US-CERT Technical Cyber Security Alert TA09-041A -- Microsoft Updates for Multiple Vulnerabilities

0 views
Skip to first unread message

US-CERT

unread,
Feb 10, 2009, 4:06:22 PM2/10/09
to

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


National Cyber Alert System

Technical Cyber Security Alert TA09-041A


Microsoft Updates for Multiple Vulnerabilities

Original release date: February 10, 2009
Last revised: --
Source: US-CERT


Systems Affected

* Microsoft Internet Explorer
* Microsoft Office Visio
* Microsoft Exchange and SQL Server


Overview

Microsoft has released updates that address vulnerabilities in
Microsoft Windows and Windows Server.


I. Description

As part of the Microsoft Security Bulletin Summary for February
2009, Microsoft released updates to address vulnerabilities that
affect Microsoft Windows, Internet Explorer, Exchange Server, SQL
Server, Office, and other related components.


II. Impact

A remote, unauthenticated attacker could gain elevated privileges,
execute arbitrary code or cause a vulnerable application to crash.


III. Solution

Microsoft has provided updates for these vulnerabilities in the
Microsoft Security Bulletin Summary for February 2009. The security
bulletin describes any known issues related to the updates.
Administrators are encouraged to note these issues and test for any
potentially adverse effects. Administrators should consider using
an automated update distribution system such as Windows Server
Update Services (WSUS).


IV. References

* Microsoft Security Bulletin Summary for February 2009 -
<http://www.microsoft.com/technet/security/bulletin/ms09-feb.mspx>

* Microsoft Windows Server Update Services -
<http://technet.microsoft.com/en-us/wsus/default.aspx>

____________________________________________________________________

The most recent version of this document can be found at:

<http://www.us-cert.gov/cas/techalerts/TA09-041A.html>
____________________________________________________________________

Feedback can be directed to US-CERT Technical Staff. Please send
email to <ce...@cert.org> with "TA09-041A Feedback VU#139636" in
the subject.
____________________________________________________________________

For instructions on subscribing to or unsubscribing from this
mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
____________________________________________________________________

Produced 2009 by US-CERT, a government organization.

Terms of use:

<http://www.us-cert.gov/legal.html>
____________________________________________________________________

Revision History

February 10, 2009: Initial release


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBSZHrgXIHljM+H4irAQJd3Qf+PPj7rh6MdXpVtPwNvjuM/nMisAe2tEpj
Y11YLvM6QK80vZy/DRNnS+TIuClTCb73v7gOpZP6CsuV+4dNQLZ7YMXSnZhpNlO/
Rd5OgaMyd0JvdMppuzvgcsa6IZtDlQPFbjsD0nnIcC8uo97OUI88XUw/V3tpwUvn
sc5jmIfsdNEOb/PGNRujW4pp1OPGVcwH85F5Wzv8KgnDeFecPgU1Wr9xofc0Lbhb
5O253AfQ8ImCWaEZ2P2tIh1Q61HgxROmZ18cFa7IEU2dubNg9WyfFTdSLb0VmqVA
h+GP2y5om5dpgtENkH/gT3INOk3JdIRPaj5uflrPsx/mO/8Cpvl5ow==
=uN2s
-----END PGP SIGNATURE-----

Reply all
Reply to author
Forward
0 new messages