Microsoft Security Bulletin--Apr 14, 2009

TeMerc · **Posted:** Tue Aug 08, 2006 9:06 am

Microsoft security updates for August 2006
Published: August 8, 2006

As part of Microsoft's routine, monthly security update cycle we released the following 12 security updates on August 8, 2006:

Full Details @ MS

TeMerc · **Posted:** Wed Sep 13, 2006 8:28 am

Microsoft Security Bulletin Summary for September, 2006
Published: September 12, 2006

Summary
Included in this advisory are updates for newly discovered vulnerabilities. These vulnerabilities, broken down by severity are:

Critical (1)
Bulletin Identifier Microsoft Security Bulletin MS06-054
Bulletin Title
Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (910729)

Important (1)
Bulletin Identifier Microsoft Security Bulletin MS06-052
Bulletin Title
Vulnerability in Reliable Multicast Program (PGM) Could Allow Remote Code Execution (919007)

Moderate (1)
Bulletin Identifier Microsoft Security Bulletin MS06-053
Bulletin Title
Vulnerability in Indexing Service Could Allow Cross-Site Scripting (920685)

More @ MS

TeMerc · **Posted:** Tue Oct 10, 2006 11:02 am

Microsoft Security Bulletin Summary for October, 2006
Published: October 10, 2006

Summary
Included in this advisory are updates for newly discovered vulnerabilities. These vulnerabilities, broken down by severity are:

Critical (6)

Microsoft Security Bulletin MS06-057
Bulletin Title
Vulnerability in Windows Shell Could Allow Remote Code Execution (923191)

Executive Summary
This update resolves a vulnerability in Windows that could allow remote code execution.

Microsoft Security Bulletin MS06-058
Bulletin Title
Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (924163)

Executive Summary
This update resolves vulnerabilities in PowerPoint that could allow remote code execution.

Microsoft Security Bulletin MS06-059
Bulletin Title
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (924164)

Executive Summary
This update resolves vulnerabilities in Excel that could allow remote code execution.

Microsoft Security Bulletin MS06-060
Bulletin Title
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (924554)

Executive Summary
This update resolves several vulnerabilities in Microsoft Word, the most critical of which could allow remote code execution.

Microsoft Security Bulletin MS06-061
Bulletin Title
Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (924191)

Executive Summary
This update resolves vulnerabilities in Windows that could allow remote code execution.

Microsoft Security Bulletin MS06-062
Bulletin Title
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (922581)

Executive Summary
This update resolves vulnerabilities in Office that could allow remote code execution.

Microsoft Technet

TeMerc · **Posted:** Tue Oct 10, 2006 1:39 pm

Quote:

Delay in Patch Distrubtion
I just wanted to inform you that the distribution of the Security Updates is delayed.

According to the MSRC Blog:

Due to some network issues experienced on the Microsoft Update platform, the October security updates released today are not yet currently available via:

If you want to get more information, please visit the MSRC-Blog at http://blogs.technet.com/msrc/archive/2 ... lease.aspx

TeMerc · **Posted:** Tue Dec 12, 2006 5:59 pm

Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)
Published: December 12, 2006

Version: 1.0

As part of Microsoft's routine, monthly security update cycle, we released the following security updates on December 12, 2006:

MS TechNet

TeMerc · **Posted:** Tue Jan 09, 2007 5:08 pm

Microsoft Security Bulletin Summary for January, 2007
Published: January 9, 2007

Critical (3)

Bulletin Identifier Microsoft Security Bulletin MS07-002
Bulletin Title
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (927198)

Executive Summary
This update resolves vulnerabilities in Excel that could allow remote code execution.

Maximum Severity Rating
Critical

Impact of Vulnerability
Remote Code Execution

Affected Software
Office. For more information, see the Affected Software and Download Locations section.

