Microsoft Security Bulletin Summary for February 9, 2010

Discussion in 'other security issues & news' started by NICK ADSL UK, Feb 9, 2010.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Microsoft Security Bulletin Summary for February 9, 2010

    Microsoft Security Bulletin Summary for February 9, 2010
    Published: February 9 2010


    Note: There may be latency issues due to replication, if the page does not display keep refreshing


    Note: http://www.microsoft.com/technet/security and http://www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

    Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.


    Today Microsoft released the following Security Bulletin(s).

    Bulletin Summary:


    http://www.microsoft.com/technet/security/bulletin/ms10-feb.mspx

    Critical (5)

    Microsoft Security Bulletin MS10-006
    Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)
    http://www.microsoft.com/technet/security/bulletin/ms10-006.mspx

    Microsoft Security Bulletin MS10-007
    Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)
    http://www.microsoft.com/technet/security/bulletin/ms10-007.mspx

    Microsoft Security Bulletin MS10-008
    Cumulative Security Update of ActiveX Kill Bits (978262)
    http://www.microsoft.com/technet/security/bulletin/ms10-008.mspx

    Microsoft Security Bulletin MS10-009
    Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (974145)
    http://www.microsoft.com/technet/security/bulletin/ms10-009.mspx

    Microsoft Security Bulletin MS10-013
    Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)
    http://www.microsoft.com/technet/security/bulletin/ms10-013.mspx



    Important (7)


    Microsoft Security Bulletin MS10-003
    Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution
    http://www.microsoft.com/technet/security/bulletin/ms10-003.mspx

    Microsoft Security Bulletin MS10-004
    Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)
    http://www.microsoft.com/technet/security/bulletin/ms10-004.mspx

    Microsoft Security Bulletin MS10-010
    Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)
    http://www.microsoft.com/technet/security/bulletin/ms10-010.mspx

    Microsoft Security Bulletin MS10-011
    Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037)
    http://www.microsoft.com/technet/security/bulletin/ms10-011.mspx

    Microsoft Security Bulletin MS10-012
    Vulnerabilities in SMB Server Could Allow Remote Code Execution (97146:cool:
    http://www.microsoft.com/technet/security/bulletin/ms10-012.mspx

    Microsoft Security Bulletin MS10-014
    Vulnerability in Kerberos Could Allow Denial of Service (977290)
    http://www.microsoft.com/technet/security/bulletin/ms10-014.mspx

    Microsoft Security Bulletin MS10-015
    Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)
    http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx


    Moderate (1)

    Microsoft Security Bulletin MS10-005
    Vulnerability in Microsoft Paint Could Allow Remote Code Execution (978706)
    http://www.microsoft.com/technet/security/bulletin/ms10-005.mspx



    Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

    If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

    As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

    Security Tool
    Find out if you are missing important Microsoft product updates by using MBSA.
     
  2. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Microsoft® Windows® Malicious Software Removal Tool (KB890830)
    Brief Description
    This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.

    Date Published: 9/02/2010



    Encyclopedia entry
    Updated: Jan 11, 2010 | Published: Feb 09, 2010


    New Additions
    We have added detection and cleaning capabilities for the following malicious software:

    Pushbot

    http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Win32/Pushbot

    http://www.microsoft.com/downloads/...E0-E72D-4F54-9AB3-75B8EB148356&displaylang=en
     
  3. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    TechNet Webcast: Information About Microsoft February Security Bulletins (Level 200)
    Event ID: 1032427679


    Language(s): English.
    Product(s): Security.
    Audience(s): IT Generalist.


    Duration: 90 Minutes
    Start Date: Wednesday, February 10, 2010 11:00 AM Pacific Time (US & Canada)


    Event Overview

    Join us for a brief overview of the technical details of the February security bulletins. We intend to address your concerns in this webcast, therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from Microsoft security experts.

    Presenters: Jerry Bryant, Senior Security Program Manager Lead, Microsoft Corporation and Adrian Stone, Senior Security Program Manager Lead, Microsoft Corporation

    Register now for the February security bulletin webcast.
     
  4. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    ********************************************************************
    Title: Microsoft Security Bulletin Minor Revisions
    Issued: February 10, 2010
    ********************************************************************

    Summary
    =======
    The following bulletins have undergone a minor revision increment.
    Please see the appropriate bulletin for more details.

