NICK ADSL UK Posted December 10, 2008 Report Share Posted December 10, 2008 Microsoft Security Bulletin(s) for December 9 2008 Note: There may be latency issues due to replication, if the page does not display keep refreshingToday Microsoft released the following Security Bulletin(s). Note: http://www.microsoft.com/technet/security and http://www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.Bulletin Summary:http://www.microsoft.com/technet/security/...n/ms08-dec.mspx Critical (6 )Microsoft Security Bulletin MS08-071 – CriticalVulnerabilities in GDI Could Allow Remote Code Execution (956802)http://www.microsoft.com/technet/security/...n/ms08-071.mspxMicrosoft Security Bulletin MS08-075 – CriticalVulnerabilities in Windows Search Could Allow Remote Code Execution (959349)http://www.microsoft.com/technet/security/...n/ms08-075.mspxMicrosoft Security Bulletin MS08-073 - CriticalCumulative Security Update for Internet Explorer (958215)http://www.microsoft.com/technet/security/...n/ms08-073.mspxMicrosoft Security Bulletin MS08-070 - CriticalVulnerabilities in Visual Basic 6.0 Runtime Extended Files (ActiveX Controls) Could Allow Remote Code Execution (932349)http://www.microsoft.com/technet/security/...n/ms08-070.mspxMicrosoft Security Bulletin MS08-072 - CriticalVulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (957173)http://www.microsoft.com/technet/security/...n/ms08-072.mspxMicrosoft Security Bulletin MS08-074 - CriticalVulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (959070)http://www.microsoft.com/technet/security/...n/ms08-074.mspxImportant (2)Microsoft Security Bulletin MS08-077 - ImportantVulnerability in Microsoft Office SharePoint Server Could Cause Elevation of Privilege (957175)http://www.microsoft.com/technet/security/...n/ms08-077.mspxMicrosoft Security Bulletin MS08-076 – ImportantVulnerabilities in Windows Media Components Could Allow Remote Code Execution (959807)http://www.microsoft.com/technet/security/...n/ms08-076.mspxPlease note that Microsoft may release bulletins out side of this schedule if we determine the need to do so. If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.Security ToolFind out if you are missing important Microsoft product updates by using MBSA. Link to comment Share on other sites More sharing options...
ɹəuəllıʍ ʇɐb Posted December 10, 2008 Report Share Posted December 10, 2008 Microsoft Windows Malicious Software Removal Tool - Dec. 2008 (KB 890830)It has been reported that the Malicious Software Removal Tool (MRT V2.5) fails to download/install at times during this update. It does not report an error, it just doesn't materialize.The version should be 2.5.2419.0; you can check %windir%\system32\MRT.exeIf you have an older version, you can download the latest version from http://www.microsoft.com/security/malwareremove/default.mspx; the downloaded installer is windows-kb890830-v2.5.exe Link to comment Share on other sites More sharing options...
Recommended Posts