[Jochen]

Microsoft hat in seiner Security Bulletin Advance Notification für Juni 2009 zehn neue Security Bulletins angekündigt (siehe unten aufgeführt nach Schweregrad und Sicherheitsauswirkung). Die neuen Sicherheitsupdates werden am 09.06.2009 veröffentlicht.

Deutsche Infos findet Ihr in den nächsten Tagen unter: http://www.microsoft.com/germany/tec...l/default.mspx.

Weitere allgemeine Informationen zu den Microsoft Security Bulletin Advance Notifications findet Ihr hier: http://www.microsoft.com/germany/tec...inadvance.mspx

____________________________________

What is the purpose of this alert?

As part of the monthly security bulletin release cycle, Microsoft provides advance notification to our customers on the number of new security updates being released, the products affected, the aggregate maximum severity, and information about detection tools relevant to the update. This is intended to help our customers plan for the deployment of these security updates more effectively.

On June 9, 2009, Microsoft is planning to release ten new security bulletins. Below is a summary in order of severity.

New Bulletin Summary

Bulletin ID Max Severity Rating Vulnerability Impact Restart Requirement Affected Software
Windows 1 Critical
Remote Code Execution Requires restart Microsoft Windows 2000, Windows XP, and Windows Server 2003
Windows 2 Critical
Remote Code Execution Requires restart Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008
IE Critical
Remote Code Execution Requires restart Internet Explorer on Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008
Word Critical
Remote Code Execution May require restart Microsoft Office 2000, Office XP, Office 2003, 2007 Office System, Office 2004 for Mac, Office 2008 for Mac, Open XML File Format Converter for Mac, Microsoft Office Word Viewer, and Office Compatibility Pack for 2007 File Formats
Excel Critical
Remote Code Execution May require restart Microsoft Office 2000, Office XP, Office 2003, 2007 Office System, Office 2004 for Mac, Office 2008 for Mac, Open XML File Format Converter for Mac, Microsoft Office Excel Viewer, Office Compatibility Pack for 2007 File Formats, and Microsoft Office SharePoint Server 2007
Office Critical
Remote Code Execution May require restart Microsoft Office 2000, Office XP, Office 2003, 2007 Office System, Works 8.5, and Works 9.0
Windows 3 Important
Elevation of Privilege Requires restart Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008
Windows 4 Important
Elevation of Privilege Requires restart Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008
Windows 5 Important
Elevation of Privilege Requires restart Microsoft Windows 2000, Windows XP, and Windows Server 2003
Windows 6 Moderate
Information Disclosure Requires restart Microsoft Windows XP and Windows Server 2003

Although we do not anticipate any changes, the number of bulletins, products affected, restart information, and severities are subject to change until released.

Advance Notification Web Page: The full version of the Microsoft Security Bulletin Advance Notification for this month can be found at http://www.microsoft.com/technet/sec.../ms09-jun.mspx.

Microsoft Windows Malicious Software Removal Tool: Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Monthly Security Bulletin Webcast: To address customer questions on these bulletins Microsoft will host a Webcast next week, Wednesday, at 11:00 A.M. Pacific Time (U.S. and Canada). Registration for this event and other details can be found at http://www.microsoft.com/technet/sec...n/summary.mspx.


At this time, no additional information on these bulletins, such as details regarding the vulnerability or severity, will be made available until the bulletins are published on Tuesday.

Regarding Information Consistency

We strive to provide you with accurate information in static (this mail) and dynamic (Web-based) content. Microsoft's security content posted to the Web is occasionally updated to reflect late-breaking information. If this results in an inconsistency between the information here and the information in Microsoft's Web-based security content, the information in Microsoft's Web-based security content is authoritative.

If you have any questions regarding this alert please contact your Technical Account Manager or Application Development Consultant.

Thank you,
Microsoft CSS Security Team