Bulletin Identifier Microsoft Security Bulletin MS07-003
Bulletin Title
Vulnerabilities in Microsoft Outlook Could Allow Remote Code Execution (925938)

Executive Summary
This update resolves vulnerabilities in Outlook that could allow remote code execution.

Maximum Severity Rating
Critical

Impact of Vulnerability
Remote Code Execution

Affected Software
Office. For more information, see the Affected Software and Download Locations section.

Bulletin Identifier Microsoft Security Bulletin MS07-004
Bulletin Title
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (929969)

Executive Summary
This update resolves vulnerabilities in Internet Explorer that could allow remote code execution.

Maximum Severity Rating
Critical

Impact of Vulnerability
Remote Code Execution

Affected Software
Windows, Internet Explorer. For more information, see the Affected Software and Download Locations section.

Important (1)

Bulletin Identifier Microsoft Security Bulletin MS07-001
Bulletin Title
Vulnerability in Microsoft Office 2003 Brazilian Portuguese Grammar Checker Could Allow Remote Code Execution (921585)

Executive Summary
This update resolves a vulnerability in Office that could allow remote code execution. User interaction is required for an attacker to exploit these vulnerabilities.

Maximum Severity Rating
Important

Impact of Vulnerability
Remote Code Execution

Affected Software
Office. For more information, see the Affected Software and Download Locations section.

0-=

MS

TeMerc · **Posted:** Tue Feb 13, 2007 3:55 pm

Microsoft Security Bulletin Summary for February, 2007
Published: February 12, 2007

Microsoft Security Bulletin MS07-008
Bulletin Title:
Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843) Critical
Microsoft Security Bulletin MS07-009
Bulletin Title:
Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution(927779) Critical
Microsoft Security Bulletin MS07-010
Bulletin Title:
Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135)Critical
Microsoft Security Bulletin MS07-014
Bulletin Title:
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (929434) Critical
Microsoft Security Bulletin MS07-015
Bulletin Title:
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554)Critical
Microsoft Security Bulletin MS07-016
Bulletin Title:
Cumulative Security Update for Internet Explorer (928090)Critical
Microsoft Security Bulletin MS07-005
Bulletin Title:
Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723) Important
Microsoft Security Bulletin MS07-006
Bulletin Title:
Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255)Important
Microsoft Security Bulletin MS07-007
Bulletin Title:
Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802) Important
Microsoft Security Bulletin MS07-011
Bulletin Title:
Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436)Important
Microsoft Security Bulletin MS07-012
Bulletin Title:
Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667)Important
Microsoft Security Bulletin MS07-013
Bulletin Title:
Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118)Important

MS Security Bulletin

TeMerc · **Posted:** Tue Apr 03, 2007 3:36 pm

Microsoft Security Bulletin MS07-017Vulnerabilities in GDI Could Allow Remote Code Execution (925902)
Published: April 3, 2007

Version: 1.0

Quote:

Summary
Who Should Read this Document: Customers who use Microsoft Windows

Impact of Vulnerability: Remote Code Execution

Maximum Severity Rating: Critical

Recommendation: Customers should apply the update immediately

Security Update Replacement: This bulletin replaces a prior security update. See the Frequently Asked Questions (FAQ) section of this bulletin for details.

Microsoft

TeMerc · **Posted:** Tue Apr 10, 2007 11:19 am

April 2007 Monthly Bulletin Release
Updated: April 10, 2007

Microsoft Content Management Server (MS07-018)
Maximum severity rating of Critical
Could Allow Remote Code Execution
Universal Plug and Play (MS07-019)
Maximum severity rating of Critical
Could Allow Remote Code Execution
Microsoft Agent (MS07-020)
Maximum severity rating of Critical
Could Allow Remote Code Execution
CSRSS (MS07-021)
(Maximum severity rating of Critical
Could Allow Remote Code Execution
Windows Kernel (MS07-022)
Maximum severity rating of Important
Could Allow Remote Elevation of Privilege

MS

TeMerc · **Posted:** Tue May 08, 2007 12:03 pm

Microsoft Security Bulletin Summary for May 2007
Published: May 8, 2007

This bulletin summary lists security bulletins released for May 2007.

