Adobe on the other hand plans to release security patches for its popular PDF reader Adobe Reader that are also rated critical. The updates will all be released tomorrow and system administrators will certainly their hands full updating the computer systems that run the software and operating systems.

A closer look at the Microsoft Patch Day reveals eight critical security vulnerabilities and five important vulnerabilities that will get fixed with the patches that are released tomorrow. The majority of vulnerabilities affects the Windows operating system but it does also include one critical Internet Explorer vulnerability.

System administrators and Windows users are encouraged to visit the two websites linked above for further information. These websites will also contain the links to patch the security vulnerabilities. Windows users can also use Windows Update, Microsoft Update or Automatic Updates to update their operating system.

Related posts

• Microsoft Security Patches for June 2009 (12)
• Microsoft October 2008 Patch Day Patches 11 Security Vulnerabilities (0)
• Windows Vulnerability Scanner (4)
• Windows Vista SP1 all languages released (3)
• Windows Update Fix (3)

The easiest way to download and install the patches is by pointing the Internet Explorer web browser to Microsoft Update which will automatically detect and install the available patches for the computer system. Other possibilities include downloading the security patches from Microsoft Download Center from where they are available as well.

Six vulnerabilities have been rated as critical, three as important and one as moderate. Critical security vulnerabilities can usually be exploited for remote code execution meaning it is essential to fix these vulnerabilities quickly. You can follow the links below for additional information about each vulnerability.

• MS09-018 – Vulnerabilities in Active Directory Could Allow Remote Code Execution (971055)
• MS09-019 – Cumulative Security Update for Internet Explorer (969897)
• MS09-020 – Vulnerabilities in Internet Information Services (IIS) Could Allow Elevation of Privilege (970483)
• MS09-021 – Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (969462)
• MS09-022 – Vulnerabilities in Windows Print Spooler Could Allow Remote Code Execution (961501)
• MS09-023 – Vulnerability in Windows Search Could Allow Information Disclosure (963093)
• MS09-024 – Vulnerability in Microsoft Works Converters Could Allow Remote Code Execution (957632)
• MS09-025 – Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
• MS09-026 – Vulnerability in RPC Could Allow Elevation of Privilege (970238)
• MS09-027 – Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (969514)

Related posts

• Microsoft October 2008 Patch Day Patches 11 Security Vulnerabilities (0)
• Windows Vulnerability Scanner (4)
• Microsoft updates two critical security patches (5)
• Microsoft Security Patches September 2009 (6)
• Microsoft Security Patches April 2008 (0)

A total of 13 security vulnerabilities are fixed by the Java update. Attackers can use those vulnerabilities for various attacks on a computer system that can lead to privilege escalations.

Probably the easiest way to uninstall old versions of Java and to install the latest secure update is by using the third party software Java RA. Java RA can uninstall old versions of Java. Users should download the latest JRE directly from Sun and install it on their systems. Java Ra should be run after the installation as it will remove all old versions of Java while keeping the latest version installed.

List of vulnerabilities:

• The Java Runtime Environment Creates Temporary Files That Have “Guessable” File Names
• Java Runtime Environment (JRE) Buffer Overflow Vulnerabilities in Processing Image Files and Fonts

May

• Allow Applets or Java Web Start Applications to Elevate Their Privileges
• Multiple Security Vulnerabilities in Java Web Start and Java Plug-in May Allow Privilege Escalation
• The Java Runtime Environment (JRE) “Java Update” Mechanism Does Not Check the Digital Signature of the JRE that it Downloads
• A Buffer Overflow Vulnerability in the Java Runtime Environment (JRE) May Allow Privileges to be Escalated
• A Security Vulnerability in the Java Runtime Environment (JRE) Related to Deserializing Calendar Objects May Allow Privileges to be Escalated
• The Java Runtime Environment UTF-8 Decoder May Allow Multiple Representations of UTF-8 Input
• Security Vulnerability in Java Runtime Environment May Allow Applets to List the Contents of the Current User’s Home Directory
• Security Vulnerability in the Java Runtime Environment With Processing RSA Public Keys
• A Security Vulnerability in Java Runtime Environment (JRE) With Authenticating Users Through Kerberos May Lead to a Denial of Service (DoS)
• Security Vulnerabilities in the Java Runtime Environment (JRE) JAX-WS and JAXB Packages may Allow Privileges to be Escalated
• A Security Vulnerability in Java Runtime Environment (JRE) With Parsing of Zip Files May Allow Reading of Arbitrary Memory Locations
• A Security Vulnerability in the Java Runtime Environment may Allow Code Loaded From the Local Filesystem to Access LocalHost

