Where did all the posts go?

Many of us are beginning to pack things up and head out for the holidays so I just wanted to give everyone a heads up that I’m doing the same.  I’m going to be out until January 5th so if the posts start to dry up then that’s probably why, although you might see a… Read more

Tips for installing clients to Windows SteadyState PCs

The post below was something I submitted to my SMSandMOM blog but I thought you might also like to see it since it’ll help you make any kind of update you wanted to make permanent on a SteadyState PC. —– We’ve received a couple calls on this so I thought a quick post might help… Read more

Microsoft Security Bulletin Advance Notification for December 2008

Just an FYI that we’re releasing an out-of-band security bulletin to address 961051 tomorrow at 10:00am PST: ======== Microsoft Security Bulletin Advance Notification issued: December 16, 2008 Microsoft Security Bulletins to be issued: December 17, 2008 This is an advance notification of an out-of-band security bulletin that Microsoft is intending to release on December 17,… Read more

SUSFP detects that MS08-062 patches are needed even though IIS is not installed on target machine

Here’s another issue you may want to be aware of if you’re still using the old SUSFP scan engine to detect updates.  This one is from Clifton Hughes in our Las Colinas, Texas office: ======== Issue: In SMS 2003, if you are using SUSFP you may experience issues with the MS08-062 patch related to IIS… Read more

FYI: The Microsoft Security Advisory 961051 was updated last Friday

Just an FYI in case you missed it but last Friday we updated some of the information surrounding 964051 with more on what we know about it as well as some of the workarounds.  The updated official release notes are here: http://www.microsoft.com/technet/security/advisory/961051.mspx. The clarifications on the multiple workarounds that are available were posted to the… Read more

New Microsoft Security Advisory: 961051 – Vulnerability in Internet Explorer Could Allow Remote Code Execution

Just an FYI that we just released a new advisory for an IE related issue.  The intro and a link are below: ======== Microsoft is investigating new public reports of attacks against a new vulnerability in Internet Explorer. Our investigation so far has shown that these attacks are against Windows Internet Explorer 7 on supported… Read more

When will the .NET Framework 3.5 SP1 be pushed to Windows Update?

Now there’s a question I’m not completely unfamiliar with.  And for good reason, as this is an important update that includes a bunch of great fixes.  Unfortunately, if you’re looking for a concrete date I still don’t have anything for you, but I wanted to post a quick update to let you know we do… Read more

December 2008 Monthly Security Bulletins Released

Looks like the December 2008 monthly security bulletins are out and the new ones include: MS08-070: Vulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) Could Allow Remote Code Execution (932349) which is rated “Critical” MS08-071: Vulnerabilities in GDI Could Allow Remote Code Execution (956802) which is rated “Critical” MS08-072: Vulnerabilities in Microsoft Office… Read more

Advance notification of security bulletins that Microsoft is intending to release on December 9, 2008

Just a quick FYI on the security bulletins scheduled to release next week: ======== Microsoft Security Bulletin Advance Notification issued: December 4, 2008 Microsoft Security Bulletins to be issued: December 9, 2008 This is an advance notification of security bulletins that Microsoft is intending to release on December 9, 2008. This bulletin advance notification will… Read more

WSUS client updates fail with error 80072F8F after configuring a self-signed certificate in IIS

Here’s a cool tip that was sent to me by Joao Madureira, a Support Escalation Engineer in our WSUS group.  If you want to use a self-signed cert in IIS7 for your WSUS clients then you’ll want to take a look at this one: ======== Issue: After installing WSUS on a Windows 2008 server and… Read more