Microsoft Security Bulletin Summary for July 2007

Bulletin Information
The security bulletins for this month are as follows, in order of severity:

Critical Security Bulletins
MS07-036 - Vulnerabilities in Microsoft Excel Could Allow Remote Code
Execution (936542)
    Affected Software:
    - Excel 2000 Service Pack 3
    - Excel 2003 Service Pack 2
    - Excel 2003 Viewer
    - Excel 2007
    - Office Compatibility Pack for Word, Excel,
      and PowerPoint 2007 File Formats
    - Impact: Remote Code Execution
    - Version Number: 1.0

MS07-039 - Vulnerability in Windows Active Directory Could Allow
Remote Code Execution (926122)
    Affected Software:
    - Windows 2000 Server Service Pack 4
    - Windows Server 2003 Service Pack 1
    - Windows Server 2003 Service Pack 2
    - Windows Server 2003 with SP1 for Itanium-based Systems
    - Windows Server 2003 with SP2 for Itanium-based Systems
    - Windows Server 2003 x64 Edition
    - Windows Server 2003 x64 Edition Service Pack 2
    - Impact: Remote Code Execution
    - Version Number: 1.0

MS07-040 - Vulnerabilities in .NET Framework Could Allow Remote Code
Execution (931212)
    Affected Software:
    - Windows 2000 Service Pack 4
    - Windows XP Service Pack 2
    - Windows XP Professional x64 Edition
    - Windows XP Professional x64 Edition Service Pack 2
    - Windows Server 2003 Service Pack 1
    - Windows Server 2003 Service Pack 2
    - Windows Server 2003 x64 Edition
    - Windows Server 2003 x64 Edition Service Pack 2
    - Windows Server 2003 with SP1 for Itanium-based Systems
    - Windows Server 2003 with SP2 for Itanium-based Systems
    - Windows Vista
    - Windows Vista x64
    - Impact: Remote Code Execution
    - Version Number: 1.0

Important Security Bulletins
MS07-037 - Vulnerability in Microsoft Office Publisher Could Allow
Remote Code Execution (936548)
    Affected Software:
    - Publisher 2007
    - Impact: Remote Code Execution
    - Version Number: 1.0

MS07-041 - Vulnerability in Microsoft Internet Information Services
Could Allow Remote Code Execution (939373)
   Affected Software:
    - Windows XP Professional Service Pack 2
    - Impact: Remote Code Execution
    - Version Number: 1.0

Moderate Security Bulletins
MS07-038 - Vulnerability in Windows Vista Firewall Could Allow
Information Disclosure (935807)
    Affected Software:
    - Windows Vista
    - Windows Vista x64 Edition
    - Impact: Information Disclosure
    - Version Number: 1.0

Other Information

Microsoft Windows Malicious Software Removal Tool:
Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.
Note that this tool is not distributed using Software Update Services (SUS).


Non-Security, High-Priority Updates on MU, WU, WSUS and SUS:
For this month:
* Microsoft has released four non-security,
  high-priority updates on Microsoft Update (MU) and
  Windows Server Update Services (WSUS).

* Microsoft has released one non-security,
  high-priority update for Windows on Windows Update (WU) and
  Software Update Services (SUS).

Note that this information pertains only to non-security, high-priority updates on Microsoft Update, Windows Update, Windows Server Update Services, and Software Update Services released on the same
day as the Security Bulletin Summary. Information is not provided about non-security updates released on other days.

Published Tuesday, July 10, 2007 4:06 PM by chobbs
Filed under: ,

Comments

No Comments