Microsoft Security Bulletin Summary for February 12 2008

Author	All Replies
NICK ADSL UK Premium,MVM join:2004-02-22 kudos:14 Reviews: ·Zen Internet	Microsoft Security Bulletin Summary for February 12 2008 Hi everyone! As you may be aware, Melissa Travers [ MVP Lead Security ] has moved on to another position within the Microsoft Corporation. As such, she will no longer be available to post the Monthly Microsoft Security Bulletins. In the future, the Microsoft Security Bulletins will be posted either by myself or one of the designated members of the Security Committee! I hope you all can take a moment and thank her for her past contributions. Thank you! Microsoft Security Bulletin(s) for February 12 2008 Note: There may be latency issues due to replication, if the page does not display keep refreshing Today Microsoft released the following Security Bulletin(s). [/B] Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details. Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided. Bulletin Summary: »www.microsoft.com/technet/securi···feb.mspx Critical (6) Microsoft Security Bulletin MS08-007 Vulnerability in WebDAV Mini-Redirector Could Allow Remote Code Execution (946026) »www.microsoft.com/technet/securi···007.mspx Microsoft Security Bulletin MS08-008 Vulnerability in OLE Automation Could Allow Remote Code Execution (947890) »www.microsoft.com/technet/securi···008.mspx Microsoft Security Bulletin MS08-009 Vulnerability in Microsoft Word Could Allow Remote Code Execution (947077) »www.microsoft.com/technet/securi···009.mspx Microsoft Security Bulletin MS08-010 Cumulative Security Update for Internet Explorer (944533) »www.microsoft.com/technet/securi···010.mspx Microsoft Security Bulletin MS08-012 Vulnerabilities in Microsoft Office Publisher Could Allow Remote Code Execution (947085) »www.microsoft.com/technet/securi···012.mspx Microsoft Security Bulletin MS08-013 Vulnerability in Microsoft Office Could Allow Remote Code Execution (947108) »www.microsoft.com/technet/securi···013.mspx Important (5) Microsoft Security Bulletin MS08-003 Vulnerability in Active Directory Could Allow Denial of Service (946538) »www.microsoft.com/technet/securi···003.mspx Microsoft Security Bulletin MS08-004 Vulnerability in Windows TCP/IP Could Allow Denial of Service (946456) »www.microsoft.com/technet/securi···004.mspx Microsoft Security Bulletin MS08-005 Vulnerability in Internet Information Services Could Allow Elevation of Privilege (942831) »www.microsoft.com/technet/securi···005.mspx Microsoft Security Bulletin MS08-006 Vulnerability in Internet Information Services Could Allow Remote Code Execution (942830) »www.microsoft.com/technet/securi···006.mspx Microsoft Security Bulletin MS08-011 Vulnerabilities in Microsoft Works File Converter Could Allow Remote Code Execution (947081) »www.microsoft.com/technet/securi···011.mspx Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so. If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary. As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system. Security Tool Find out if you are missing important Microsoft product updates by using MBSA. -- Wilders Security Forum Admin Microsoft MVP
	to forum · permalink · 2008-02-12 13:45:51 ·

MarkAW Barry White Premium join:2001-08-27 Canada kudos:16	Thanks Nick got 7 updates today 4 Windows XP and 3 Microsoft office 2002/XP.
	to forum · permalink · 2008-02-12 13:51:25 ·
DrDemento join:2005-07-25 Brick, NJ	reply to NICK ADSL UK Thanks Nick. I got for two windowsXP machines 946026, 890830, 943055 and 944533. A total of 4 updates including the malicious removal tool.
	to forum · permalink · 2008-02-12 13:52:59 ·
NICK ADSL UK Premium,MVM join:2004-02-22 kudos:14 Reviews: ·Zen Internet	reply to NICK ADSL UK TechNet Webcast: Information About Microsoft February Security Bulletins (Level 200) Event ID: 1032357215 Language(s): English. Product(s): Security. Audience(s): IT Professionals. Duration: 60 Minutes Start Date: Wednesday, February 13, 2008 11:00 AM Pacific Time (US & Canada) Event Overview On February 12, 2008, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the February security bulletins. The intent of this webcast is to address your concerns. Therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from our security experts. Presenters: Bill Sisk, Security Response Communications Manager, Microsoft Corporation, and Adrian Stone, Lead Security Program Manager, Microsoft Corporation Register now for the Febuary security bulletin webcast. -- Wilders Security Forum Admin Microsoft MVP
	to forum · permalink · 2008-02-12 14:02:13 ·
MagMan Life is simpler when you tell the truth. Premium join:2003-10-01 Westlake, OH 1 edit	reply to NICK ADSL UK Thanks Nick 4 XP updates for me and everything is kosher.