    * MS10-015 - Important
    * MS10-013 - Critical
    * MS10-012 - Important
    * MS10-011 - Important
    * MS10-010 - Important
    * MS10-009 - Critical
    * MS10-008 - Critical
    * MS10-006 - Critical
    * MS10-005 - Moderate
    * MS10-003 - Important
    * MS10-002 - Critical

    Bulletin Information:
    =====================

    * MS10-015 - Important

    http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Corrected the
    verification registry key for all supported x64-based
    editions of Windows XP. This is an informational change only.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Important
    - Version: 1.1

    * MS10-013 - Critical

    http://www.microsoft.com/technet/security/bulletin/ms10-013.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Corrected the
    bulletin replacement for the Quartz (KB975560) update
    package. Corrected the restart requirements for the update on
    all platforms except Microsoft Windows 2000 and Windows
    Server 2008. Changed the Systems Management Server table
    entries for SMS 2003 with ITMU for Windows 7 and Windows
    Server 2008 R2. Finally, corrected the verification registry
    key for all supported x64-based editions of Windows XP. These
    are informational changes only. There were no changes to the
    security update files or detection logic.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Critical
    - Version: 1.1

    * MS10-012 - Important

    http://www.microsoft.com/technet/security/bulletin/ms10-012.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Corrected the FAQ
    for SMB Null Pointer Vulnerability - CVE-2010-0022 to reflect
    that the vulnerability was responsibly disclosed. Changed the
    Systems Management Server table entries for SMS 2003 with
    ITMU for Windows 7 and Windows Server 2008 R2. Corrected the
    verification registry key for all supported x64-based
    editions of Windows XP. These are informational changes only.
    There were no changes to the security update files or
    detection logic.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Important
    - Version: 1.1

    * MS10-011 - Important

    http://www.microsoft.com/technet/security/bulletin/ms10-011.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Corrected the
    verification registry key for all supported x64-based
    editions of Windows XP. This is an informational change only.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Important
    - Version: 1.1

    * MS10-010 - Important

    http://www.microsoft.com/technet/security/bulletin/ms10-010.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Changed the
    Systems Management Server table entry for SMS 2003 with ITMU
    for Windows Server 2008 R2. This is an informational change
    only. There were no changes to the security update files or
    detection logic.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Important
    - Version: 1.1

    * MS10-009 - Critical

    http://www.microsoft.com/technet/security/bulletin/ms10-009.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Corrected the
    command-line information for the Disable the "Core Networking
    - Router Advertisement (ICMPv6-In)" inbound firewall rule
    workaround. This is an informational change only.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Critical
    - Version: 1.1

    * MS10-008 - Critical

    http://www.microsoft.com/technet/security/bulletin/ms10-008.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Added the "Is this
    control installed by default in Microsoft Office?" entry to
    the vulnerability FAQ for CVE-2010-0252. Changed entries in
    the Systems Management Server table for SMS 2003 with ITMU
    for Windows 7 and Windows Server 2008 R2. These are
    informational changes only.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Critical
    - Version: 1.1

    * MS10-006 - Critical

    http://www.microsoft.com/technet/security/bulletin/ms10-006.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Changed entries in
    the Systems Management Server table for SMS 2003 with ITMU
    for Windows 7 and Windows Server 2008 R2. This is an
    informational change only. There were no changes to the
    security update files or detection logic.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Critical
    - Version: 1.1

    * MS10-005 - Moderate

    http://www.microsoft.com/technet/security/bulletin/ms10-005.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Corrected Security
    Update Deployment subsections to indicate that in some cases,
    the update does not require a restart. Corrected the
    verification registry key for all supported x64-based
    editions of Windows XP. These are informational changes only.
    Customers who have already successfully updated their systems
    do not need to take any action.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Moderate
    - Version: 1.1

    * MS10-003 - Important

    http://www.microsoft.com/technet/security/bulletin/ms10-003.mspx
    - Reason for Revision: V1.1 (February 10, 2010): Added a link to
    Microsoft Knowledge Base Article 978214 under Known Issues in
    the Executive Summary.
    - Originally posted: February 9, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Important
    - Version: 1.1

