PDA

Archiv verlassen und diese Seite im Standarddesign anzeigen : Alert - Critical Product Vulnerability - January 2008 Microsoft Security Bulletin Release



joneum
09.01.2008, 12:55
Weitere Infos findet Ihr nachfolgend und auch unter: http://www.microsoft.com/germany/technet/sicherheit/bulletins/ms08-jan.mspx (dt.)

What is this alert?

This alert is to provide you with an overview of the new Security Bulletin being released on 08 January 2008.

New Security Bulletins

Microsoft is releasing the following two new security bulletins for newly discovered vulnerabilities:


Bulletin Number Maximum Severity Affected Products Impact

MS08-001 Critical All currently supported versions of Windows Remote Code Execution

MS08-002 Important Windows 2000, Windows XP, Windows Server 2003 Local Elevation of Privilege

Summaries for these new bulletins may be found at the following pages:

http://www.microsoft.com/technet/security/bulletin/ms08-jan.mspx

Microsoft Windows Malicious Software Removal Tool

Microsoft is releasing an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Server Update Services (WSUS), Windows Update (WU) and the Download Center. Note that this tool will NOT be distributed using Software Update Services (SUS). Information on the Microsoft Windows Malicious Software Removal Tool can be located here: http://go.microsoft.com/fwlink/?LinkId=40573

High-Priority Non-Security Updates

High priority non-security updates Microsoft releases to be available on Microsoft Update (MU), Windows Update (WU) or Windows Server Update Services (WSUS) will be detailed in the following KB Article: http://support.microsoft.com/?id=894199


TechNet Webcast: Microsoft will host a Webcast to address customer questions on these bulletins:

Title: Information about Microsoft January Security Bulletins (Level 200)
Date: Wednesday, January 9th, 2008 - 11:00 AM Pacific Time (US & Canada)
URL: http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?culture=en-US&EventID=1032357213
Replay: Available 24 hours after webcast - same URL


New Security Bulletin Technical Details

In the following tables of affected and non-affected software, software editions that are not listed are past their support lifecycle. To determine the support lifecycle for your product and edition, visit Microsoft Support Lifecycle<http://support.microsoft.com/lifecycle/>.


Bulletin Identifier Microsoft Security Bulletin MS08-001
Bulletin Title Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (941644)
Executive Summary This critical security update resolves two privately reported vulnerabilities in Transmission Control Protocol/Internet Protocol (TCP/IP) processing. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software All Currently Supported Versions of Windows.
Restart Requirements The update will require a restart.
Removal Information * For Windows 2000, Windows XP and Windows Server 2003: Use Add or Remove Programs tool in Control Panel or the Spuninst.exe utility.
* For Windows Vista: WUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates and select from the list of updates.
Bulletins Replaced by This Update * For Windows 2000, Windows XP and Windows Server 2003: MS06-032.
* For Windows Vista: None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-001.mspx

[X]


Bulletin Identifier Microsoft Security Bulletin MS08-002
Bulletin Title Vulnerability in LSASS Could Allow Local Elevation of Privilege (943485)
Executive Summary This important update resolves a privately reported vulnerability in Microsoft Windows Local Security Authority Subsystem Service (LSASS). The vulnerability could allow an attacker to run arbitrary code with elevated privileges. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Maximum Severity Rating Important
Impact of Vulnerability Local Elevation of Privilege
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Windows 2000, Windows XP, Windows Server 2003.
Restart Requirements The update will require a restart.
Removal Information For all affected versions of Windows use Add or Remove Programs tool in Control Panel or the Spuninst.exe utility.
Bulletins Replaced by This Update None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-002.mspx

[X]

Please visit http://www.microsoft.com/technet/security For the most current information on these bulletins.

If you have any questions regarding this alert please contact your Technical Account Manager or Application Development Consultant.

Thank you,

Microsoft CSS Security Team