Users who cannot install the Java update immediately should disable Java for the time being to protect their computer system from the exploits.

Related posts

• Update Java and remove old Java versions from your system (10)
• Windows Vulnerability Scanner (4)
• Turn Your Mobile Phone Into A PC Remote Control (22)
• Secure Wordpress with the first Wordpress Worm (7)
• Photo Collage (3)

The vulnerability rated as critical could allow remote code execution in the in Microsoft XML Core Services while the vulnerability rated important could allow remote code execution in Microsoft Server Message Block (SMB) Protocol.

Both security vulnerabilities can be fixed by using Windows Update or by downloading the security updates directly from the Microsoft Download website by following the two links given above in this article.

Related posts

• Microsoft Security Patches April 2008 (0)
• Microsoft Security Patches July 2009 (5)
• Microsoft Security Patches for June 2009 (12)
• Microsoft Patch Tuesday December 08 (3)
• Microsoft releases two security patches for Windows (1)

Microsoft released a batch of eleven security patches for various operating systems and products yesterday which are available by visiting Windows Update or Microsoft Technet which contains in depths information about the affected products and the security vulnerabilities.

The patches fix four critical, six important and 1 moderate security vulnerability:

• Vulnerability in Active Directory Could Allow Remote Code Execution (957280)
• Cumulative Security Update for Internet Explorer (956390)
• Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695)
• Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (956416)

• Vulnerability in the Microsoft Ancillary Function Driver Could Allow Elevation of Privilege (956803)
• Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (954211)
• Vulnerability in Windows Internet Printing Service Could Allow Remote Code Execution (953155)
• Vulnerability in SMB Could Allow Remote Code Execution (957095)
• Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841)
• Vulnerability in Message Queuing Could Allow Remote Code Execution (951071)

• Vulnerability in Microsoft Office Could Allow Information Disclosure (957699)

It is highly recommended to update the products as soon as possible to protect the system from this attacks.

Related posts

• Microsoft Security Patches for June 2009 (12)
• Windows Vulnerability Scanner (4)
• Watch three webcasts get vista and office for free (1)
• Microsoft Security Updates April 2009 (2)
• Microsoft Security Patches April 2008 (0)

Use the following links to open the Security Bulletins directly: Vulnerabilities in Microsoft Word Could Allow Remote Code Execution [link], Vulnerability in Microsoft Publisher Could Allow Remote Code Execution [link], Vulnerability in Microsoft Jet Database Engine Could Allow Remote Code Execution [link] and Vulnerabilities in Microsoft Malware Protection Engine Could Allow Denial of Service [link].

It is as always advised to update the system as soon as possible. The first two patches have to be applied to users of Microsoft Office, the third by almost everyone and the fourth by users who use Microsoft Malware protection applications.

Related posts

• Microsoft Security Patches April 2008 (0)
• Windows Vulnerability Scanner (4)
• XP SP3 and Vista SP 1 available through Windows Update (6)
• Windows XP WGA To Mimic That Of Windows Vista (18)
• Windows XP SP3 Release Date announced (1)

The Cumulative Security Update for Internet Explorer patches Internet Explorer 6 and newer versions of Internet Explorer. If the user visits a specially prepared website an attacker can gain the same rights on the Windows system as the user who is currently logged into the system. While this does not affect other browsers and to a lesser extent users who do not use administrative accounts it is still recommended to update the software immediately.