    * MS10-002 - Critical

    http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx
    - Reason for Revision: V1.3 (February 10, 2010): Corrected the
    severity ratings for Internet Explorer 5.01 Service Pack 4
    when installed on Microsoft Windows 2000 Service Pack 4 and
    Internet Explorer 6 for Windows XP Service Pack 2 for CVE-2010-0027.
    - Originally posted: January 21, 2010
    - Updated: February 10, 2010
    - Bulletin Severity Rating: Critical
    - Version: 1.3
     
  5. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Microsoft Security Bulletin MS10-006 - Critical
    Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)
    Published: February 09, 2010 | Updated: February 10, 2010

    Revisions
    • V1.0 (February 9, 2010): Bulletin published.

    • V1.1 (February 10, 2010): Changed entries in the Systems Management Server table for SMS 2003 with ITMU for Windows 7 and Windows Server 2008 R2. This is an informational change only. There were no changes to the security update files or detection logic.
    http://www.microsoft.com/technet/security/Bulletin/MS10-006.mspx
     
  6. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Restart issues after installing MS10-015
    http://blogs.technet.com/msrc/archive/2010/02/11/restart-issues-after-installing-ms10-015.aspx
     
  7. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    The Microsoft Security Response Center (MSRC) : Update - Restart Issues After Installing MS10-015:

     
  8. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Update - Restart Issues After Installing MS10-015 and the Alureon Rootkit
    http://blogs.technet.com/msrc/archi...talling-ms10-015-and-the-alureon-rootkit.aspx
     
  9. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Please note that these are additional Microsoft updates for xp/vista/windows 7 32 x 64 bit for the 23/2/2010


    Update for Rights Management Services Client for Windows Vista for x64-based Systems (KB979099)

    Download size: 9.2 MB

    You may need to restart your computer for this update to take effect.

    Update type: Recommended

    Install this update to resolve issues caused by manifest expiration in AD RMS enabled applications. This update will fix any existing issues in addition to addressing any future application manifest expirations. After you install this item, you may have to restart any running AD RMS enabled applications.

    More information:
    http://support.microsoft.com/kb/979099

    Help and Support:
    http://support.microsoft.com



    Update for Windows Vista for x64-based Systems (KB975929)


    Download size: 9.7 MB

    You may need to restart your computer for this update to take effect.

    Update type: Recommended

    Both the Meiryo UI font and the Meiryo UI Bold font are included in this update. These new fonts let an application optimally display Kana characters in the Ribbon UI component and in other parts of the user interface, especially in areas where text area is limited. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/kb/975929

    Help and Support:
    http://support.microsoft.com/kb/



    Update for Windows Vista for x64-based Systems (KB976264)

    Download size: 3.1 MB

    You may need to restart your computer for this update to take effect.

    Update type: Recommended

    Install this update to resolve issues with non-compatible applications for Windows Vista. For complete details of this update, see Knowledge Base Article KB976264. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/KB/976264

    Help and Support:
    http://support.microsoft.com



    Update for Windows Vista for x64-based Systems (KB976662)

    Download size: 635 KB

    You may need to restart your computer for this update to take effect.

    Update type: Important

    Install this update to improve Internet Explorer 8's JSON interoperability in conformance with the new ECMAScript, fifth edition standard. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/kb/976662

    Help and Support:
    http://support.microsoft.com



    Update for Windows Vista for x64-based Systems (KB979306)

    Download size: 1.3 MB

    You may need to restart your computer for this update to take effect.

    Update type: Important

    Install this update to resolve issues caused by revised daylight saving time and time zone laws in several countries. This update enables your computer to automatically adjust the computer clock on the correct date in 2010. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/KB/979306

    Help and Support:
    http://support.microsoft.com



    Cumulative Update for Media Center for Windows 7 x64-based Systems (KB977863)

    Download size: 5.0 MB

    You may need to restart your computer for this update to take effect.

    Update type: Recommended

    Install this update to resolve issues with Media Center for Windows 7. For a complete listing of the issues that are included in this cumulative update, see Microsoft Knowledge Base article 977863. After you install this item, you may have to restart your computer.

    More information:
    http://go.microsoft.com/fwlink/?LinkId=179608

    Help and Support:
    http://support.microsoft.com



    Update for Windows 7 for x64-based Systems (KB976264)

    Download size: 1.8 MB

    You may need to restart your computer for this update to take effect.