	to forum · permalink · 2008-02-12 14:05:00 ·
NICK ADSL UK Premium,MVM join:2004-02-22 kudos:14 Reviews: ·Zen Internet	reply to NICK ADSL UK Malicious Software Removal Tool Published: January 11, 2005 \| Updated: February 12, 2008 New Additions We have added detection and cleaning capabilities for the following malicious software: • Ldpinch »www.microsoft.com/security/encyc···fLdpinch -- Wilders Security Forum Admin Microsoft MVP
	to forum · permalink · 2008-02-12 14:07:17 ·
Trooper Premium join:2005-05-18 USA	reply to MagMan said by MagMan: Thanks Nick 4 XP updates for me and everything is kosher. Same for me (aside from some MS Office updates). All is well so far. Thanks Nick. -- This space for rent.
	to forum · permalink · 2008-02-12 14:07:49 ·
jabarnut Light Years Away Premium,MVM join:2005-01-22 Galaxy M31 kudos:2 1 edit	reply to NICK ADSL UK Wow! That special Tuesday that we all look forward to is here again? Thank you, Nick! And yes, many thanks to Melissa for her past contributions! said by MarkAW: Thanks Nick got 7 updates today 4 Windows XP and 3 Microsoft office 2002/XP. Exactly the same configuration here. All seems well. I know some of you wait to see what happens to the rest of us. Not to worry! I always make a full image of my drive before I install these updates. If my computers start acting really strange, or blow up, I'll let you guys know right away. For now, as I said, all seems well! Thanks again, Nick! -- I had a life once.....now I have a Computer and a Modem.
	to forum · permalink · 2008-02-12 14:18:13 ·
antdude A Ninja Ant Premium,VIP join:2001-03-25 kudos:2 Reviews: ·RoadRunner Cable 1 edit	reply to NICK ADSL UK Does anyone else with 64-bit Vista have problems with KB937287? It won't install for me even though it was a success and kept showing up. Earlier, all updates installed except this on and rebooted. I posted the Windows Update log here: »myfreefilehosting.com/f/082571f8ca_1.3MB
	to forum · permalink · 2008-02-12 15:21:36 ·
AB Premium join:2006-04-04 Leesburg, VA kudos:3 Reviews: ·Verizon Online DSL	reply to jabarnut said by jabarnut: . . All seems well. . . . . . Not to worry! Yes . . . It always starts off seeming well enough, doesn't it? Then, later . . . . Pretty much the usual suspects, it appears. Thanks, Nick!
	to forum · permalink · 2008-02-12 15:54:05 ·
altermatt Premium join:2004-01-22 White Plains, NY Reviews: ·Verizon FiOS	reply to NICK ADSL UK said by NICK ADSL UK: Malicious Software Removal Tool Thanks, Nick. Has anyone ever definitively answered if there's ever a reason to install this monthly tool if a user is running a regularly updated AV? Has anyone ever experienced this tool finding something a running, updated major AV has missed? -- The truth of a thing is the feel of it, not the think of it. -- Stanley Kubrick
	to forum · permalink · 2008-02-12 15:58:23 ·
antdude A Ninja Ant Premium,VIP join:2001-03-25 kudos:2 Reviews: ·RoadRunner Cable	said by altermatt: said by NICK ADSL UK: Malicious Software Removal Tool Thanks, Nick. Has anyone ever definitively answered if there's ever a reason to install this monthly tool if a user is running a regularly updated AV? Has anyone ever experienced this tool finding something a running, updated major AV has missed? Yeah, I never understood this too. What happens if it finds something? What does the user see? -- Ant @ »antfarm.ma.cx and »aqfl.net. Please do not IM/e-mail me for technical support. Use the forum! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer
	to forum · permalink · 2008-02-12 16:03:02 ·
AB Premium join:2006-04-04 Leesburg, VA kudos:3 Reviews: ·Verizon Online DSL	said by antdude: said by altermatt: said by NICK ADSL UK: Malicious Software Removal Tool Thanks, Nick. Has anyone ever definitively answered if there's ever a reason to install this monthly tool if a user is running a regularly updated AV? Has anyone ever experienced this tool finding something a running, updated major AV has missed? Yeah, I never understood this too. What happens if it finds something? What does the user see? All bolding?
