MS Alerts Q3-2007

[AplusWebMaster]

FYI...

- http://www.microsoft.com/technet/sec.../ms07-jul.mspx
Published: July 10, 2007
"The security bulletins for this month are as follows, in order of severity:


Critical (3)

Microsoft Security Bulletin MS07-036
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (936542)
- http://www.microsoft.com/technet/sec.../MS07-036.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Office, Excel...

Microsoft Security Bulletin MS07-039
Vulnerability in Windows Active Directory Could Allow Remote Code Execution (926122)
- http://www.microsoft.com/technet/sec.../MS07-039.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows...

Microsoft Security Bulletin MS07-040
Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)
- http://www.microsoft.com/technet/sec.../MS07-040.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: .NET Framework ...


Important (2)

Microsoft Security Bulletin MS07-037
Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (936548)
- http://www.microsoft.com/technet/sec.../MS07-037.mspx
Maximum Severity Rating: Important
Impact of Vulnerability: Remote Code Execution
Affected Software: Office, Publisher ...

Microsoft Security Bulletin MS07-041
Vulnerability in Microsoft Internet Information Services Could Allow Remote Code Execution (939373)
- http://www.microsoft.com/technet/sec.../MS07-041.mspx
Maximum Severity Rating: Important
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows XP Professional ...


Moderate (1)

Microsoft Security Bulletin MS07-038
Vulnerability in Windows Vista Firewall Could Allow Information Disclosure (935807)
- http://www.microsoft.com/technet/sec.../MS07-038.mspx
Maximum Severity Rating: Moderate
Impact of Vulnerability: Information Disclosure
Affected Software: Windows Vista ...

--------------------------------------------------

ISC Analysis
- http://isc.sans.org/diary.html?storyid=3120
Last Updated: 2007-07-10 18:51:33 UTC


.

[AplusWebMaster]

FYI...

- http://www.microsoft.com/protect/com...ns/200707.mspx
July 10, 2007 - "...MS06-078 has been updated to support the release of Windows Server 2003 SP2 (KB 923689 and KB 925398)..."

Microsoft Security Bulletin MS06-078
Vulnerability in Windows Media Format Could Allow Remote Code Execution (923689)
> http://www.microsoft.com/technet/sec.../MS06-078.mspx
Published: December 12, 2006 | Updated: July 10, 2007
• V3.0 (July 10, 2007): Added Microsoft Windows Server 2003 Service Pack 2 to the Affected Software section for Windows Media Player 6.4. Added "Why did Microsoft reissue this bulletin on July 10, 2007" to the Frequently Asked Questions (FAQ) Related to this Security Update section.
Removed reference to Microsoft Knowledge Base Article 933066: Error dialog when you install the security update 923689 on Windows XP SP2 from the FAQ section. The install package for Microsoft Windows XP Service Pack 2 in the Affected Software section resolves all issues noted in Knowledge Base Article 933066. Customers will no longer experience these issues using the new package.
Removed reference to Microsoft Knowledge Base Article 933065: Error message when you try to install the original version of security update 923689 in the Korean version of Windows 2000 Service Pack 4: "Setup could not verify the integrity of the file Update.inf" from the FAQ section. Customers will no longer experience this issue.

.

[AplusWebMaster]

FYI...

MS07-040: .NET update trouble
- http://isc.sans.org/diary.html?storyid=3132
Last Updated: 2007-07-12 12:28:30 UTC - "It seems there are a number of readers struggling with the MS07-040 patch for the .NET framework on what appears to be mostly clients. The reports we got so far seem not to lead to any specific thing that happens in many cases, just various things going haywire...
We'd like to offer a double advise at this time:
- If you run into trouble do call Microsoft and open a case, it's the only way to get attention to the problem from those who know best how to fix it. It should be free. In the US: call 1-866-PCSAFETY, check their website for other countries, support with patches should always be free.
- Do read through for your specific combination of .NET framework version and you specific OS the relevant KB, some of them were prepared in anticipation of certain problems. They are all linked from KB 931212*."
* http://support.microsoft.com/kb/931212/en-us

[AplusWebMaster]

FYI...

Microsoft Security Bulletin MS07-036 - Critical
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (936542)
- http://www.microsoft.com/technet/sec.../ms07-036.mspx
Updated: July 12, 2007
Version: -2.0- ...
• V2.0 (July 12, 2007): Bulletin updated. The bulletin has been updated throughout to include Microsoft Office 2004 for Mac as an affected product. File Manifest information updated for Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007.


.

[AplusWebMaster]

FYI...

An update is available that improves the performance and reliability of Windows Vista
- http://support.microsoft.com/?kbid=938979
Last Review: August 8, 2007
Revision: 1.2

An update is available that improves the compatibility and reliability of Windows Vista
- http://support.microsoft.com/?kbid=938194
Last Review: August 9, 2007
Revision: 2.0

- http://www.theinquirer.net/?article=41564
8 August 2007 - "...The updates have a combined size of 5.7Mb and both require a system restart. They have yet to be made available through Windows Update. Both 32 and 64 bit versions of Vista are affected... Performance problems have cropped up with screen savers, network printers, corrupt AVI files, slow response times and corrupted RAW files with some Canon cameras. More serious problems addressed by the patch include corruption of offline files and machines forgetting their default gateway addresses. Memory management has also been improved, says the company. Relaibility improvements cover display drivers, PPP network connections and unexpected restarts..."


