NICK ADSL UK
Premium,MVM
join:2004-02-22
| Microsoft Security Bulletin(s) for April 8 2008
Microsoft Security Bulletin(s) for April 8 2008
Note: There may be latency issues due to replication, if the page does not display keep refreshing
Today Microsoft released the following Security Bulletin(s).
Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.
Bulletin Summary:
»www.microsoft.com/technet/securi···apr.mspx
Critical (5)
Microsoft Security Bulletin MS08-018
Vulnerability in Microsoft Project Could Allow Remote Code Execution (950183)
»www.microsoft.com/technet/securi···018.mspx
Microsoft Security Bulletin MS08-021
Vulnerabilities in GDI Could Allow Remote Code Execution (948590)
»www.microsoft.com/technet/securi···021.mspx
Microsoft Security Bulletin MS08-022
Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
»www.microsoft.com/technet/securi···022.mspx
Microsoft Security Bulletin MS08-023
Security Update of ActiveX Kill Bits (948881)
»www.microsoft.com/technet/securi···023.mspx
Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)
»www.microsoft.com/technet/securi···024.mspx
Important (3)
Microsoft Security Bulletin MS08-020
Vulnerability in DNS Client Could Allow Spoofing (945553)
»www.microsoft.com/technet/securi···020.mspx
Microsoft Security Bulletin MS08-025
Vulnerability in Windows Kernel Could Allow Elevation of Privilege (941693)
»www.microsoft.com/technet/securi···025.mspx
Microsoft Security Bulletin MS08-019
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (949032)
»www.microsoft.com/technet/securi···019.mspx
Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security
|
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
| TechNet Webcast: Information About Microsoft April Security Bulletins (Level 200)
Event ID: 1032357219
Language(s): English.
Product(s): Security.
Audience(s): IT Professionals.
Duration: 60 Minutes
Start Date: Wednesday, April 09, 2008 11:00 AM Pacific Time (US & Canada)
Event Overview
On April 8, 2008, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the April security bulletins. The intent of this webcast is to address your concerns. Therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from our security experts.
Presenters: Tim Rains, Security Response Communications Lead, Microsoft Corporation, and Adrian Stone, Lead Security Program Manager, Microsoft Corporation
Register now for the April security bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security
|
|
xstation20
join:2005-05-03
San Jose, CA | reply to NICK ADSL UK
Thanks!! |
|
MarkAW
Call me lil bratt
Premium
join:2001-08-27
Trenton,Ont.
edit:
April 8th, @01:51PM
| reply to NICK ADSL UK
Thanks Nick.  |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
edit:
April 8th, @02:43PM
| reply to NICK ADSL UK
Malicious Software Removal Tool
Published: January 11, 2005 | Updated: April 8, 2008
Brief Description
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
New Additions
We have added detection and cleaning capabilities for the following malicious software:
• Virtumonde
»go.microsoft.com/fwlink/?linkid=···rtumonde
• Vundo
»go.microsoft.com/fwlink/?linkid=···32/Vundo
• Newacc
»go.microsoft.com/fwlink/?linkid=···2/Newacc
»www.microsoft.com/security/malwa···ult.mspx
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security
|
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25 |  reply to NICK ADSL UK
So far so good with my XP Pro. SP2 and XP Home SP2 machines. 64-bit Vista's updates are SO slow to download!  |
|
MagMan
Life is simpler when you tell the truth.
Premium
join:2003-10-01
Westlake, OH | reply to NICK ADSL UK
Thanks for the update.
6 XP Home updates for me no problems. |
|
DrDemento
join:2005-07-25
Brick, NJ | reply to NICK ADSL UK
Thanks for the heads up. Got 6 updates for windows xp including the software removal tool. All installed seemlessly. |
|
jaykaykay
4 Ever Young
Premium,MVM
join:2000-04-13
Scottsdale, AZ | reply to NICK ADSL UK
Thanks, Nick. Guess I got here a wee bit too late. I was going to post the same thing, but no matter who does, it's done. |
|
jabarnut
Light Years Away
Premium,MVM
join:2005-01-22
Galaxy M31
| reply to NICK ADSL UK
Thanks Nick!
If there is one thing I can always count on, it's the "patch Tuesday" thread in the security Forum.
Six "Critical" Updates here (XP Pro, SP2), and all seems well.