Summary
This bulletin summary includes security updates for newly discovered vulnerabilities. Their security bulletins, in order of severity, are as follows:

Microsoft Security Bulletin MS07-023
Bulletin Title
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (934233)
Quote:
This update resolves vulnerabilities in Microsoft Excel that could allow remote code execution.
Maximum Severity Rating Critical
Microsoft Security Bulletin MS07-024
Bulletin Title
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (934232)
Quote:
This update resolves vulnerabilities in Microsoft Word that could allow remote code execution.
Maximum Severity Rating Critical
Microsoft Security Bulletin MS07-025
Bulletin Title
Vulnerability in Microsoft Office Could Allow Remote Code Execution (934873)
Quote:
This update resolves a vulnerability in Microsoft Office that could allow remote code execution.
Maximum Severity Rating Critical
Microsoft Security Bulletin MS07-026
Bulletin Title
Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832)
Quote:
This update resolves vulnerabilities in Microsoft Exchange that could allow remote code execution.
Maximum Severity Rating Critical
Microsoft Security Bulletin MS07-027
Bulletin Title
Cumulative Security Update for Internet Explorer (931768)
Quote:
This update resolves vulnerabilities in Internet Explorer that could allow remote code execution.
Maximum Severity Rating Critical
Microsoft Security Bulletin MS07-028
Bulletin Title
Vulnerability in CAPICOM Could Allow Remote Code Execution (931906)
Quote:
This update resolves a vulnerability in the Cryptographic API Component Object Model (CAPICOM) that could allow remote code execution.
Maximum Severity Rating Critical
Microsoft Security Bulletin MS07-029
Bulletin Title
Vulnerability in RPC on Windows DNS Server Could Allow Remote Code Execution (935966)
Quote:
This update resolves a vulnerability in RPC on Windows DNS Server that could allow remote code execution.
Maximum Severity Rating Critical

Microsoft Security Bulletin

TeMerc · **Posted:** Tue Jun 12, 2007 11:35 am

Microsoft Security Bulletin Summary for June 2007
Published: June 12, 2007

Executive Summaries
The security bulletins for this month are as follows, in order of severity:

Bulletin Identifier Microsoft Security Bulletin MS07-031 [Critical]
Bulletin Title
Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840)

Executive Summary

Quote:

This critical security update resolves a privately reported vulnerability in the Secure Channel (Schannel) security package in Windows. The Schannel security package implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) Internet standard authentication protocols. This vulnerability could allow remote code execution if a user viewed a specially crafted Web page using an Internet Web browser or used an application that makes use of SSL/TLS. However, attempts to exploit this vulnerability would most likely result in the Internet Web browser or application exiting. The system would not be able to connect to Web sites or resources using SSL or TLS until a restart of the system.

Microsoft Security Bulletin MS07-033[Critical]
Bulletin Title
Cumulative Security Update for Internet Explorer (933566)

Executive Summary

Quote:

This critical security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability. All but one of these vulnerabilities could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. One vulnerability could allow spoofing, and also involves a specially crafted Web page. In all remote code execution cases, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. For the spoofing case, exploitation requires user interaction.

Microsoft Security Bulletin MS07-034 [Critical]Bulletin Title
Cumulative Security Update for Outlook Express and Windows Mail (929123)

Executive Summary

Quote:

This critical security update resolves two privately reported and two publicly disclosed vulnerabilities. One of these vulnerabilities could allow remote code execution if a user viewed a specially crafted e-mail using Windows Mail in Windows Vista. The other vulnerabilities could allow information disclosure if a user visits a specially crafted Web page using Internet Explorer and cannot be exploited directly in Outlook Express. For the information disclosure vulnerabilities, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS07-035[Critical]
Bulletin Title
Vulnerability in Win32 API Could Allow Remote Code Execution (935839)

Executive Summary

Quote:

This critical security update resolves a privately reported vulnerability in a Win32 API. This vulnerability could allow remote code execution or elevation of privilege if the affected API is used locally by a specially crafted application. Therefore, applications that use this component of the Win32 API could be used as a vector for this vulnerability. For example, Internet Explorer uses this Win32 API function when parsing specially crafted Web pages.

