PDA

Archiv verlassen und diese Seite im Standarddesign anzeigen : Alert - Critical Product Vulnerability - August 2008 Microsoft Security Bulletin Rele



joneum
13.08.2008, 10:58
gestern Abend wurden die Microsoft Security Bulletins für August 2008 veröffentlicht. Die Veröffentlichung der Bulletins ersetzt die Bulletin Advance Notification, die erstmalig am 07.08.08 veröffentlicht wurde.

Weitere Infos findet Ihr unten und auch online auf: http://www.microsoft.com/germany/technet/sicherheit/bulletins/ms08-aug.mspx (dt.)

__________________________________________________ _

What is the purpose of this alert?
This alert is to provide you with an overview of the new security bulletins being released on 12 August 2008. Security bulletins are released monthly to resolve critical problem vulnerabilities.

New Security Bulletins:

Microsoft is releasing the following eleven (11) new security bulletins for newly discovered vulnerabilities:


Bulletin Number Maximum Severity Affected Products Impact

MS08-041 Critical

Snapshot Viewer for Access, Office Access 2000, Office Access 2002, and Office Access 2003

Remote Code Execution

MS08-042 Important

Office Word 2002 and Office Word 2003

Remote Code Execution

MS08-043 Critical

Office Excel 2000, Office Excel 2002, Office Excel 2003, Office Excel 2007, Excel Viewer, Excel Viewer 2003, SharePoint Server 2007, Office 2004 for Mac, Office 2008 for Mac

Remote Code Execution

MS08-044 Critical

Office 2000, Office XP, Office 2003, Office Project 2002, Office Converter Pack, Works 8.0.

Remote Code Execution

MS08-045 Critical

Internet Explorer on Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008 Remote Code Execution

MS08-046 Critical

Windows 2000, Windows XP, Windows Server 2003 Remote Code Execution

MS08-047 Important

Windows Vista and Windows Server 2008. Information Disclosure

MS08-048 Important

Outlook Express on Windows 2000, Windows XP, Windows Server 2003. Windows Mail on Windows Vista and Windows Server 2008 Information Disclosure

MS08-049 Important

Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008 Remote Code Execution

MS08-050 Important

Windows Messenger on Windows 2000, Windows XP and Windows Server 2003 Information Disclosure

MS08-051 Critical

Office PowerPoint 2000, Office PowerPoint 2002, Office PowerPoint 2003, Office PowerPoint 2007, Office PowerPoint Viewer 2003, Office Compatibility Pack for 2007 File Formats, and Office 2004 for Mac. Remote Code Execution








Summaries for these new bulletins may be found at the following pages:
http://www.microsoft.com/technet/security/bulletin/MS08-Aug.mspx

Microsoft Windows Malicious Software Removal Tool

Microsoft is releasing an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Server Update Services (WSUS), Windows Update (WU) and the Download Center. Note that this tool will NOT be distributed using Software Update Services (SUS). Information on the Microsoft Windows Malicious Software Removal Tool can be located here: http://go.microsoft.com/fwlink/?LinkId=40573

High-Priority Non-Security Updates

High priority non-security updates Microsoft releases to be available on Microsoft Update (MU), Windows Update (WU) or Windows Server Update Services (WSUS) will be detailed in the following KB Article: http://support.microsoft.com/?id=894199

Public Bulletin Webcast

Microsoft will host a Webcast to address customer questions on these bulletins:

Title: Information about Microsoft August Security Bulletins (Level 200)
Date: Wednesday, August 13th, 2008 11:00 AM Pacific Time (US & Canada)
URL: http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?culture=en-US&EventID=1032374631

New Security Bulletin Technical Details

In the following tables of affected and non-affected software, software editions that are not listed are past their support lifecycle. To determine the support lifecycle for your product and edition, visit Microsoft Support Lifecycle<http://support.microsoft.com/lifecycle/> (http://support.microsoft.com/lifecycle/).

