Microsoft Security Bulletin Summary For June 2009
For more information about how to deploy this security update using Windows Server Update Services, visit Windows Server Update Services. The page you are trying to reach does not exist, or has been moved. The Microsoft Update Catalog provides a searchable catalog of content made available through Windows Update and Microsoft Update, including security updates, drivers and service packs. Yes No Additional feedback? 1500 characters remaining Submit Skip this Thank you! weblink
Displays all new, revised, and rereleased updates for Microsoft products other than Microsoft Windows. Bulletin Information Executive Summaries The following table summarizes the security bulletins for this month in order of severity. Disclaimer The information provided in the Microsoft Knowledge Base is provided "as is" without warranty of any kind. This update applies, with the same severity rating, to supported editions of Windows Server 2008 or Windows Server 2008 R2 as indicated, whether or not installed using the Server Core installation
Microsoft Office SharePoint Server 2007 Standard does not include Excel Services. There is no charge for support that is associated with security updates. Bulletin Summary: Microsoft Security Bulletin Summary for June 2009 Critical (6) Microsoft Security Bulletin MS09-018 Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055) Microsoft Security Bulletin MS09-018 - Critical: Bulletin Information Executive Summaries The following table summarizes the security bulletins for this month in order of severity.
Revisions V1.0 (November 10, 2009): Bulletin Summary published. Critical Remote Code ExecutionRequires restartMicrosoft Windows MS09-066 Vulnerability in Active Directory Could Allow Denial of Service (973309) This security update resolves a privately reported vulnerability in Active Directory directory service, Active Your username or email address: Do you already have an account? You should review each of the assessments below, in accordance with your specific configuration, in order to prioritize your deployment.
and Canada can receive technical support from Security Support or 1-866-PCSAFETY. Non-Security, High-Priority Updates on MU, WU, and WSUS For information about non-security releases on Windows Update and Microsoft Update, please see: Microsoft Knowledge Base Article 894199: Description of Software Update Services This documentation is archived and is not being maintained. https://technet.microsoft.com/en-us/library/security/ms09-apr.aspx This can trigger incompatibilities and increase the time it takes to deploy security updates.
MS09-056 Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571) CVE-2009-2510 3 - Functioning exploit code unlikelyThis is a spoofing vulnerability. We appreciate your feedback. Eiram of Secunia for reporting an issue described in MS09-062 Support The affected software listed have been tested to determine which versions are affected. Yes No Additional feedback? 1500 characters remaining Submit Skip this Thank you!
No, create an account now. http://www.cgisecurity.com/2009/06/microsoft-security-bulletin-summary-for-june-2009.html Microsoft Office Suites and Software Microsoft Office Suites, Systems, and Components Bulletin Identifier MS09-027 MS09-021 MS09-024 Aggregate Severity Rating Critical Critical Critical Microsoft Office 2000 Service Pack 3 Microsoft Office Word The vulnerabilities addressed by this update do not affect supported editions of Windows Server 2008 or Windows Server 2008 R2 as indicated, when installed using the Server Core installation option. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user.
Note that the Server Core installation option does not apply to certain editions of Windows Server 2008 and Windows Server 2008 R2; see Compare Server Core Installation Options. have a peek at these guys You should review each software program or component listed to see whether any security updates pertain to your installation. Microsoft Developer Tools and Software Microsoft Silverlight Bulletin Identifier MS09-061 MS09-062 Aggregate Severity Rating Critical None Microsoft Silverlight Microsoft Silverlight 2  when installed on Mac(KB970363)(Critical)Not applicable Microsoft Silverlight Microsoft Silverlight If a software program or component is listed, then the available software update is hyperlinked and the severity rating of the software update is also listed.
Please see the section, Other Information. MS09-010 Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477) CVE-2009-0087 2 - Inconsistent exploit code likelyThis is a complex vulnerability due to multiple code paths. Note SMS uses the Microsoft Baseline Security Analyzer to provide broad support for security bulletin update detection and deployment. check over here Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Works converters are available for Microsoft Office Word 2003 as a download from Microsoft Works 6–9 File Converter. The content you requested has been removed. For more information about available support options, see Microsoft Help and Support.
For more information about the Microsoft Update Catalog, see the Microsoft Update Catalog FAQ. The vulnerability could allow spoofing if an attacker gains access to the certificate used by the end user for authentication. MS09-054 Cumulative Security Update for Internet Explorer (974455) CVE-2009-2531 2 - Inconsistent exploit code likely MS09-055 Cumulative Security Update of ActiveX Kill Bits (973525) CVE-2009-2493 None(This vulnerability has already been given http://www.microsoft.com/technet/security/advisory/971888.mspx NICK ADSL UK, Jun 9, 2009 #4 NICK ADSL UK Administrator Joined: May 13, 2003 Posts: 9,235 Location: UK Microsoft Security Advisory Notifications - June 9, 2009 Issued: June
The vulnerabilities could allow remote code execution if a user opened a specially crafted media file or received specially crafted streaming content from a Web site or any application that delivers Critical Remote Code ExecutionRequires restartMicrosoft Windows MS09-065 Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (969947) This security update resolves several privately reported vulnerabilities in the Windows kernel. Important Elevation of PrivilegeRequires restartMicrosoft Windows MS09-020 Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege (970483) This security update resolves one publicly disclosed vulnerability and one privately reported this content Microsoft Security Bulletin Summary for November 2009 Published: November 10, 2009 | Updated: November 25, 2009 Version: 1.1 This bulletin summary lists security bulletins released for November 2009.
NICK ADSL UK, Jun 9, 2009 #1 NICK ADSL UK Administrator Joined: May 13, 2003 Posts: 9,235 Location: UK Malicious Software Removal Tool Published: January 11, 2005 | Updated: June 9, This documentation is archived and is not being maintained. Displays all new, revised, and rereleased updates for Microsoft products other than Microsoft Windows. Please see the section, Other Information.
For more information about the bulletin advance notification service, see Microsoft Security Bulletin Advance Notification. For more information about how administrators can use SMS 2003 to deploy security updates, see SMS 2003 Security Patch Management. How do I use these tables? Note for MS09-009 *For Microsoft Office Excel 2007 Service Pack 1, customers also need to install the security update for Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File
How do I use this table? MS09-021 Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462) CVE-2009-0560 3 - Functioning exploit code unlikely(None) MS09-021 Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462) For more information about MBSA, visit Microsoft Baseline Security Analyzer. Security Tool Find out if you are missing important Microsoft product updates by using MBSA.
Review the whole column for each bulletin identifier that is listed to verify the updates that you have to install, based on the programs or components that you have installed on MS09-051 Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682) CVE-2009-0555 1 - Consistent exploit code likely(None) MS09-051 Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682) Microsoft Customer Support Microsoft Community Forums United States (English) Sign in Security TechCenter Home Security Updates Tools Learn Library Support We’re sorry. You should review each software program or component listed to see whether any security updates pertain to your installation.
MS09-013 Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803) CVE-2009-0086 1 - Consistent exploit code likelyThis is an easily controllable memory vulnerability with multiple attack vectors and opportunities Microsoft Customer Support Microsoft Community Forums United States (English) Sign in Security TechCenter Home Security Updates Tools Learn Library Support We’re sorry. and Canada can receive technical support from Security Support or 1-866-PCSAFETY. International customers can receive support from their local Microsoft subsidiaries.