Important (1)
Moderate (1)

0-=

Full Details @ MS

TeMerc · **Posted:** Tue Jul 10, 2007 10:27 am

Microsoft security updates for July 2007
Published: July 10, 2007

MS Update Page

TeMerc · **Posted:** Tue Aug 14, 2007 1:31 pm

Microsoft Security Bulletin Summary for August 2007
Published: August 14, 2007

Critical:
Microsoft Security Bulletin MS07-042
Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (936227)
http://go.microsoft.com/fwlink/?LinkId=88350

Microsoft Security Bulletin MS07-043
Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)
http://go.microsoft.com/fwlink/?LinkId=70249

Microsoft Security Bulletin MS07-044
Vulnerability in Microsoft Excel Could Allow Remote Code Execution (940965)
http://go.microsoft.com/fwlink/?LinkId=96778

Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)
http://go.microsoft.com/fwlink/?LinkId=91712

Microsoft Security Bulletin MS07-046
Vulnerability in GDI Could Allow Remote Code Execution (938829)
http://go.microsoft.com/fwlink/?LinkId=94466

Microsoft Security Bulletin MS07-050
Vulnerability in Vector Markup Language Could Allow Remote Code Execution (938127)
http://go.microsoft.com/fwlink/?LinkId=94737

Important (3)
Microsoft Security Bulletin MS07-047
Vulnerability in Windows Media Player Could Allow Remote Code Execution (936782)
http://go.microsoft.com/fwlink/?LinkId=88628

Microsoft Security Bulletin MS07-048
Vulnerabilities in Windows Gadgets Could Allow Remote Code Execution (938123)
http://go.microsoft.com/fwlink/?LinkId=94465

Microsoft Security Bulletin MS07-049
Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (937986)
http://go.microsoft.com/fwlink/?LinkId=92734

0-=

MS

TeMerc · **Posted:** Tue Sep 11, 2007 12:27 pm

Microsoft Security Bulletin Summary for September 2007
Published: September 11, 2007

Microsoft Security Bulletin MS07-051 Critical
Vulnerability in Microsoft Agent Could Allow Remote Code Execution (938827)

Quote:

This critical security update resolves a privately reported vulnerability. A remote code execution vulnerability exists in Microsoft Agent in the way that it handles certain specially crafted URLs. The vulnerability could allow an attacker to remotely execute code on the affected system. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS07-052 Important
Vulnerability in Crystal Reports for Visual Studio Could Allow Remote Code Execution (941522)

Quote:

This important security update resolves a publicly disclosed vulnerability. This vulnerability could allow remote code execution if a user opens a specially crafted RPT file. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS07-053 Important
Vulnerability in Windows Services for UNIX Could Allow Elevation of Privilege (939778)

Quote:

This important security update resolves one publicly reported vulnerability. A vulnerability exists in Windows Services for UNIX 3.0, Windows Services for UNIX 3.5, and Subsystem for UNIX-based Applications where running certain setuid binary files could allow an attacker to gain elevation of privilege.

