Microsoft Security updates - July 2009 available UPDATE NOW
Posted
Friday, July 17, 2009 9:37 AM
by
hwaldron
With active DirectShow and other attacks in the wild, it is beneficial for all corporate and home users to apply these protective updates promptly.
QUOTE: The full July Security Bulletin is available at the following Web page:
http://www.microsoft.com/technet/security/bulletin/MS09-Jul.mspx.
ISC has 2 PATCH NOW recommendations
http://isc.sans.org/diary.html?storyid=6790
==================================
New Security Bulletins - July 2009
==================================
Microsoft is releasing the following six new security bulletins for July 2009:
----------------------------------
Bulletin ID: MS09-028
Bulletin Title: Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)
Max Severity Rating: Critical
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003
----------------------------------
Bulletin ID: MS09-029
Bulletin Title: Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution (961371)
Max Severity Rating: Critical
Vulnerability Impact: Remote Code Execution
Restart Requirement: Requires restart
Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008
----------------------------------
Bulletin ID: MS09-030
Bulletin Title: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (969516)
Max Severity Rating: Important
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft Office Publisher 2007
----------------------------------
Bulletin ID: MS09-031
Bulletin Title: Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953)
Max Severity Rating: Important
Vulnerability Impact: Elevation of Privilege
Restart Requirement: Requires restart
Affected Software: Microsoft Internet Security and Acceleration Server 2006
----------------------------------
Bulletin ID: MS09-032
Bulletin Title: Cumulative Security Update of ActiveX Kill Bits (973346)
Max Severity Rating: Critical
Vulnerability Impact: Remote Code Execution
Restart Requirement: May require restart
Affected Software: Microsoft Windows XP, Windows Server 2003
----------------------------------
Bulletin ID: MS09-033
Bulletin Title: Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856)
Max Severity Rating: Important
Vulnerability Impact: Elevation of Privilege
Restart Requirement: Requires restart
Affected Software: Virtual PC 2004, Virtual PC 2007, Virtual Server 2005