0 Replies Latest reply on Jul 14, 2009 4:10 PM by HarryWaldron

    Microsoft Security updates - July 2009 available UPDATE NOW

      With active DirectShow and other attacks in the wild, it is beneficial for all corporate and home users to apply these protective updates promptly.

      QUOTE: The full July Security Bulletin is available at the following Web page:
      http://www.microsoft.com/technet/security/bulletin/MS09-Jul.mspx.

      ISC has 2 PATCH NOW recommendations
      http://isc.sans.org/diary.html?storyid=6790

      ==================================
      New Security Bulletins - July 2009
      ==================================

      Microsoft is releasing the following six new security bulletins for July 2009:

      ----------------------------------
      Bulletin ID: MS09-028
      Bulletin Title: Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)
      Max Severity Rating: Critical
      Vulnerability Impact: Remote Code Execution
      Restart Requirement: May require restart
      Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003

      ----------------------------------
      Bulletin ID: MS09-029
      Bulletin Title: Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution (961371)
      Max Severity Rating: Critical
      Vulnerability Impact: Remote Code Execution
      Restart Requirement: Requires restart
      Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008

      ----------------------------------
      Bulletin ID: MS09-030
      Bulletin Title: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (969516)
      Max Severity Rating: Important
      Vulnerability Impact: Remote Code Execution
      Restart Requirement: May require restart
      Affected Software: Microsoft Office Publisher 2007

      ----------------------------------
      Bulletin ID: MS09-031
      Bulletin Title: Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953)
      Max Severity Rating: Important
      Vulnerability Impact: Elevation of Privilege
      Restart Requirement: Requires restart
      Affected Software: Microsoft Internet Security and Acceleration Server 2006

      ----------------------------------
      Bulletin ID: MS09-032
      Bulletin Title: Cumulative Security Update of ActiveX Kill Bits (973346)
      Max Severity Rating: Critical
      Vulnerability Impact: Remote Code Execution
      Restart Requirement: May require restart
      Affected Software: Microsoft Windows XP, Windows Server 2003

      ----------------------------------
      Bulletin ID: MS09-033
      Bulletin Title: Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856)
      Max Severity Rating: Important
      Vulnerability Impact: Elevation of Privilege
      Restart Requirement: Requires restart
      Affected Software: Virtual PC 2004, Virtual PC 2007, Virtual Server 2005