Microsoft Security Bulletin MS07-054 Important
Vulnerability in MSN Messenger and Windows Live Messenger could allow Remote Code Execution (942099)

Quote:

This security update resolves a publicly disclosed vulnerability in MSN Messenger and Windows Live Messenger. The vulnerability could allow remote code execution when a user accepts a video chat invitation from an attacker. An attacker who successfully exploited this vulnerability could take complete control of the affected system. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

MS Sept. Bulletin

TeMerc · **Posted:** Tue Oct 09, 2007 6:24 pm

Monthly Microsoft Security Bulletins

MS07-055 addresses a vulnerability in Kodak Image Viewer, and is rated as a Critical bulletin.
MS07-056 addresses a vulnerability Outlook Express and Windows Mail, and is rated as a Critical bulletin for earlier versions of Windows and as an Important bulletin for Windows Vista.
MS07-057 is a Cumulative Security Update for Internet Explorer, and is rated as a Critical bulletin.
MS07-058 addresses a vulnerability in RPC, and is rated as an Important bulletin.
MS07-059 addresses a vulnerability in Windows SharePoint Services 3.0 and Office SharePoint Server 2007, and is rated as an Important bulletin.
MS07-060 addresses a vulnerability in Microsoft Word, and is rated as a Critical bulletin for earlier versions and as an Important bulletin for more recent versions.

MS Technet

TeMerc · **Posted:** Tue Nov 13, 2007 1:15 pm

November 2007 Monthly Release
Hi, this is Simon, Release Manager in the MSRC. I’d like to introduce you to our November security release. Today we are releasing two new bulletins:

MS07-061:

Critical

MS07-062

Important

Additionally we are re-releasing one bulletin:

· MS07-049: This update addresses a vulnerability in Virtual PC and Virtual Server and could allow elevation of privilege. This is a change to the installer code only, to address some limited installation problems that we have seen. There’s no change to the update binaries, so if you have already successfully installed this update, you do not need to reinstall it. Please refer to the bulletin revision notes for more detail. 0-=

MSRC Blog

TeMerc · **Posted:** Tue Dec 11, 2007 12:04 pm

Microsoft Security Bulletin Summary for December 2007
Published: December 11, 2007

Critical:

MS07-064 - Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)
MS07-068 - Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)
MS07-069 - Cumulative Security Update for Internet Explorer (942615)

Important:

MS07-063 - Vulnerability in SMBv2 Could Allow Remote Code Execution (942624)
MS07-065 - Vulnerability in Message Queuing Could Allow Remote Code Execution (937894)
MS07-066 - Vulnerability in Windows Kernel Could Allow Elevation of Privilege (943078)
MS07-067 -Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653)

Microsoft has released four non-security, high-priority updates and 2007 Microsoft Office Service Pack 1 on Microsoft Update (MU) and Windows Server Update Services (WSUS).

Microsoft has released four non-security, high-priority updates for Windows and Windows SharePoint Services 3.0 Service Pack 1 on Windows Update (WU) and WSUS.

0-=

MS Security Bulletin December

TeMerc · **Posted:** Tue Jan 08, 2008 6:01 pm

Microsoft Security Bulletin Summary for January 2008
Published: January 8, 2008

Critical

MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (941644)

Important

MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege (943485)

Microsoft Security Bulletin

TeMerc · **Posted:** Tue Feb 12, 2008 11:58 am

Microsoft Security Bulletin Summary for February 2008
Published: February 12, 2008

Important

Critical

Important

Critical

MS Security Bulletin

TeMerc · **Posted:** Tue Mar 11, 2008 1:20 pm

Microsoft Security Bulletin Summary for March 2008
Published: March 11, 2008

Critical (4)

Microsoft Security Bulletin MS08-014 -
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (949029)
Quote:
This security update resolves several privately reported and publicly reported vulnerabilities in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Microsoft Security Bulletin MS08-015 -
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031)
Quote:
This security update resolves a privately reported vulnerability in Microsoft Office Outlook. The vulnerability could allow remote code execution if Outlook is passed a specially crafted mailto URI. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This vulnerability is not exploitable by simply viewing an e-mail through the Outlook preview pane.
Microsoft Security Bulletin MS08-016
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949030)
Quote:
This security update resolves two privately reported vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a malformed Office file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Microsoft Security Bulletin MS08-017 -
Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103)
Quote:
This critical update resolves two privately reported vulnerabilities in Microsoft Office Web Components. These vulnerabilities could allow remote code execution if a user viewed a specially crafted Web page. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