Bulletin Identifier Microsoft Security Bulletin MS08-041
Bulletin Title Vulnerability in the ActiveX Control for the Snapshot Viewer for Microsoft Access Could Allow Remote Code Execution (955617)
Executive Summary This security update resolves a privately reported vulnerability in the ActiveX control for the Snapshot Viewer for Microsoft Access. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Snapshot Viewer for Access, Office Access 2000, Office Access 2002, and Office Access 2003. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update does not require a restart.
Removal Information After you install the update, you cannot remove it. To revert to an installation before the update was installed; you must remove the application, and then install it again from the original media.
Bulletins Replaced by This Update MS03-038 except on Office Access 2003
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-041.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-042
Bulletin Title Vulnerability in Microsoft Word Could Allow Remote Code Execution (955048)
Executive Summary This security update resolves a publicly reported vulnerability in Microsoft Word. This vulnerability could allow remote code execution if a user opens a specially crafted Word file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Important
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Office Word 2002 and Office Word 2003. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update does not require a restart.
Removal Information Use Add or Remove Programs tool in Control Panel.
Bulletins Replaced by This Update MS08-026
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-042.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-043
Bulletin Title Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (954066)
Executive Summary This security update resolves four privately reported vulnerabilities in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Office Excel 2000, Office Excel 2002, Office Excel 2003, Office Excel 2007, Excel Viewer, Excel Viewer 2003, SharePoint Server 2007, Office 2004 for Mac, Office 2008 for Mac. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update does not require a restart.
Removal Information Varies depending on which update is installed. See bulletin at the link below for full details.
Bulletins Replaced by This Update Excel 2000, Excel 2002, Excel 2003, Excel 2007, Excel Viewer 2003: MS08-014
Excel Viewer: None
Office Compatibility Pack: MS08-026
SharePoint Server: None
Office 2004 for Mac and Office 2008 for Mac: MS08-026
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-043.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-044
Bulletin Title Vulnerabilities in Microsoft Office Filters Could Allow Remote Code Execution (924090)
Executive Summary This security update resolves five privately reported vulnerabilities. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using Microsoft Office. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Office 2000, Office XP, Office 2003, Office Project 2002, Office Converter Pack, Works 8.0. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update does not require a restart.
Removal Information For all except Office 2000, Use Add or Remove Programs tool in Control Panel.
Office 2000: After you install the update, you cannot remove it. To revert to an installation before the update was installed; you must remove the application, and then install it again from the original media.
Bulletins Replaced by This Update Office 2000, Office XP, Office 2003, and Office Project 2002: MS06-039
Office Converter Pack and Works 8.0: None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-044.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-045
Bulletin Title Cumulative Security Update for Internet Explorer (953838)
Executive Summary This security update resolves five privately reported vulnerabilities and one publicly disclosed vulnerability. All of the vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Internet Explorer on Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update requires a restart.
Removal Information Windows 2000, Windows XP and Windows Server 2003: Use Add or Remove Programs tool in Control Panel or the Spuninst.exe utility.
Windows Vista and Windows Server 2008: WUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates and select from the list of updates.
Bulletins Replaced by This Update MS08-031
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-045.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-046
Bulletin Title Vulnerability in Microsoft Windows Image Color Management System Could Allow Remote Code Execution (952954)
Executive Summary This update resolves a privately reported vulnerability in the Microsoft Image Color Management (ICM) system that could allow remote code execution in the context of the current user. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Windows 2000, Windows XP, Windows Server 2003. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update requires a restart.
Removal Information Use Add or Remove Programs tool in Control Panel or the Spuninst.exe.
Bulletins Replaced by This Update None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-046.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-047
Bulletin Title Vulnerability in IPsec Policy Processing Could Allow Information Disclosure (953733)
Executive Summary This update resolves a privately reported vulnerability in the way certain Windows Internet Protocol Security (IPsec) rules are applied. This vulnerability could cause systems to ignore IPsec policies and transmit network traffic in clear text. This, in turn, would disclose information intended to be encrypted on the network. An attacker viewing the traffic on the network would be able to view and possibly modify the contents of the traffic. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly. It could be used to collect useful information to try to further compromise the affected system or network.
Maximum Severity Rating Important
Impact of Vulnerability Information Disclosure
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Windows Vista and Windows Server 2008. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update requires a restart.
Removal Information WUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates and select from the list of updates.
Bulletins Replaced by This Update None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-047.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-048
Bulletin Title Security Update for Outlook Express and Windows Mail (951066)
Executive Summary This security update resolves a privately reported vulnerability in Outlook Express and Windows Mail. The vulnerability could allow information disclosure if a user visits a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Important
Impact of Vulnerability Information Disclosure
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Outlook Express on Windows 2000, Windows XP, Windows Server 2003. Windows Mail on Windows Vista and Windows Server 2008. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update may require a restart.
Removal Information Outlook Express on Windows 2000, Windows XP, Windows Server 2003: To remove this security update, use the Add or Remove Programs tool in Control Panel. System administrators can also use the Spuninst.exe utility to remove this security update.
Windows Mail on Vista or Windows Server 2008: To remove this update, click Control Panel, click Security, then under Windows Update, click View installed updates and select from the list of updates.
Bulletins Replaced by This Update MS07-056 on all except Windows Server 2008.
Windows Server 2008: None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-048.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-049
Bulletin Title Vulnerabilities in Event System Could Allow Remote Code Execution (950974)
Executive Summary This update resolves two privately reported vulnerabilities in Microsoft Windows Event System that could allow remote code execution. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.
Maximum Severity Rating Important
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update requires a restart.
Removal Information Windows 2000, Windows XP and Windows Server 2003: Use Add or Remove Programs tool in Control Panel or the Spuninst.exe utility.
Windows Vista and Windows Server 2008: WUSA.exe does not support uninstall of updates. To uninstall an update installed by WUSA, click Control Panel, and then click Security. Under Windows Update, click View installed updates and select from the list of updates.
Bulletins Replaced by This Update None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-049.mspx

