NICK ADSL UK
Premium,MVM
join:2004-02-22
| Microsoft Security Bulletin Summary for June 2007
Hi everyone! 
Owing to Melissa Travers (Microsoft MVP Lead Security) being unavailable again this month she has kindly asked me to post the Microsoft June security bulletin in which is as follows
Microsoft Security Bulletin(s) for 6/12/2007
»www.microsoft.com/technet/securi···jun.mspx
June 12 2007
Today Microsoft released the following Security Bulletin(s).
Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.
Bulletin Summary:
Vulnerability in Win 32 API Could Allow Remote Code Execution (935839): MS07-035
»www.microsoft.com/technet/securi···035.mspx
Cumulative Security Update for Outlook Express and Windows Mail (929123): MS07-034
»www.microsoft.com/technet/securi···034.mspx
Cumulative Security Update for Internet Explorer (933566): MS07-033
»www.microsoft.com/technet/securi···033.mspx
Vulnerability in Windows Vista Could Allow Information Disclosure (931213): MS07-032
Affected Software: Windows Vista, Windows Vista x64
»www.microsoft.com/technet/securi···032.mspx
Vulnerability in the Windows Schannel Security Package Could Allow Remote Code Execution (935840): MS07-031
»www.microsoft.com/technet/securi···031.mspx
Vulnerabilities in Microsoft Visio Could Allow Remote Code Execution (927051): MS07-030
Affected Software: Visio 2002, Visio 2003
»www.microsoft.com/technet/securi···030.mspx
Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
--
Wilders Security Forum Admin
Microsoft MVP-Windows Security
|
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
| TechNet Webcast: Information About Microsoft May Security Bulletins (Level 200)
Language(s): English.
Product(s): Security.
Audience(s): IT Professional.
Duration: 60 Minutes
Start Date: Wednesday, june 13, 2007 11:00 AM Pacific Time (US & Canada)
Event Overview
On Tuesday June 12, 2007, Microsoft releases its monthly security bulletins. Join us for a brief overview of the technical details of the May security bulletins. The intent of this webcast is to address your concerns. Therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from our security experts.
Presenters: Christopher Budd, CCE, CISA, CISM, CISSP, ISSMP Security Program Manager, Microsoft Corporation and Mike Reavey, Lead Security Program Manager, Microsoft Corporation
Register now for the June security bulletin webcast.
--
Wilders Security Forum Admin
Microsoft MVP-Windows Security
|
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
edit:
June 12th, @01:40PM
| reply to NICK ADSL UK
Malicious Software Removal Tool
Published: January 11, 2005 | Updated: June 12, 2007
Allaple
Win32/Allaple is a multi-threaded, polymorphic network worm capable of spreading to other computers connected to a local area network (LAN) and performing denial-of-service (DoS) attacks against targeted remote Web sites.
»go.microsoft.com/fwlink/?linkid=···/Allaple
--
Wilders Security Forum Admin
Microsoft MVP-Windows Security
|
|
jabarnut
Light Years Away
Premium,MVM
join:2005-01-22
Galaxy M31
edit:
June 12th, @03:44PM
| reply to NICK ADSL UK
As always, thanks for the great info, Nick!
Just ran Microsoft Update manually on my XP Pro Machine(s).
Downloaded and installed 5 updates without issue (So far).
2 for XP, 1 for IE7, and 1 for OE.
And of course, one of my all time favorites, the Windows Malicious Software Removal Tool! 
Oh my, what was I thinking?
The fist thing I downloaded and installed, before anything else, was a new version of the Windows Genuine Advantage Validation Tool!
While I LOVE the Malicious Software Removal Tool, nothing comes close to the excitement of being a part of the Genuine Advantage Team!
(Restart was required here).
Thanks again, Nick!
--
I had a life once.....now I have a Computer and a Modem. |
|
caffeinator
Coming soon to a cup near you..
Premium
join:2005-01-16
Spokane, WA
 ·WebBand
| reply to NICK ADSL UK
Cool beans, except I'm having difficulty getting to the MS07-033 page to D/L it.
Keeps timing out on me. 