    Update type: Recommended

    Install this update to resolve issues with non-compatible applications for Windows 7. For complete details of this update, see Knowledge Base Article KB976264. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/KB/976264

    Help and Support:
    http://support.microsoft.com



    Update for Windows 7 for x64-based Systems (KB976662)

    Download size: 643 KB

    You may need to restart your computer for this update to take effect.

    Update type: Important

    Install this update to improve Internet Explorer 8's JSON interoperability in conformance with the new ECMAScript, fifth edition standard. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/kb/976662

    Help and Support:
    http://support.microsoft.com



    Update for Windows 7 for x64-based Systems (KB978637)

    Download size: 258 KB

    You may need to restart your computer for this update to take effect.

    Update type: Recommended

    Install this update to address an issue in which program compatibility settings are ignored and cause applications opened through another 32-bit application to exhibit Windows Vista behavior on Windows 7 x64 or Windows 2008 R2 x64/IA-64. The fix additionally prevents the user from receiving an incorrect ‘Program Compatibility Assistant’ warning that the installation has failed while it has actually succeeded. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/kb/978637

    Help and Support:
    http://support.microsoft.com



    Update for Windows 7 for x64-based Systems (KB979306)

    Download size: 495 KB

    You may need to restart your computer for this update to take effect.

    Update type: Important

    Install this update to resolve issues caused by revised daylight saving time and time zone laws in several countries. This update enables your computer to automatically adjust the computer clock on the correct date in 2010. After you install this item, you may have to restart your computer.

    More information:
    http://support.microsoft.com/KB/979306

    Help and Support:
    http://support.microsoft.com
     
  10. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    High-priority updates
    Microsoft Windows XP



    Update for Windows XP (KB976662)

    Download size: 0 KB , 0 minutes (Downloaded; ready to install)
    Install this update to improve Internet Explorer 8's JSON interoperability in conformance with the new ECMAScript, fifth edition standard. After you install this item, you may have to restart your computer. Details...
    http://support.microsoft.com/kb/976662

    Update for Windows XP (KB979306)
    Download size: 0 KB , 0 minutes (Downloaded; ready to install)
    Install this update to resolve issues caused by revised daylight saving time and time zone laws in several countries. This update enables your computer to automatically adjust the computer clock on the correct date in 2010. After you install this item, you may have to restart your computer. Details...
    http://support.microsoft.com/KB/979306

    Microsoft Browser Choice Screen Update for EEA Users of Windows XP (KB976002)
    Download size: 559 KB , less than 1 minute
    Install this update to access a Choice Screen which lets you select whether and which Web browser(s) to install in addition to Internet Explorer. After you have installed this software update it cannot be removed. Details...
    http://support.microsoft.com/kb/976002
     
  11. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Microsoft Security Bulletin MS10-015 - Important

    Microsoft Security Bulletin MS10-015 - Important
    Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)
    Published: February 09, 2010 | Updated: March 02, 2010
    http://www.microsoft.com/technet/security/bulletin/ms10-015.mspx

    Revisions
    • V1.0 (February 9, 2010): Bulletin published.

    • V1.1 (February 10, 2010): Corrected the verification registry key for all supported x64-based editions of Windows XP. This is an informational change only.

    • V1.2 (March 2, 2010): Added an item to the Frequently Asked Questions (FAQ) About this Security Update to announce the offering of revised packages on Windows Update. Customers who have already successfully updated their systems do not need to take any action.
     
  12. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    How to determine whether a computer is compatible with security update 977165

    This article introduces a Fix it solution that users can run to determine whether a computer is compatible with security update 977165. This security update is described in security bulletin MS10-015. Additionally, administrators can use this solution to determine whether the computers in an enterprise environment are compatible with security update 977165.

    http://support.microsoft.com/default.aspx/kb/980966/
     
  13. NICK ADSL UK

    NICK ADSL UK Administrator

    Joined:
    May 13, 2003
    Posts:
    9,217
    Location:
    UK
    Hi,
    http://blogs.technet.com/msrc/archi...ate-re-released-with-new-detection-logic.aspx
     
Loading...
Thread Status:
Not open for further replies.