RSS Feed

Subscribe to this feed

Categories

Tags

Archive

View archive statistics

Calendar

Mo	Tu	We	Th	Fr	Sa	Su
22	23	24	25	26	27	28
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30	31	1	2	3	4

Articles by Author

Recent posts

Hackers use a Facebook hoax to plant Rouge AntimalwareRating: 0 / 0
Johnny Depp fake death notice - fake ActiveX codecRating: 3 / 1
Top 10 Chinese cyber attacksRating: 0 / 0

Blogroll

9/10/2008 12:09:00 PM

Microsoft Security Bulletin Summary for September 2008

by Oren Medini

Microsoft has released its monthly security bulletin for September 2008 to address four critical vulnerabilities in Windows and Internet Explorer. We strongly suggest applying the patches provided by Microsoft for these vulnerabilities.

Following is a summary of the security updates released by Microsoft:

Critical

Vulnerability in Windows Media Player Could Allow Remote Code Execution
This security update resolves a privately reported vulnerability in Windows Media Player that could allow remote code execution when a specially crafted audio file is streamed from a Windows Media server.

Microsoft has already addressed this vulnerability with a patch. The patch and additional information are available here.

Vulnerabilities in GDI+ Could Allow Remote Code Execution
This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content.

Microsoft has already addressed this vulnerability with a patch. The patch and additional information are available here.

Vulnerability in Windows Media Encoder 9 Could Allow Remote Code Execution
This security update resolves a privately reported vulnerability in Windows Media Encoder 9 Series. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page.

Microsoft has already addressed this vulnerability with a patch. The patch and additional information are available here.

Vulnerability in Microsoft Office Could Allow Remote Code Execution
This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user clicks a specially crafted OneNote URL. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Microsoft has already addressed this vulnerability with a patch. The patch and additional information are available here.

References:

• June 2008 Monthly Release
• Microsoft Security Bulletin Summary for June 2008

Be the first to rate this post