	to forum · permalink · 2008-02-12 16:18:38 ·
antdude A Ninja Ant Premium,VIP join:2001-03-25 kudos:2 Reviews: ·RoadRunner Cable	said by AB: All bolding? Sure. I am just lazy to fix it. Blame Nick (he started it). [grin]
	to forum · permalink · 2008-02-12 16:23:43 ·
NICK ADSL UK Premium,MVM join:2004-02-22 kudos:14 Reviews: ·Zen Internet	reply to antdude quote Note The version of the tool delivered by Microsoft Update and Windows Update runs in the background and then reports if an infection is found. If you would like to run this tool more than once a month, use the version on this Web page or install the version that is available in the Download Center. Because computers can appear to function normally when infected, Microsoft advises you to run this tool even if your computer seems to be fine. You should also use up-to-date antivirus software to help protect your computer from other malicious software. -- Wilders Security Forum Admin Microsoft MVP
	to forum · permalink · 2008-02-12 16:31:02 ·
jabarnut Light Years Away Premium,MVM join:2005-01-22 Galaxy M31 kudos:2 4 edits	reply to antdude said by antdude: said by altermatt: said by NICK ADSL UK: Malicious Software Removal Tool Thanks, Nick. Has anyone ever definitively answered if there's ever a reason to install this monthly tool if a user is running a regularly updated AV? Has anyone ever experienced this tool finding something a running, updated major AV has missed? Yeah, I never understood this too. What happens if it finds something? What does the user see? I have no problem at all letting this 'tool' run every month....it's really no biggie. And it sure can't hurt. Why a lot of "security conscious" people are so uncertain of this thing, and tend to shy away from it, (and I don't mean you personally), I could never quite figure out. If it finds anything, it will let you know. (If you don't see anything after it runs, it's all good). Furthermore, the results of the scan (as well as previous scans), can be found in the: C:\WINDOWS\Debug\mrt.log file. What it checks: (Quite a bit, actually) »www.microsoft.com/security/malwa···ies.mspx (updated each month, obviously). Main Page: »www.microsoft.com/security/malwa···ult.mspx Don't worry about this thing guys....simply another "tool" in your "layers of security". Lord knows you all love your "layers". Here is part of the contents of the my .log file, created after running the Malicious Software Removal Tool today (Again, found in the "mrt.log file" in the Windows\debug folder): said by "The Malicious Software Removal Tool" : Microsoft Windows Malicious Software Removal Tool v1.38, February 2008 Started On Tue Feb 12 15:45:11 2008 Results Summary: ---------------- No infection found. Return code: 0 Microsoft Windows Malicious Software Removal Tool Finished On Tue Feb 12 15:46:55 2008 Wow! I am one happy guy! And I feel so much more secure than I did before! I promise it won't hurt you or call Microsoft and tell them you've been a bad boy lately. What have you got to lose by running it? -- I had a life once.....now I have a Computer and a Modem.
	to forum · permalink · 2008-02-12 16:51:25 ·
dadkins Can you do Blu? Premium,MVM join:2003-09-26 Hercules, CA kudos:18	reply to NICK ADSL UK Thanks Nick!
	to forum · permalink · 2008-02-12 17:42:45 ·
La Luna Survived Ashraful Premium join:2001-07-12 Warwick, NY kudos:3	reply to NICK ADSL UK First day on the job, hope it wasn't too stressful. Thanks Nick, as always.
	to forum · permalink · 2008-02-12 18:41:31 ·
agaprazr What...Me Worry? Premium join:2005-01-08 Salem, OR	reply to NICK ADSL UK Got'em Nick, thanks.
	to forum · permalink · 2008-02-12 19:00:02 ·
Dustyn Premium join:2003-02-26 Ontario, CAN kudos:7 Reviews: ·Rogers Hi-Speed	reply to antdude Your Windows Update log at that link displays no information? And yes, I too am experiencing the same problem as you with this particular update on my x64 rig. It installs, but on every reboot, or just a few moments later when Auto Updates kicks in in the background to check for updates... that update keeps showing up again! If you happen to find out what is going on, please post back?
	to forum · permalink · 2008-02-12 19:30:12 ·

Broadband Tech > Security > Security > Microsoft Security Bulletin Summary for February 12 2008