CalamityJane
Premium,VIP,MVM
join:2002-08-27
Eustis, FL
| Microsoft Security Bulletin(s) for March 11 2008
Note: There may be latency issues due to replication, if the page does not display keep refreshing
Today Microsoft released the following Security Bulletin(s). [/B]
Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.
Bulletin Summary:
»www.microsoft.com/technet/securi···mar.mspx
Critical (4)
Microsoft Security Bulletin MS08-014
Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (949029)
»go.microsoft.com/fwlink/?LinkId=112111
Microsoft Security Bulletin MS08-015
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (949031)
»go.microsoft.com/fwlink/?LinkId=112113
Microsoft Security Bulletin MS08-016
Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (949030)
»go.microsoft.com/fwlink/?LinkId=112112
Microsoft Security Bulletin MS08-017
Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution (933103)
»go.microsoft.com/fwlink/?LinkId=112114
Other Information
Microsoft Windows Malicious Software Removal Tool
»www.microsoft.com/security/malwa···ult.mspx
Updated March 11, 2008
Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
Microsoft will host a webcast to address customer questions on these bulletins on March 12, 2008, at 11:00 AM Pacific Time (US & Canada). Register now for the March Security Bulletin Webcast.
»msevents.microsoft.com/CUI/WebCa···yCode=US
After this date, this webcast is available on-demand. For more information, see Microsoft Security Bulletin Summaries and Webcasts.
»www.microsoft.com/technet/securi···ary.mspx
--
It takes a disaster to make a woman out of a female
Microsoft MVP/Windows Security 2003-2008
Proud Member of ASAP (Alliance of Security Analysis Professionals) |
|
dp
Premium,MVM
join:2000-12-08
Greensburg, PA | Thank you CJ  |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
| reply to CalamityJane
Many thanks Janie
TechNet Webcast: Information About Microsoft March Security Bulletins (Level 200)
Event ID: 1032357217
Language(s): English.
Product(s): Security.
Audience(s): IT Professionals.
Duration: 60 Minutes
Start Date: Wednesday, March 12, 2008 11:00 AM Pacific Time (US & Canada)
Event Overview
On March 11, 2008, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the March security bulletins. The intent of this webcast is to address your concerns. Therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from our security experts.
Presenters: Bill Sisk, Security Response Communications Manager, Microsoft Corporation, and Adrian Stone, Lead Security Program Manager, Microsoft Corporation
Register now for the March security bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security
|
|
AdamKertesz
join:2004-09-14
New York, NY
| reply to CalamityJane
Thanks, CJ.
Windows XP pro, SP2, Office 2003 and 2007 here. 9 updates,
all in order. |
|
Traxless
Premium
join:2005-02-16
USA
 ·Cbeyond
 ·AT&T Southwest
edit:
March 11th, @02:19PM
| reply to CalamityJane
I guess these updates will post tonight? They don't seem to be ready as we speak.
Edit - Oh I see! I don't have all those modern MS office programs. Mine are antique versions of Excel and Word. LOL.
--
Very funny, Scotty. Now beam down my clothes. |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
| reply to CalamityJane
Malicious Software Removal Tool
Published: January 11, 2005 | Updated: March 11, 2008
New Additions
We have added detection and cleaning capabilities for the following malicious software:
• Virtumonde
»www.microsoft.com/security/encyc···rtumonde
• Vundo
»www.microsoft.com/security/encyc···%2fVundo
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security
|
|
dadkins
I Don't Care
Premium,MVM
join:2003-09-26
Hercules, CA | reply to CalamityJane
Thank you CJ! |
|
jabarnut
Light Years Away
Premium,MVM
join:2005-01-22
Galaxy M31
|  reply to CalamityJane
Thanks, CJ! (And nice to see you).
Not much happening in March on this particular machine.
The Malicious Software Removal tool (one of my all time favorites)  ,and 4 updates for Office XP/2002.
All seems well.
Thanks again...and even though I downloaded and installed them before checking here, it's like seeing an old friend, knowing we can always count on this thread to be here every "patch Tuesday".
--
I had a life once.....now I have a Computer and a Modem. |
|
MarkAW
Call me lil bratt
Premium
join:2001-08-27
Trenton,Ont.
edit:
March 11th, @08:17PM
| said by jabarnut  :Thanks, CJ! All seems well. Thanks again...and even though I downloaded and installed them before checking here, it's like seeing an old friend, knowing we can always count on this thread to be here every "patch Tuesday". Yeah what jabarnut said.
--
Advertising is legalized lying. - H.G. Wells
Pleasure in the job puts perfection in the work. - Aristotle |
|
MagMan
Life is simpler when you tell the truth.