MS Security Buletin

TeMerc · **Posted:** Tue Apr 08, 2008 10:49 am

Microsoft Security Bulletins for April 2008
Published: April 8, 2008

5 Critical

MS08-018 - Vulnerability in Microsoft Project Could Allow Remote Code Execution (950183)
MS08-021 - Vulnerabilities in GDI Could Allow Remote Code Execution (948590)
MS08-022 - Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
MS08-023 - Security Update of ActiveX Kill Bits (948881)
MS08-024 - Cumulative Security Update for Internet Explorer (947864)

3 Important

MS08-019 - Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (949032)
MS08-020 - Vulnerability in DNS Client Could Allow Spoofing (945553)
MS08-025 - Vulnerability in Windows Kernel Could Allow Elevation of Privilege (941693)

Full Details @ MS

TeMerc · **Posted:** Tue May 13, 2008 11:22 am

Microsoft Security Bulletin Summary for May 2008
Published: May 13, 2008

Critical (3)

Microsoft Security Bulletin MS08-026
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (951207)
http://go.microsoft.com/fwlink/?LinkId=117295

Microsoft Security Bulletin MS08-027
Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (951208)
http://go.microsoft.com/fwlink/?LinkId=117907

Microsoft Security Bulletin MS08-028
Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution (950749)
http://go.microsoft.com/fwlink/?LinkId=114750

Moderate (1)

Microsoft Security Bulletin MS08-029
Vulnerabilities in Microsoft Malware Protection Engine Could Allow Denial of Service (952044)
http://go.microsoft.com/fwlink/?LinkId=117943

0-=

More @ MS

TeMerc · **Posted:** Tue Jun 10, 2008 11:47 am

June 2008 Monthly Release

Published: June 10, 2008
Details @ MS

TeMerc · **Posted:** Tue Jul 08, 2008 11:43 am

MS08-037 Vulnerabilities in DNS Could Allow Spoofing (953230)
MS08-038 Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)
MS08-039 Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation of Privilege (953747)
MS08-040 Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203)

MS July Bulletin

TeMerc · **Posted:** Tue Aug 12, 2008 2:37 pm

August 2008 Monthly Bulletin Release
Bulletins:

MS August Monthly Security Bulletin

TeMerc · **Posted:** Tue Sep 09, 2008 10:45 am

Microsoft Security Bulletin Summary for September 2008
Published: September 9, 2008

Executive Summaries
Critical (4)
The security bulletins for this month are as follows, in order of severity:

Bulletin Identifier - Microsoft Security Bulletin MS08-054
Bulletin Title -Vulnerability in Windows Media Player Could Allow Remote Code Execution (954154)
Affected Software - Microsoft Windows.
Bulletin Identifier- Microsoft Security Bulletin MS08-052
Bulletin Title- Vulnerabilities in GDI+ Could Allow Remote Code Execution (954593)
Impact of Vulnerability- Remote Code Execution
Affected Software- Microsoft Windows, Internet Explorer, .NET Framework, Office, SQL Server, Visual Studio.
Bulletin Identifier- Microsoft Security Bulletin MS08-053
Bulletin Title- Vulnerability in Windows Media Encoder 9 Could Allow Remote Code Execution (954156)
Impact of Vulnerability- Remote Code Execution
Affected Software- Microsoft Windows
Bulletin Identifier- Microsoft Security Bulletin MS08-055
Bulletin Title- Vulnerability in Microsoft Office Could Allow Remote Code Execution (955047)
Impact of Vulnerability- Remote Code Execution
Affected Software- Microsoft Office.

Further Details @ MS

TeMerc · **Posted:** Tue Oct 14, 2008 5:59 pm

Microsoft Security Bulletin Summary for October 2008
Published: October 14, 2008
Version: 1.0

Quote:

This bulletin summary lists security bulletins released for October 2008.

