NICK ADSL UK Posted February 26, 2007 Report Share Posted February 26, 2007 Microsoft Security Bulletin Summary for February, 2007Published: February 12, 2007Version: 1.0http://www.microsoft.com/technet/security/...n/ms07-feb.mspxCritical (6)Bulletin Identifier Microsoft Security Bulletin MS07-008 Bulletin Title Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843) Executive Summary This update resolves a vulnerability in HTML Help that could allow remote code execution http://go.microsoft.com/fwlink/?LinkId=81191Bulletin Identifier Microsoft Security Bulletin MS07-009 Bulletin Title Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution(927779)Executive Summary This update resolves a vulnerability in Microsoft Data Access Components that could allow remote code execution. http://go.microsoft.com/fwlink/?LinkId=80877Bulletin Identifier Microsoft Security Bulletin MS07-010 Bulletin Title Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135) Executive Summary This update resolves a vulnerability in the Microsoft Malware Protection Engine that could allow remote code executionhttp://go.microsoft.com/fwlink/?LinkId=82708Bulletin Identifier Microsoft Security Bulletin MS07-014 Bulletin Title Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (929434) Executive Summary This update resolves vulnerabilities in Microsoft Word that could allow remote code execution. http://go.microsoft.com/fwlink/?LinkId=82736Bulletin Identifier Microsoft Security Bulletin MS07-015 Bulletin Title Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554) Executive Summary This update resolves vulnerabilities in Microsoft Office that could allow remote code execution. http://go.microsoft.com/fwlink/?LinkId=82738Bulletin Identifier Microsoft Security Bulletin MS07-016 Bulletin Title Cumulative Security Update for Internet Explorer (928090) Executive Summary This update resolves vulnerabilities in Internet Explorer that could allow remote code execution http://go.microsoft.com/fwlink/?LinkId=79655Important (6)Bulletin Identifier Microsoft Security Bulletin MS07-005 Bulletin Title Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723) Executive Summary This update resolves a vulnerability in Step-by-Step Interactive Training that could allow remote code execution. User interaction is required to exploit this vulnerability. http://go.microsoft.com/fwlink/?LinkId=73911Bulletin Identifier Microsoft Security Bulletin MS07-006 Bulletin Title Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255) Executive SummaryThis update resolves a vulnerability in Windows Shell that could allow elevation of privilege http://go.microsoft.com/fwlink/?LinkId=81736Bulletin Identifier Microsoft Security Bulletin MS07-007 Bulletin Title Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802) Executive Summary This update resolves a vulnerability in the Windows Image Acquisition Service that could allow elevation of privilege. http://go.microsoft.com/fwlink/?LinkId=77834Bulletin Identifier Microsoft Security Bulletin MS07-011 Bulletin Title Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436) Executive Summary This update resolves a vulnerability in Microsoft OLE Dialog that could allow remote code execution. User interaction is required to exploit this vulnerability http://go.microsoft.com/fwlink/?LinkId=78518Bulletin Identifier Microsoft Security Bulletin MS07-012 Bulletin Title Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667)Executive Summary This update resolves a vulnerability in Microsoft MFC that could allow remote code execution. User interaction is required to exploit this vulnerabilityhttp://go.microsoft.com/fwlink/?LinkId=78446Bulletin Identifier Microsoft Security Bulletin MS07-013 Bulletin Title Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution 918118Executive Summary This update resolves a vulnerability in Microsoft RichEdit that could allow remote code execution. User interaction is required to exploit this vulnerability http://go.microsoft.com/fwlink/?LinkId=80463Please note that all of the above updates are now available from the Microsoft update websitehttp://update.microsoft.com/microsoftupdat...t.aspx?ln=en-usThis represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so. If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.WebcastMicrosoft will host a webcast tomorrow. The webcast focuses on addressing your questions and concerns about the security bulletins. Therefore, most of the live webcast is aimed at giving you the opportunity to ask questions and get answers from their security experts.Start Time: Wednesday, February 14th, 2007 11:00 AM Pacific Time (US & Canada) End Time: Wednesday, February 14th, 2007 12:00 PM Pacific Time (US & Canada) Presenter: Christopher Budd, CISA, CISM, CISSP, ISSMP Security Program Manager, PSS Security, Microsoft Corporation and Mike Reavey, Lead Security Program Manager, Microsoft CorporationSecurity ToolFind out if you are missing important Microsoft product updates by using MBSA. Link to comment Share on other sites More sharing options...
Recommended Posts