware. The trojan modifies the infected device’s security setting to allow unsigned applications to be installed without a warning."

Guest Speaker: Alex de Jong

Yesterday, February 21st, we had a guest speaker at our company: Alex de Jong. He was invited to tell us something about the certification for Windows Server 2008. The certificates you have to get whether you're MCSE or MCSA certified. After the break he also showed us something about the differences between Server 2003 and Server 2008.It was really a pleasure to meet Alex and to listen to him. Looking forward to meet him too at the IT HerOlympics on March 6th, in Nieuwegein, Holland.

The time he had, two hours, was just too short. For more information about Alex de Jong check out his web site: AlexdeJong.com. Alex also maintains a blog at: http://spaces.msn.com/a-dejong. But see also the one at the NGN web site, which is in Dutch.

Microsoft Security Bulletin Summary for February 2008

While I was visiting family on the other side of the pond, in the USA, Microsoft released 11 patches. There are 6 "Critical" and 5 "Important" patches:

Critical:

• MS08-007 - Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution (946026)
• MS08-008 - Vulnerability in OLE Automation Could Allow Remote Code Execution (947890)
• MS08-009 - Vulnerability in Microsoft Word Could Allow Remote Code Execution (947077)
• MS08-010 - Cumulative Security Update for Internet Explorer (944533)
• MS08-012 - Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution (947085)
• MS08-013 - Vulnerability in Microsoft Office Could Allow Remote Code Execution (947108)

Important:

• MS08-003 - Vulnerability in Active Directory Could Allow Denial of Service (946538)
• MS08-004 - Vulnerability in Windows TCP/IP Could Allow Denial of Service (946456)
• MS08-005 - Vulnerability in Internet Information Services Could Allow Elevation of Privilege (942831)
• MS08-006 - Vulnerability in Internet Information Services Could Allow Remote Code Execution (942830)
• MS08-011 - Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081)

A more technical version of the Security Bulletin can be found at TechNet and an end-user version is available at Microsoft's Security At Home site.

You can obtain the security updates offered this month on Windows Update, from Download Center on Security and Critical Releases ISO CD Image files. For more information, see Microsoft Knowledge Base Article 913086.

Support:

• Customers in the U.S. and Canada can receive technical support from Microsoft Product Support Services at 1-866-PCSAFETY. International customers can receive support from their local Microsoft subsidiaries. Visit the International Help and Support.