.

[AplusWebMaster]

FYI...

- http://www.microsoft.com/technet/sec.../ms07-aug.mspx
Published: August 14, 2007
Version: 1.0
This bulletin summary lists security bulletins released for August 2007...


Critical (6)

Microsoft Security Bulletin MS07-042
Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (936227)
- http://www.microsoft.com/technet/sec.../ms07-042.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows, XML Core Services...

Microsoft Security Bulletin MS07-043
Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)
- http://www.microsoft.com/technet/sec.../ms07-043.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows, Visual Basic, Office for Mac...

Microsoft Security Bulletin MS07-044
Vulnerability in Microsoft Excel Could Allow Remote Code Execution (940965)
- http://www.microsoft.com/technet/sec.../ms07-044.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Office...

Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)
- http://www.microsoft.com/technet/sec.../ms07-045.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows, Internet Explorer...

Microsoft Security Bulletin MS07-046
Vulnerability in GDI Could Allow Remote Code Execution (938829)
- http://www.microsoft.com/technet/sec.../ms07-046.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows...

Microsoft Security Bulletin MS07-050
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (938127)
- http://www.microsoft.com/technet/sec.../ms07-050.mspx
Maximum Severity Rating: Critical
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows, Internet Explorer...


Important (3)

Microsoft Security Bulletin MS07-047
Vulnerability in Windows Media Player Could Allow Remote Code Execution (936782)
- http://www.microsoft.com/technet/sec.../ms07-047.mspx
Maximum Severity Rating: Important
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows...

Microsoft Security Bulletin MS07-048
Vulnerabilities in Windows Gadgets Could Allow Remote Code Execution (938123)
- http://www.microsoft.com/technet/sec.../ms07-048.mspx
Maximum Severity Rating: Important
Impact of Vulnerability: Remote Code Execution
Affected Software: Windows Vista...

Microsoft Security Bulletin MS07-049
Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (937986)
- http://www.microsoft.com/technet/sec.../ms07-049.mspx
Maximum Severity Rating: Important
Impact of Vulnerability: Elevation of Privilege
Affected Software: Virtual PC, Virtual Server...
...

ISC Analysis
- http://isc.sans.org/diary.html?storyid=3264
Last Updated: 2007-08-14 18:21:34 UTC

.

[AplusWebMaster]

FYI...

Microsoft Security Advisory (932596)
Update to Improve Kernel Patch Protection
- http://www.microsoft.com/technet/sec...ry/932596.mspx
August 14, 2007 - "An update is available for Kernel Patch Protection included with x64-based Windows operating systems. Kernel Patch Protection protects code and critical structures in the Windows kernel from modification by unknown code or data. This update adds additional checks to this protection for increased reliability, performance, and resiliency of Windows. For more information about this release, see Microsoft Knowledge Base Article 932596*..."

* http://support.microsoft.com/kb/932596

.

[AplusWebMaster]

Re-releasing one bulletin:

Microsoft Security Bulletin MS07-038 - Moderate
Vulnerability in Windows Vista Firewall Could Allow Information Disclosure (935807)
- http://www.microsoft.com/technet/sec.../MS07-038.mspx
Published: July 10, 2007 | Updated: August 14, 2007
Version: 2.0...
Revisions:
• V1.0 (July 10, 2007): Bulletin published.
• V1.1 (July 12, 2007): Bulletin revised. CVE hyperlink updated to correct CVE id. Workarounds Section updated to correct command line instructions.
• V2.0 (August 14, 2007): The update has been revised and re-released to address the issues identified in Microsoft Knowledge Base Article 935807. Rewrote the “Disable Teredo” workaround to clarify the privilege level required.

- http://blogs.technet.com/msrc/archiv...n-release.aspx
"...This is a detection-only change, to address the situation where a missing Firewall Logging Directory would cause the update installation to fail. There’s no change to the update binaries, so if you have already successfully installed this update, you do not need to reinstall it..."

.

[AplusWebMaster]

FYI...

- http://preview.tinyurl.com/2898xr
August 20, 2007 (Computerworld) - "...Proof of concept exploits the critical bug in XML Core Services that was patched by MS07-042. That update, one of six rated "critical" by Microsoft, affected every currently supported version of Windows, including the new Vista operating system. An analyst last week pegged MS07-042 as one that should be deployed immediately. "MS07-042 affects everything," said Don Leatham, director of solutions and strategies at PatchLink Corp. "There's so much going on with XML in enterprises. That's why this is so dangerous." Symantec warned users of its DeepSight threat-alert network to expect (the) crude exploit to be polished soon. "The current proof of concept will crash Internet Explorer; however, it is likely that this code will be modified to produce a code-execution exploit in the near future," read the Symantec warning..."

.