Topic 'Re: Microsoft Security Bulletin(s) for October 9, 2012' in forum 'Security' - dslreports.com

Re: Microsoft Security Bulletin(s) for October 9, 2012

Wed, 10 Oct 2012 06:01:57 EDT

norwegian posted :
Ah...cool; then nothing to get me paranoid about with old updates turning up like last month. :)

I'm normal for a brief second.
--
The only thing necessary for the triumph of evil is for good men to do nothing - Edmund Burke

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 23:40:26 EDT

siljaline posted : Moi, aussi.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 23:02:55 EDT

StuartMW posted :

said by siljaline:

You can run MSRT via WU every patch Tuesday...

That's what I do.
--
Don't feed trolls--it only makes them grow!

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 23:01:40 EDT

La Luna posted : 17 patches here, including an MSE update, one for Word and one for Office. Windows 7 Home Premium 64 bit.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 22:55:48 EDT

Dustyn posted : I got 18 patches like you. :)
I found it odd that one of the patches had a size of 4.9 - 5.0MB.
Something I've never noticed before.
EDIT: Windows 7 Ultimate SP1 64-bit

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 22:51:21 EDT

rcdailey posted : I observed the exact same count on a digital x-ray system running XP Pro SP3. It probably got exactly the same patches.
--
It is easier for a camel to put on a bikini than an old man to thread a needle.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 21:37:38 EDT

siljaline posted : You can run MSRT via WU every patch Tuesday or download and run via the MS Download Center

I like to keep a copy on a flash drive.

Just some thoughts.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 18:55:19 EDT

NICK ADSL UK posted : Microsoft� Windows� Malicious Software Removal Tool (KB890830)

This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.

Quick details
Version: 4.13 Date published: 10/9/2012
Change language:
KB articles: KB890830
File name Size
Windows-KB890830-V4.13.exe 16.2 MB

New anti-malware additions

We have added detection and cleaning capabilities for the following malware:

Nitol
»www.microsoft.com/security/porta···%2fNitol

OneScan
»www.microsoft.com/security/porta···fOneScan
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 18:45:17 EDT

Jrb2 posted : Thanks Don, Nick and Silj!

I got 5 on my XP-home SP3.

2661254 - Update For Minimum Certificate Key Length
2756822 - time-zone
890830 - Malicious Software Removal Tool
2749655 - Compatibility Issues Affecting Signed Microsoft Binaries
2724197 - MS12-068

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 18:21:31 EDT

norwegian posted : Thank you.

18 for my Win 7 x64, Office 2007

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 17:23:50 EDT

NICK ADSL UK posted : just to recap in case anyone has missed out on these updates

Last 5 Published or Updated Security Advisories:

Microsoft Security Advisory (2749655)
Compatibility Issues Affecting Signed Microsoft Binaries
Published or Last Updated: Tuesday, October 09, 2012
»technet.microsoft.com/en-us/secu···/2749655

Microsoft Security Advisory (2737111)
Vulnerabilities in Microsoft Exchange and FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution
Published or Last Updated: Tuesday, October 09, 2012
»technet.microsoft.com/en-us/secu···/2737111

Microsoft Security Advisory (2661254)
Update For Minimum Certificate Key Length
Published or Last Updated: Tuesday, October 09, 2012
»technet.microsoft.com/en-us/secu···/2661254

Microsoft Security Advisory (2755801)
Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10
Published or Last Updated: Monday, October 08, 2012
»technet.microsoft.com/en-us/secu···/2755801

Microsoft Security Advisory (2757760)
Vulnerability in Internet Explorer Could Allow Remote Code Execution
Published or Last Updated: Friday, September 21, 2012
»technet.microsoft.com/en-us/secu···/2757760
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 15:36:21 EDT

brianiscool posted : I will download these updates when I get home.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 14:58:23 EDT

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 14:57:43 EDT

ltsnow posted : Only got 4 for XP Pro SP3 not counting MSRT, which I don't use.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 14:34:59 EDT

Linklist posted :

said by Kostadin :

Hello. What is KB2749655 meant for - It kind of feels awful, when I am not able to see any description?!

