|
Posted by
Dave
Support 4 Vista Security Specialist
Week of 01/11/09
General-
Very important patches (3) were released this week by
Microsoft on Tuesday 1/13/09 and you should apply these
patches immediately via Windows Update or Microsoft
Update.
Vista –
Microsoft Tuesday Bulletin release
Critical Security Bulletins
===========================
Microsoft Security Bulletin MS09-001
- Affected Software:
- Microsoft Windows 2000 Service Pack 4
- Windows XP Service Pack 2 and
Windows XP Service Pack 3
- Windows XP Professional x64 Edition and
Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1 and
Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition and
Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
and
Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista and
Windows Vista Service Pack 1
- Windows Vista x64 Edition and
Windows Vista x64 Edition Service Pack 1
- Windows Server 2008 for 32-bit Systems
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems
- Impact: Remote Code Execution
- Version Number: 1.0
Other Information
=================
Microsoft Windows Malicious Software Removal Tool:
==================================================
Microsoft has released an updated version of the
Microsoft Windows
Malicious Software Removal Tool on Windows Update,
Microsoft Update,
Windows Server Update Services, and the Download Center.
Non-Security, High-Priority Updates on MU, WU, and WSUS:
========================================================
Please see:
*
http://support.microsoft.com/kb/894199 : Microsoft
Knowledge Base
Article 894199, Description of Software Update Services
and
Windows Server Update Services changes in content.
Includes all Windows content.
*
http://technet.microsoft.com/en-us/wsus/bb466214.aspx
: New,
Revised, and Released Updates for Microsoft Products
Other Than
Microsoft Windows
Microsoft Active Protections Program (MAPP)
**********
The actual Microsoft bulletin on TechNet is available
here:
http://www.microsoft.com/technet/security/Bulletin/MS09-001.mspx?pf=true
Here is my take on MS09-001/KB958687 — Critical (2000,
XP, 2003) / Moderate (Vista, 2008): This patch corrects
a number of problems in the SMB protocol (used for file
sharing), which can allow one of the dreaded “remote
code execution” attacks. Of course, you should not have
Windows file sharing available over the Internet, so
hopefully your exposure is limited to internal attacks.
This patch affects every version of Windows from 2000
through present, both 32-bit and 64-bit flavors, and it
affects Server Core as well. You should install this
patch immediately on pre-Vista/2008 machines. For Vista
and 2008, while the rating is “moderate,” I would
suggest installing it now anyway.
Updates since the last Patch Tuesday
The big news here is the out-of-band patch released on
December 17, to fix MS08-078/KB960714. This was a
particularly nasty and publicly disclosed bug. If you
have not installed it yet and have users who use IE,
stop what you are doing and make plans to install it
tonight.
*****
As there is a serious worm attack currently underway for
vulnerabilities released last October in an emergency
out of cycle patch (MS08-067) from Microsoft, please be
sure you are fully updated and patched, and also be sure
to install and run the January 2009 Microsoft Malicious
Software Removal Tool that is part of this month’s
Windows Updates.
[Top]
|