Premium
join:2003-10-01
Westlake, OH | reply to CalamityJane
Nothing special for me thanks.  |
|
Alwill
Still trying to figure how to configure
Premium
join:2002-09-25
Sydney, OZ | reply to CalamityJane
Much appreciated Janie |
|
CalamityJane
Premium,VIP,MVM
join:2002-08-27
Eustis, FL
| reply to jabarnut
said by jabarnut :it's like seeing an old friend, knowing we can always count on this thread to be here every "patch Tuesday". Hi jabarnut! (nice to see you in here too).
And yes, we've incorporated the posting of these MS updates each month with our Security Software Updates committee so you can rely on seeing it posted by one of us whenever MS security updates are posted (regularly scheduled on the 2nd Tuesday of each month).
The latest updates are always noted in the daily Security Software Updates sticky at the top of this forum if you ever need to check on any of your security updates and what is the latest
Anyway, it's good to see nobody having any problems with them yet (that is always good to see! )
--
It takes a disaster to make a woman out of a female
Microsoft MVP/Windows Security 2003-2008
Proud Member of ASAP (Alliance of Security Analysis Professionals) |
|
Bob Anderson
join:2001-05-05
Ottawa, ON
·Bell Sympatico
| I have two XP machines, no problem getting updates on one, but the other one gives me this message when I get to MS Update:
"Please change your Internet Explorer security settings
To save changes to your settings for this website, you need to enable userdata persistence for Internet Explorer. Complete the steps below, and then click Change settings to the left and try saving your changes again.
In Internet Explorer, on the Tools menu, click Internet Options.
Click the Security tab, click the Internet security zone icon, and then click Custom Level.
In the Settings dialog box, scroll to the Miscellaneous section.
Under Userdata persistence , select Enable.
Click OK and when the security warning dialog box appears, click Yes.
Read more about steps you can take to resolve this problem (error number 0x800A0046) yourself."
----------------------
I followed the steps above.
My settings are correct and identical to the machine that is not having a problem.
However, the only update for me was the MSRT for March, which I downloaded manually.
-Bob |
|
DrDemento
join:2005-07-25
Brick, NJ | reply to CalamityJane
I only got the malicious software removal tool on two separate XP computers. Very light month. Love it when it is simple. |
|
MarkAW
Call me lil bratt
Premium
join:2001-08-27
Trenton,Ont.
| reply to Bob Anderson
Security and Privacy | 
XP-Antispy |
said by Bob Anderson :I have two XP machines, no problem getting updates on one, but the other one gives me this message when I get to MS Update: "Please change your Internet Explorer security settings To save changes to your settings for this website, you need to enable userdata persistence for Internet Explorer. Complete the steps below, and then click Change settings to the left and try saving your changes again. In Internet Explorer, on the Tools menu, click Internet Options. Click the Security tab, click the Internet security zone icon, and then click Custom Level. In the Settings dialog box, scroll to the Miscellaneous section. Under Userdata persistence , select Enable. Click OK and when the security warning dialog box appears, click Yes. Read more about steps you can take to resolve this problem (error number 0x800A0046) yourself." ---------------------- I followed the steps above. My settings are correct and identical to the machine that is not having a problem. However, the only update for me was the MSRT for March, which I downloaded manually. -Bob Are you using anything like XP-Antispy or security and privacy to lock down Windows XP or internet Explorer.
If you are you will have to allow windows to update with XP-Antispy go to profiles and click windows update and the click apply settings and that will fix your problem, if you are using Security and Privacy click where it says Activate and run which will allow you to go to MS update and download what ever updates you need.
--
Advertising is legalized lying. - H.G. Wells
Pleasure in the job puts perfection in the work. - Aristotle |
|
onDvine
Don't Litter. Spay or neuter your pets.
Premium
join:2005-01-29
So. CA, USA
edit:
March 11th, @06:57PM
| reply to DrDemento
said by DrDemento :I only got the malicious software removal tool on two separate XP computers. ... I don't use their malicious software removal tool on my XP, so it was even simpler. Thanks for confirming nothing was missed here.
Edit: I did miss one (KB947866), but Belarc Advisor caught it. |
|
Pentangle
With our thoughts we make the world.
Premium
join:2006-06-01
Vancouver BC | reply to CalamityJane
Thanks, CJ. |
|
Bob Anderson
join:2001-05-05
Ottawa, ON | reply to MarkAW
I'm not using anything to lock down XP, just the XP firewall and Avast, behind a router. This is an identical setup to my second XP computer, which has no problems with MS Update.
I am stumped.
-Bob |
|
BigEd
Premium
join:2000-12-21
West Linn, OR | reply to CalamityJane
Five updates, no problem. And not a reboot in sight (although I did anyway out of habit). |
|
Dan Given
Premium
join:2001-03-16
Tustin, CA
clubs: | reply to CalamityJane
Monster thanks to CJ
I just wanted to shout out a big "THANK YOU" for all the great and incredible help you are to us all. Your time put in here is truly appreciated.
Dan
--
"What we do in life echoes in eternity." |
|
