ADVANCE NOTIFICATION: July 28, 2009 (Out-of-Band) Microsoft Security Bulletin Release – Internet Explorer and Visual Studio Products



What is the purpose of this alert?


 


This is an advance notification of two out-of-band security bulletins that Microsoft is intending to release on July 28, 2009.


 


One bulletin will be for the Microsoft Visual Studio product line; application developers should be aware of updates available affecting certain types of applications.


 


The second bulletin contains defense-in-depth changes to Internet Explorer to address attack vectors related to the Visual Studio bulletin, as well as fixes for unrelated vulnerabilities that are rated Critical.


 



New Bulletin Summary


 























Bulletin ID


Maximum Severity Rating


Vulnerability Impact


Restart Requirement


Affected Software


Visual Studio


Moderate


Remote Code Execution


Requires restart


Microsoft Visual Studio .NET 2003,


Microsoft Visual Studio 2005,


Microsoft Visual Studio 2008,


Microsoft Visual C++ 2005, and


Microsoft Visual C++ 2008


Internet Explorer


Critical


Remote Code Execution


Requires restart


Internet Explorer on Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008


 


The full version of the Microsoft Security Bulletin Advance Notification for this month can be found here at


http://www.microsoft.com/technet/security/bulletin/ms09-jul-ans.mspx.


 






Although we do not anticipate any changes, the information provided in this summary is subject to change until the release. At this time, no additional information on this bulletin such as details regarding severity or details regarding the vulnerability will be made available until the bulletin is published.


 



Public Bulletin Webcast


 


Microsoft will host two public Webcasts to address customer questions on the bulletin release. For more information please visit the Microsoft Security Bulletin and Webcast landing page at http://www.microsoft.com/technet/security/bulletin/summary.mspx.



 


Regarding Information Consistency


 


We strive to provide you with accurate information in static (this mail) and dynamic (Web-based) content. Microsoft’s security content posted to the Web is occasionally updated to reflect late-breaking information. If this results in an inconsistency between the information here and the information in Microsoft’s Web-based security content, the information in Microsoft’s Web-based security content is authoritative.


 


If you have any questions regarding this alert please contact your Technical Account Manager or Application Development Consultant.


 


Thank you,


Microsoft CSS Security Team


 


For further information please refer to the



 

Comments (0)