MS July Hot-fixes ... please update

Discussion in 'Security, Spyware and Viruses' started by muckshifter, Jul 11, 2007.

Thread Status:
Not open for further replies.
  1. muckshifter

    muckshifter Captain Crunchie, Retired Moderator

    Joined:
    Mar 5, 2002
    Messages:
    22,983
    Likes Received:
    195
    Location:
    In a Hovel
    Critical: MS07-036 (http://www.microsoft.com/technet/security/Bulletin/MS07-036.mspx)

    This critical update resolves one publicly disclosed vulnerability and two privately reported vulnerabilities in addition to other security issues identified during the course of the investigation. These vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

    Critical: MS07-039 (http://www.microsoft.com/technet/security/Bulletin/MS07-039.mspx)

    This critical security update resolves a privately reported vulnerability in implementations of Active Directory on Windows 2000 Server and Windows Server 2003 that could allow remote code execution or a denial of service condition. Attacks attempting to exploit this vulnerability would most likely result in a denial of service condition. However remote code execution could be possible. On Windows Server 2003 an attacker must have valid logon credentials to exploit this vulnerability. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.

    Critical: MS07-040 (http://www.microsoft.com/technet/security/Bulletin/MS07-040.mspx)

    This update resolves three privately reported vulnerabilities. Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET. In all remote code execution cases, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

    Important: MS07-037 (http://www.microsoft.com/technet/security/Bulletin/MS07-037.mspx)

    This important security update resolves one publicly disclosed vulnerability. This vulnerability could allow remote code execution if a user viewed a specially crafted Microsoft Office Publisher file. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. User interaction is required to exploit this vulnerability.

    Important: MS07-041 (http://www.microsoft.com/technet/security/Bulletin/MS07-041.mspx)

    This important security update resolves a privately reported vulnerability. This vulnerability could allow remote code execution if an attacker sent specially crafted URL requests to a Web page hosted by Internet Information Services (IIS) 5.1 on Windows XP Professional Service Pack 2. IIS 5.1 is not part of a default install of Windows XP Professional Service Pack 2. An attacker who successfully exploited this vulnerability could take complete control of the affected system.

    Moderate: MS07-038 (http://www.microsoft.com/technet/security/Bulletin/MS07-038.mspx)

    This moderate security update resolves a privately reported vulnerability. This vulnerability could allow incoming unsolicited network traffic to access a network interface. An attacker could potentially gather information about the affected host.

    This security update addresses the vulnerability by modifying the Windows Vista firewall default behavior to block unsolicited traffic communicating over the Teredo interface.



    :user:
     
    muckshifter, Jul 11, 2007
    #1
    1. Advertisements

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. muckshifter

    Microsoft Posts Critical Security Fixes

    muckshifter, Jun 12, 2007, in forum: Security, Spyware and Viruses
    Replies:
    7
    Views:
    856
    itsme
    Jun 13, 2007
  2. muckshifter

    MS September Hot-fixes/Updates ... please update

    muckshifter, Sep 7, 2007, in forum: Security, Spyware and Viruses
    Replies:
    0
    Views:
    670
    muckshifter
    Sep 7, 2007
  3. muckshifter

    Firefox Vulnerability ... please update!!

    muckshifter, Sep 22, 2007, in forum: Security, Spyware and Viruses
    Replies:
    0
    Views:
    725
    muckshifter
    Sep 22, 2007
  4. len

    Please. Please help

    len, Jan 30, 2008, in forum: Security, Spyware and Viruses
    Replies:
    1
    Views:
    614
  5. muckshifter

    Please update Flash

    muckshifter, Apr 9, 2008, in forum: Security, Spyware and Viruses
    Replies:
    0
    Views:
    614
    muckshifter
    Apr 9, 2008
Loading...
Thread Status:
Not open for further replies.

Share This Page