joneum
13.08.2008, 10:58
Bulletin Identifier Microsoft Security Bulletin MS08-050
Bulletin Title Vulnerability in Windows Messenger Could Allow Information Disclosure (955702)
Executive Summary This security update resolves a publicly reported vulnerability in supported versions of Windows Messenger. As a result of this vulnerability, scripting of an ActiveX control could allow information disclosure in the context of the logged-on user. An attacker could change state, get contact information, and initiate audio and video chat sessions without the knowledge of the logged-on user. An attacker could also capture the user's logon ID and remotely log on to the user's Messenger client impersonating that user.
Maximum Severity Rating Important
Impact of Vulnerability Information Disclosure
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update only for Windows Messenger 4.7 on supported editions of Windows XP.
Affected Software Windows Messenger on Windows 2000, Windows XP and Windows Server 2003. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update requires a restart.
Removal Information Use Add or Remove Programs tool in Control Panel or the Spuninst.exe utility
Bulletins Replaced by This Update None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-050.mspx

Bulletin Identifier Microsoft Security Bulletin MS08-051
Bulletin Title Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (949785)
Executive Summary This security update resolves three privately reported vulnerabilities in Microsoft Office PowerPoint and Microsoft Office PowerPoint Viewer that could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited any of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Maximum Severity Rating Critical
Impact of Vulnerability Remote Code Execution
Detection Microsoft Baseline Security Analyzer can detect whether your computer system requires this update.
Affected Software Office PowerPoint 2000, Office PowerPoint 2002, Office PowerPoint 2003, Office PowerPoint 2007, Office PowerPoint Viewer 2003, Office Compatibility Pack for 2007 File Formats, and Office 2004 for Mac. For more information, see the Affected Software section of the bulletin at the link below.
Restart Requirement The update does not require a restart.
Removal Information Varies depending on which update is installed. See bulletin at the link below for full details.
Bulletins Replaced by This Update Office PowerPoint 2000, Office PowerPoint 2002, Office PowerPoint 2003: MS06-058
Officer 2004 for Mac: MS08-026
Office PowerPoint 2003 SP3, Office PowerPoint 2007, Office PowerPoint Viewer 2003, Office Compatibility Pack for 2007 File Formats: None
Full Details http://www.microsoft.com/technet/security/bulletin/MS08-051.mspx

Regarding Information Consistency

We strive to provide you with accurate information in static (this mail) and dynamic (web-based) content. Microsoft's security content posted to the web is occasionally updated to reflect late-breaking information. If this results in an inconsistency between the information here and the information in Microsoft's web-based security content, the information in Microsoft's web-based security content is authoritative.

If you have any questions regarding this alert please contact your Technical Account Manager or Application Development Consultant.

Thank you,

Microsoft CSS Security Team