Please see details below of this month’s security bulletin. Only 3 this month so relatively quiet this time around.
|Bulletin Identifier||Bulletin Title||Maximum Severity||Affected Software||Impact|
Vulnerabilities in Windows Kernel could allow remote code execution
|Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008||Remote Code Execution|
Vulnerability in SChannel could allow spoofing
|Important||Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008||Spoofing|
Vulnerabilities in DNS and WINS Server could allow spoofing
|Important||Windows 2000, Windows Server 2003 and Windows Server 2008||Spoofing|
Summaries of these bulletins can be found here.
Security Bulletin Major Revision
MS-08-052 – which is a vulnerability GDI+ was revised to fix an installation issue that some customers were experiencing. If you already installed the update successfully then you don’t need to apply the update again.
Microsoft Windows Malicious Software Removal Tool
This month we are releasing an updated version of the Malicious Software Removal Tool on Windows Server Update Services, the download centre and Windows Update. This month the MSRT has the ability to detect Win32/Koobface. This is a worm that has been targeting social networking sites such as Facebook. You can get more information about the MSRT here. And if you want to see what our Malware protection centre has been up to then check out there blog at: http://blogs.technet.com/mmpc