Has to do with MS signed security certificates.
»technet.microsoft.com/en-us/secu···/2749655
--
»www.gop.com/2012-republican-platform_home/
»www.gop.com/2012-republican-plat···onalism/

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 14:31:42 EDT

anon posted : Hello. What is KB2749655 meant for - It kind of feels awful, when I am not able to see any description?!

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 14:15:53 EDT

Linklist posted : 15 patches applied to 2 Win 7 Home Premium 32 bit systems. A reboot was needed. All systems working OK so far. Also updated to new release of Adobe Flash and and a new release of Firefox(16.0). Busy day!!
[att=1]
--
»www.gop.com/2012-republican-platform_home/
»www.gop.com/2012-republican-plat···onalism/

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:59:55 EDT

rcdailey posted : Thanks. Got a total of 7 in Win XP SP3, one of which was the MSRT. No SQL update because no SQL server. No Kerberos, either.
--
It is easier for a camel to put on a bikini than an old man to thread a needle.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:46:40 EDT

jaykaykay posted : Got 6 of 'em for my system. Thank you, guys.

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:42:06 EDT

MarkAW posted : Thanks dp and Nick 14 for my Win7 pro, Win7 Home Prem and my win7 Ultimate. :)

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:28:20 EDT

Cartel posted : I don't see kb2749655 on your list.

and support link dead
»support.microsoft.com/kb/2749655

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:22:07 EDT

art22gg posted : Thanks dp...

Re: Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:13:52 EDT

NICK ADSL UK posted : Thanks don :)

TechNet Webcast: Information About the October 2012 Security Bulletin Release

Event ID: 1032522558

Starts: Wednesday, October 10, 2012 11:00 AM
Time zone: (GMT-08:00) Pacific Time (US & Canada)
Duration: 1 hour(s)

Language(s): English.

Product(s): computer security and information security.

Audience(s): IT Decision Maker, IT Implem_IT Generalist and IT Manager.

Join us for a brief overview of the technical details of this month's Microsoft security bulletins. We intend to address your concerns in this webcast. Therefore, Microsoft security experts devote most of this webcast to answering the questions that you ask.

Presented by:

Dustin Childs, Senior Security Program Manager, Microsoft Security Response Center, Microsoft Corporation

and

Jonathan Ness, Principal Security Development Lead, Microsoft Corporation

Register now for the October security bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP - Consumer Security

Microsoft Security Bulletin(s) for October 9, 2012

Tue, 09 Oct 2012 13:07:11 EDT

dp posted : Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:

»technet.microsoft.com/en-us/secu···ms12-oct

Critical (1)

Microsoft Security Bulletin MS12-064
Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319)
»technet.microsoft.com/en-us/secu···ms12-064

Important (6)

Microsoft Security Bulletin MS12-065
Vulnerability in Microsoft Works Could Allow Remote Code Execution (2754670)
»technet.microsoft.com/en-us/secu···ms12-065

Microsoft Security Bulletin MS12-066
Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517)
»technet.microsoft.com/en-us/secu···ms12-066

Microsoft Security Bulletin MS12-067
Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2742321)
»technet.microsoft.com/en-us/secu···ms12-067

Microsoft Security Bulletin MS12-068
Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2724197)
»technet.microsoft.com/en-us/secu···ms12-068

Microsoft Security Bulletin MS12-069
Vulnerability in Kerberos Could Allow Denial of Service (2743555)
»technet.microsoft.com/en-us/secu···ms12-069

Microsoft Security Bulletin MS12-070
Vulnerability in SQL Server Could Allow Elevation of Privilege (2754849)
»technet.microsoft.com/en-us/secu···ms12-070

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
--
Microsoft� Security MVP, 2004 - 2012
DP's Security Bits