With the release of the bulletins for October 2008, this bulletin summary replaces the bulletin advance notification originally issued October 9, 2008. For more information about the bulletin advance notification service, see Microsoft Security Bulletin Advance Notification.

For information about how to receive automatic notifications whenever Microsoft security bulletins are issued, visit Microsoft Technical Security Notifications.

Microsoft is hosting a webcast to address customer questions on these bulletins on October 15, 2008, at 11:00 AM Pacific Time (US & Canada). Register now for the October Security Bulletin Webcast. After this date, this webcast is available on-demand. For more information, see Microsoft Security Bulletin Summaries and Webcasts.

Microsoft also provides information to help customers prioritize monthly security updates with any non-security, high-priority updates that are being released on the same day as the monthly security updates. Please see the section, Other Information.

4 Critical updates:

Bulletin Identifier-AD Bulletin
Impact of Vulnerability- Remote Code Execution
Affected Software- Microsoft Windows.
Bulletin Identifier-IE Bulletin
Impact of Vulnerability- Remote Code Execution
Affected Software-Microsoft Windows, Internet Explorer
Bulletin Identifier-HIS Bulletin
Impact of Vulnerability- Remote Code Execution
Affected Software-Microsoft Host Integration Server
Bulletin Identifier-Excel Bulletin
Impact of Vulnerability- Remote Code Execution
Affected Software-Microsoft Office

6 Important

Bulletin Identifier-Windows 1 Bulletin
Impact of Vulnerability-Elevation of Privilege
Affected Software-Microsoft Windows
Bulletin Identifier-Windows 2 Bulletin
Impact of Vulnerability-Elevation of Privilege
Affected Software-Microsoft Windows
Bulletin Identifier-Windows 3 Bulletin
Impact of Vulnerability-Remote Code Execution
Affected Software-Microsoft Windows
Bulletin Identifier-Windows 4 Bulletin
Impact of Vulnerability-Remote Code Execution
Affected Software-Microsoft Windows
Bulletin Identifier-Windows 5 Bulletin
Impact of Vulnerability-Elevation of Privilege
Affected Software-Microsoft Windows
Bulletin Identifier-Windows 6 Bulletin
Impact of Vulnerability-Remote Code Execution
Affected Software-Microsoft Windows

1 Moderate:

Bulletin Identifier-Office Bulletin
Maximum Severity Rating-Moderate
Impact of Vulnerability-Information Disclosure
Affected Software-Microsoft Office

Details @ MS

TeMerc · **Posted:** Tue Nov 11, 2008 3:18 pm

Microsoft Security Bulletin Summary for November 2008
Published: November 11, 2008

Bulletin Identifier-Microsoft Security Bulletin MS08-069
Bulletin Title-Vulnerabilities in Microsoft XML Core Services Could Allow Remote Code Execution (955218)
Bulletin Identifier-Microsoft Security Bulletin MS08-068
Bulletin Title-Vulnerability in SMB Could Allow Remote Code Execution (957097)

Continued Details @ MS

TeMerc · **Posted:** Tue Dec 09, 2008 2:00 pm

Microsoft Security Bulletin Summary for December 2008
Published: December 9, 2008

MS08-070

MS08-071:

MS08-072:

MS08-073

MS08-074

MS08-075

MS08-076

MS08-077

Microsoft

TeMerc · **Posted:** Tue Feb 10, 2009 11:48 pm

Microsoft Security Bulletin Summary for February 2009Published: February 10, 2009

Microsoft Security Bulletin

Microsoft Security Bulletin--Apr 14, 2009

Who is online

Who is online

Who is online
	In total there is 1 user online :: 0 registered, 0 hidden and 1 guest (based on users active over the past 5 minutes) Most users ever online was 115 on Tue Jul 13, 2010 5:32 pm Users browsing this forum: No registered users and 1 guest