Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.



Windows 7: October 2009 Security Bulletin Release

13 Oct 2009   #1

 
October 2009 Security Bulletin Release

Quote:
Summary of Microsoft’s Security Bulletin Release for October 2009

This month, we released 13 new bulletins which address 34 vulnerabilities in Windows, Internet Explorer and Microsoft Office. Since we published this information in our advance notification (ANS) last Thursday, we have been asked “is this the most bulletins Microsoft has ever released”? The short answer to that question is yes. However, we have, on several occasions, released between 10 and 12 bulletins so this is business as usual. All of our updates go through extensive quality testing and when they reach the bar for broad distribution, we schedule them for release.

As we noted in the ANS last week, two of the updates address open Security Advisories. MS09-050 addresses the SMBv2 issue in Security Advisory 975497 and MS09-053 addresses the IIS issue discussed in Security Advisory 975191.

Another issue being addressed this month that has received some public attention has to do with security certificates used for authentication. The vulnerabilities being addressed by Security Bulletin MS09-056 could allow spoofing if an attacker gains access to the certificate used by the end user for authentication. We are aware that a rogue certificate was distributed in a public forum but we are not aware of any attempts to use this to attack users.

Below is the severity summary and exploitability index for the 13 new bulletins. We also refer to this as the overall risk and impact summary. As you can see, eight of the bulletins have a rating of Critical. Of those eight, seven have an exploitability index rating of 1, which means we believe it is highly likely that we will see exploit code in the wild within the first 30 days from the date of release.



To help with deployment planning, we started publishing our guidance (beginning last month) on which bulletins should be considered first for deployment. Obviously one size does not fit all and each customer will need to consider their own unique situations in addition to this guidance. Our approach is to take a combination of the severity, the exploitability index rating, the range of products affected, and potential mitigations to group these in to a priority 1, 2 or 3. Our Security Research & Defense team, who represent some of the best security researchers in the world, play a key role in this every month as well.



Most of this month’s updates require a restart, so please refer to the bulletins when you’re planning your deployment to ensure you’re fully protected. We want to specifically note that MS09-050 requires a restart but will not prompt you to do so if you install the update manually.

As we do every month, Adrian Stone and I provide a high-level overview of this month’s bulletin release in the following video:

Other listening and viewing options:
This month we are also re-releasing MS08-069, vulnerability in Microsoft XML Core Services could allow remote code execution (955218) to add detection for Windows 7 and Windows Server 2008 R2. This component does not ship with these platforms but many applications install it in order to use its functionality.

Finally, you may also notice a change in the severity rating since the advance notification for several versions of Windows in the .NET bulletin (MS09-061). We have elevated the severity of these products from Important to Critical. We do not typically make changes after the advance notification goes out but during our ongoing investigation to protect customers, we determined that this was the appropriate rating for these products when certain versions of the .NET Framework are installed on them.

We encourage all customers to join us tomorrow when Adrian and I will go in to detail on each bulletin and, along with a room full of subject matter experts, answer all of your questions live. So if you can, please join us at 11:00 a.m. PDT (UTC -7). You can register for the webcast at this link.

Thanks!

Jerry Bryant

*This posting is provided "AS IS" with no warranties, and confers no rights*

More...

My System SpecsSystem Spec
13 Oct 2009   #2
Microsoft MVP

 
 

Microsoft Security Bulletin Summary for October 13, 2009
Microsoft Security Bulletin Summary for October 13, 2009
Published: september 8 2009
Note: There may be latency issues due to replication, if the page does not display keep refreshing

Note: TechNet Security Center Bulletins Advisories Tools Guidance and Resources and Microsoft Security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:
Microsoft Security Bulletin Summary for October 2009

Critical (8)

Microsoft Security Bulletin MS09-050 - Critical
Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)
Published: October 13, 2009
Microsoft Security Bulletin MS09-050 - Critical: Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)

Microsoft Security Bulletin MS09-051 - Critical
Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)
Published: October 13, 2009
Microsoft Security Bulletin MS09-051 - Critical: Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)

Microsoft Security Bulletin MS09-052 - Critical
Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)
Published: October 13, 2009
Microsoft Security Bulletin MS09-052 - Critical: Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)

Microsoft Security Bulletin MS09-054 - Critical
Cumulative Security Update for Internet Explorer (974455)
Published: October 13, 2009
Microsoft Security Bulletin MS09-054 - Critical: Cumulative Security Update for Internet Explorer (974455)

Microsoft Security Bulletin MS09-055 - Critical
Cumulative Security Update of ActiveX Kill Bits (973525)
Published: October 13, 2009
Microsoft Security Bulletin MS09-055 - Critical: Cumulative Security Update of ActiveX Kill Bits (973525)

Microsoft Security Bulletin MS09-060 - Critical
Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)
Published: October 13, 2009
Microsoft Security Bulletin MS09-060 - Critical: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)

Microsoft Security Bulletin MS09-061 - Critical
Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)
Published: October 13, 2009
Microsoft Security Bulletin MS09-061 - Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)

Microsoft Security Bulletin MS09-062 - Critical
Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)
Published: October 13, 2009
Microsoft Security Bulletin MS09-062 - Critical: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)


Important (5)

Microsoft Security Bulletin MS09-053 - Important
Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution (975254)
Published: October 13, 2009
Microsoft Security Bulletin MS09-053 - Important: Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution (975254)

Microsoft Security Bulletin MS09-056 - Important
Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571)
Published: October 13, 2009
Microsoft Security Bulletin MS09-056 - Important: Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571)

Microsoft Security Bulletin MS09-057 - Important
Vulnerability in Indexing Service Could Allow Remote Code Execution (969059)
Published: October 13, 2009
Microsoft Security Bulletin MS09-057 - Important: Vulnerability in Indexing Service Could Allow Remote Code Execution (969059)

Microsoft Security Bulletin MS09-058 - Important
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)
Published: October 13, 2009
Microsoft Security Bulletin MS09-058 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)

Microsoft Security Bulletin MS09-059 - Important
Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (975467)
Published: October 13, 2009
Microsoft Security Bulletin MS09-059 - Important: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (975467)

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.
As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.
Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.
My System SpecsSystem Spec
13 Oct 2009   #3

 

Thanks guys
My System SpecsSystem Spec
.


Reply

 October 2009 Security Bulletin Release





Thread Tools




Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 06:13 PM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33