Microsoft Security Bulletin(s) for June 2007

Discussion in 'other security issues & news' started by NICK ADSL UK, Jun 12, 2007.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,218
    Location:
    UK
    Microsoft Security Bulletin(s) for 6/12/2007
    http://www.microsoft.com/technet/security/bulletin/ms07-jun.mspx

    June 12 2007
    Today Microsoft released the following Security Bulletin(s).


    Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

    Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

    Bulletin Summary:
    Vulnerability in Win 32 API Could Allow Remote Code Execution (935839): MS07-035
    http://www.microsoft.com/technet/security/Bulletin/MS07-035.mspx

    Cumulative Security Update for Outlook Express and Windows Mail (929123): MS07-034
    http://www.microsoft.com/technet/security/Bulletin/MS07-034.mspx

    Cumulative Security Update for Internet Explorer (933566): MS07-033
    http://www.microsoft.com/technet/security/Bulletin/MS07-033.mspx

    Vulnerability in Windows Vista Could Allow Information Disclosure (931213): MS07-032
    Affected Software: Windows Vista, Windows Vista x64
    http://www.microsoft.com/technet/security/Bulletin/MS07-032.mspx

    Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840): MS07-031
    http://www.microsoft.com/technet/security/Bulletin/MS07-031.mspx

    Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (927051): MS07-030
    Affected Software: Visio 2002, Visio 2003
    http://www.microsoft.com/technet/security/Bulletin/MS07-030.mspx

    Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

    If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

    As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

    Security Tool
    Find out if you are missing important Microsoft product updates by using MBSA.
     
  2. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,218
    Location:
    UK
    TechNet Webcast: Information About Microsoft May Security Bulletins (Level 200)
    Language(s): English.
    Product(s): Security.
    Audience(s): IT Professional.

    Duration: 60 Minutes
    Start Date: Wednesday, june 13, 2007 11:00 AM Pacific Time (US & Canada)


    Event Overview

    On Tuesday June 12, 2007, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the May security bulletins. The intent of this webcast is to address your concerns. Therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from our security experts.

    Presenters: Christopher Budd, CCE, CISA, CISM, CISSP, ISSMP Security Program Manager, Microsoft Corporation and Mike Reavey, Lead Security Program Manager, Microsoft Corporation

    Register now for the June security bulletin webcast.
     
  3. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,218
    Location:
    UK
    Malicious Software Removal Tool
    Published: January 11, 2005 | Updated: June 12, 2007
    Allaple

    Win32/Allaple is a multi-threaded, polymorphic network worm capable of spreading to other computers connected to a local area network (LAN) and performing denial-of-service (DoS) attacks against targeted remote Web sites.

    http://go.microsoft.com/fwlink/?linkid=37020&name=Win32/Allaple
     
  4. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,218
    Location:
    UK
    Additionally Microsoft is re-releasing two bulletins:

    MS07-012 Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667) (Updated to v2.0 to reflect applicability to Windows Server 2003 Service Pack 2, and explicitly noting that Platform SDK is not affected)
    http://www.microsoft.com/technet/security/Bulletin/MS07-012.mspx

    MS07-018 Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939) Updated to fix an issue whereby custom CMS2002 install paths could be reset in the registry to the default paths, as noted in KB article 924429 "known issues" section)
    http://www.microsoft.com/technet/security/Bulletin/MS07-018.mspx
     
  5. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,218
    Location:
    UK
    Microsoft Security Bulletin Re-Releases
    Issued: June 26, 2007

    ********************************************************************

    Summary
    =======
    The following bulletins have undergone a major revision increment.
    Please see the appropriate bulletin for more details.

    * MS07-022

    Bulletin Information:
    =====================

    * MS07-022
    http://www.microsoft.com/technet/security/bulletin/ms07-022.mspx

    - Reason for Revision: Updated this bulletin to advise customers
    that are running Windows 2000 Service Pack 4 on NEC 98
    systems that a revised version of the security update is
    available.
    - Originally posted: April 10, 2007
    - Updated: June 26, 2007
    - Bulletin Severity Rating: Important
    - Version: 2.0
     
Loading...
Thread Status:
Not open for further replies.