--
I had a life once.....now I have a Computer and a Modem. |
|
Alwill
Still trying to figure how to configure
Premium
join:2002-09-25
Sydney, OZ | reply to NICK ADSL UK
As always, thank you Nick |
|
norwegian
Premium
join:2005-02-15
Outback | reply to NICK ADSL UK
Thanks Nick
Seems SP3 do not get anything?
Is there a scedule for this, or anyone know of a link please.
--
The only thing necessary for the triumph of evil is for good men to do nothing - Edmund Burke |
|
mouse
Premium
join:2007-03-29
australia
 ·OptusNet
| reply to NICK ADSL UK
updated on two pc so far - one was manual and everything went normal - the second pc is on auto-update and while everything appears to be fine, the installation seemed different from before.
Does anyone use autoupdate and could confirm that the process is changed?
I noticed the update icon in the tray but decided to ignore it for now.
Then suddenly some popup told me an update had been installed and did I want to restart or not with a countdown of 4(?) minutes starting (I do hope that this was from the windows update ). Then after reboot, the installation went through and another "normal" reboot. Subsequent to this a little "shield" appeared in the tray telling me an important windows update had been done. Eventually this message and the shield vanished. I have never seen that shield before. |
|
Jrb2
Premium
join:2001-08-31 | reply to NICK ADSL UK
Thanks Nick !
Got MS08-020 -> 025 and the malicious software removal tool.
(had to do other things; and tried to see in the meanwhile Liverpool - Arsenal on TV...  ) |
|
danny9
Go Ahead, Make My Day
Premium
join:2002-07-14
Clinton Township, MI
clubs:   | reply to NICK ADSL UK
Thanks again Nick!
--
VoicePulse 07/29/04 |
|
dadkins
Living on a Blu Planet
Premium,MVM
join:2003-09-26
Hercules, CA | reply to NICK ADSL UK
Thanks Nick! |
|
Babar
Premium
join:2001-05-09
Washington | reply to NICK ADSL UK
Thanks, Nick! |
|
Mele20
Premium
join:2001-06-05
Hilo, HI
| reply to NICK ADSL UK
You left out the best place to download the patches:
»www.microsoft.com/downloads
I wish Microsoft would stop turning pages black and sticking a poorly designed, only partially visible, popup on many of their pages now. Drives me nuts. Firefox 1.5 and 2 are NOT able to do Silverlight. But Microsoft constantly tries to get me to do the beta. "No thanks" appears to mean "ask me repeatedly and maybe I will give in out of frustration" to Microsoft. I think they are deliberately harassing Fx users. Fx will be compatible with the release of version 3 but I don't want Silverlight even then.
I'm not installing the IE cumulative update. I can't read KB MS08-024 as it has a gigantic horizontal scrollbar even in Safari and Opera. I wish Microsoft would stop messing with their important pages. I don't care what they do with the rest of their site, but they should leave Technet and support.Microsoft.com alone. They should not be tripping around with Silverlight betas on those two of their sites. 
--
"The same ferocity that our founders devoted to protect the freedom and independence of the press is now appropriate for our defense of the freedom of the internet. The stakes are the same: the survival of our Republic". Al Gore, The Assault on Reason |
|
La Luna
Surviving Ashraful
Premium
join:2001-07-12
Hewitt, NJ
clubs:
 ·Optimum Online
 ·Vonage
| said by Mele20  :....I'm not installing the IE cumulative update. I can't read KB MS08-024 as it has a gigantic horizontal scrollbar even in Safari and Opera. I wish Microsoft would stop messing with their important pages. I don't care what they do with the rest of their site, but they should leave Technet and support.Microsoft.com alone. They should not be tripping around with Silverlight betas on those two of their sites. What "gigantic horizontal scrollbar" on KB MS08-024? Fx 2.0.0.13:
MS site/Technet works fine, I see no "partially visible, popup" on any of their pages, nor any "black" pages.
May we suggest yet again: it's *your* settings causing these things?
--
10,874 DEADLY TERROR ATTACKS SINCE 9/11~~TEAM DISCOVERY
Can't feel you anymore, don't need you anymore, don't believe you anymore, I don't need you anymore
|
|
La Luna
Surviving Ashraful
Premium
join:2001-07-12
Hewitt, NJ
clubs: | reply to NICK ADSL UK
Thanks Nick! |
|