Other ones were not any problem.
Must just be busy I guess, will try later.
(No, I don't use any of the update services..no IE here. But, since I still have windows explorer..which can "browse" just as well as IE, I'll need that update I think.)
Thx,
-CaFF
--
"Only two things are infinite, the universe and human stupidity, and I'm not sure about the former." - A. Einstein |
|
Hutch
My Throne is the Dunny
Premium
join:2000-10-14
Out House | reply to NICK ADSL UK
Thanks Nick.  |
|
Jrb2
Premium
join:2001-08-31 |  reply to NICK ADSL UK
Thanks Nick ! |
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
|  reply to jabarnut
said by jabarnut  :As always, thanks for the great info, Nick! Just ran Microsoft Update manually on my XP Pro Machine(s). Downloaded and installed 5 updates without issue (So far). 2 for XP, 1 for IE7, and 1 for OE. And of course, one of my all time favorites, the Windows Malicious Software Removal Tool! Oh my, what was I thinking? The fist thing I downloaded and installed, before anything else, was a new version of the Windows Genuine Advantage Validation Tool! While I LOVE the Malicious Software Removal Tool, nothing comes close to the excitement of being a part of the Genuine Advantage Team! (Restart was required here). Thanks again, Nick! Wow, I didn't even notice that too: Windows Genuine Advantage Validation Tool (KB892130)
Gah, MS is really pushing this WGA!
--
Ant @ The Ant Farm: »antfarm.ma.cx ... Please do not IM/e-mail me for technical support. Use the forum (I check often)! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer. |
|
caffeinator
Coming soon to a cup near you..
Premium
join:2005-01-16
Spokane, WA
·WebBand
| said by antdude :Wow, I didn't even notice that too: Windows Genuine Advantage Validation Tool (KB892130) Gah, MS is really pushing this WGA! Precisely why I only get the email bulletins and only download the files directly.
--
"Only two things are infinite, the universe and human stupidity, and I'm not sure about the former." - A. Einstein |
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
| In »support.microsoft.com/kb/935840 ... »www.microsoft.com/technet/securi···0xx.mspx seems to be missing for "IT professionals" link. Does anyone have the downloadable link for this EXE file? |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22 | Hi antdude
I will make some inquires for you
regards |
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
| said by NICK ADSL UK :Hi antdude I will make some inquires for you Thanks. |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22 | Your welcome |
|
La Luna
Surviving Ashraful
Premium
join:2001-07-12
Warwick, NY
clubs: | reply to NICK ADSL UK
Thanks Nick!! |
|
dadkins
Land of Confusion
Premium,MVM
join:2003-09-26
Hercules, CA | reply to NICK ADSL UK
Thanks Nick! |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
| reply to antdude
Hi antdude
Would this be what your looking for ?
»www.microsoft.com/downloads/deta···ylang=en |
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
edit:
June 12th, @06:20PM
| Thank you! MS still hasn't fixed its broken link. |
|
grumpi
join:2001-03-28
*****
| reply to antdude
Try this antdude:
»www.microsoft.com/technet/securi···031.mspx |
|
antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
| Thanks!
--
Ant @ The Ant Farm: »antfarm.ma.cx ... Please do not IM/e-mail me for technical support. Use the forum (I check often)! Disclaimer: The views expressed in this posting are mine, and do not necessarily reflect the views of my employer. |
|
NICK ADSL UK
Premium,MVM
join:2004-02-22
edit:
June 12th, @07:02PM
| reply to NICK ADSL UK
Additionally Microsoft is re-releasing two bulletins:
MS07-012 Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667) (Updated to v2.0 to reflect applicability to Windows Server 2003 Service Pack 2, and explicitly noting that Platform SDK is not affected)
»www.microsoft.com/technet/securi···012.mspx
MS07-018 Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939) Updated to fix an issue whereby custom CMS2002 install paths could be reset in the registry to the default paths, as noted in KB article 924429 "known issues" section)
»www.microsoft.com/technet/securi···018.mspx
--
Wilders Security Forum Admin
Microsoft MVP-Windows Security
|
|
