Microsoft Security Bulletin(s) for November 2007 [Archive]

View Full Version : Microsoft Security Bulletin(s) for November 2007

NICK ADSL UK

November 13th, 2007, 01:20 PM

Microsoft Security Bulletin(s) for 11/13/2007

November 13, 2007

Today Microsoft released the following Security Bulletin(s).

Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:

http://www.microsoft.com/technet/security/Bulletin/ms07-Nov.mspx

Critical Bulletins:

Vulnerability in Windows URI Handling Could Allow Remote Code Execution (943460)
http://www.microsoft.com/technet/security/Bulletin/ms07-061.mspx

Important Bulletins:

Vulnerability in DNS Could Allow Spoofing (941672)
http://www.microsoft.com/technet/security/Bulletin/ms07-062.mspx

Re-Released Bulletins:

Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (937986)
http://www.microsoft.com/technet/security/Bulletin/ms07-049.mspx

This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary

As always, download the updates only from the vendors website - visit Windows Update (http://www.windowsupdate.com/) and Office Update (http://office.microsoft.com/OfficeUpdate/) or Microsoft Update (http://update.microsoft.com/microsoftupdate) websites. You may also get the updates thru Automatic Updates (http://www.microsoft.com/athome/security/update/bulletins/automaticupdates.mspx) functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA (http://www.microsoft.com/technet/security/tools/mbsahome.mspx).

NICK ADSL UK

November 13th, 2007, 01:22 PM

TechNet Webcast: Information About Microsoft November Security Bulletins (Level 200)
Event ID: 1032344694
Register Online

Language(s): English.
Product(s): Security.
Audience(s): IT Professionals.

Duration: 60 Minutes
Start Date: Wednesday, November 14, 2007 11:00 AM Pacific Time (US & Canada)

Event Overview

On November 13, 2007, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the November security bulletins. The intent of this webcast is to address your concerns. Therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from our security experts.

Presenters: Christopher Budd, Security Program Manager, Microsoft Corporation, and Mike Reavey, Group Manager MSRC, Microsoft Corporation

Register now for the November security bulletin webcast (http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032344694&EventCategory=4&culture=en-US&CountryCode=US).

NICK ADSL UK

November 13th, 2007, 01:26 PM

Malicious Software Removal Tool
Published: January 11, 2005 | Updated: November 13, 2007

New Additions
We have added detection and cleaning capabilities for the following malicious software:

• Conhook

http://go.microsoft.com/fwlink/?linkid=37020&name=Win32/Conhook

NICK ADSL UK

November 21st, 2007, 06:00 PM

November 2007 Security Releases ISO Image
Brief Description
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on November 13th, 2007.

Overview
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on November 13th, 2007. The image does not contain security updates for other Microsoft products. This DVD5 ISO image is intended for administrators that need to download multiple individual language versions of each security update and that do not use an automated solution such as Windows Server Update Services (WSUS). You can use this ISO image to download multiple updates in all languages at the same time.

Important: Be sure to check the individual security bulletins at http://www.microsoft.com/technet/security prior to deployment of these updates to ensure that the files have not been updated at a later date.

This DVD5 image contains the following updates:
KB943460 / (MS07-061)

* Windows Server 2003 - 18 languages
* Windows Server 2003 for Itanium-based Systems - 4 languages
* Windows Server 2003 x64 Edition - 11 languages
* Windows XP - 24 languages

KB941672 / (MS07-062)

* Windows 2000 - 24 languages
* Windows Server 2003 - 18 languages
* Windows Server 2003 for Itanium-based Systems - 4 languages
* Windows Server 2003 x64 Edition - 11 languages

http://www.microsoft.com/downloads/details.aspx?FamilyID=ca311d3e-f4fb-4f79-825b-d5a81bb44376&DisplayLang=en