The Vulnerabilities in .NET Framework Could Allow Remote Code Execution patch fixes three security vulnerabilities. Two of them allow remote code execution and one information disclosure. It is again advised to update the system immediately to fix those security holes.

Related posts

• Microsoft Security Patches for June 2009 (12)
• Windows Vulnerability Scanner (4)
• Windows Malicious Software Removal Tool Observations (1)
• Why Can’t I Uninstall the Microsoft .net Framework? (7)
• What is connecting to the Internet (4)

I discovered a software Windows Vulnerability Scanner at Tech Malaya which scans a Windows NT system, that is Windows 2000, Windows XP, Windows 2003 Server or Windows Vista for security vulnerabilities. It seems to use information from the Microsoft Knowledgebase exclusively and one would assume that a system that downloaded all Windows Updates recently reveal no vulnerabilities. I let the software scan my system and it did find six critical and one important security vulnerability that had not been patched yet.

I’m not sure how this can be but was glad that the application revealed the information to me. It lists the vulnerabilities and provides links to the Microsoft website that contains information about it.

The Knowledgebase article at Microsoft contains a link to the download of the security patch and I did install all the patches one after the other. An improvement would have been if the software would automatically download the patches and install them on the system, or at least those that the user selects. If you have not been to Windows Update for a while I suggest you start there and scan the system again afterwards which should fix most of the security vulnerabilities found during the first scan.

Related posts

• Microsoft Security Updates May 2008 (0)
• Microsoft Security Patches for June 2009 (12)
• Microsoft Security Patches April 2008 (0)
• Microsoft October 2008 Patch Day Patches 11 Security Vulnerabilities (0)
• XP SP3 and Vista SP 1 available through Windows Update (6)

All critical vulnerabilities which affect Microsoft Windows, Microsoft Office and Internet Explorer allow Remote Code Execution. The easiest way to patch these security vulnerabilities is by visiting the Windows Update website with Internet Explorer and let a script check the available updates for your system. Please note that you will be asked if you want to install Service Pack 3 Refresh 2 for Windows XP if you use that operating system. My advise would be to not install this version yet and wait for the release version.

All security updates will be displayed and are selected for immediate download and installation. You could follow the link above which leads to the Microsoft website that explains the vulnerabilities and leads to downloads of the patches. This means that you have to make sure to pick the correct downloads for your operating system and software.

Related posts

• Microsoft Security Updates May 2008 (0)
• Microsoft releases two security patches for Windows (1)
• Microsoft Patch Tuesday November 08 (0)
• XP SP3 and Vista SP 1 available through Windows Update (6)
• Windows XP WGA To Mimic That Of Windows Vista (18)

Two security patches have been released this month, they are the critical Microsoft Security Bulletin MS08-001 and the important Microsoft Security Bulletin MS08-002. The critical patch fixes vulnerabilities in Windows TCP/IP that could allow remote code execution while the important patch deals with a vulnerability in LSASS that could allow local elevation of privilege.

Both patches are available through Windows Updates but also as single downloads. Several operating systems need to be patched including Windows Vista (only the critical), Windows 2000 and Windows XP. Downloads are available if you follow the links above.

Related posts

• Microsoft Security Patches April 2008 (0)
• Microsoft releases security updates for XP and Vista (1)
• XP SP3 and Vista SP 1 available through Windows Update (6)
• WPF Performance Fix for Windows Vista and XP (1)
• Windows XP WGA To Mimic That Of Windows Vista (18)

Every user should head out immediately and use either Windows Updates or browse the Microsoft website manually to download the security patches. I have added the download links to all security patches at the end of the article to make things easier for you.

A quick glance at the security vulnerabilities revealed that five patches have to be downloaded for both Windows XP and Windows Vista. Take a look at the Microsoft Security Bulletin overview site if you are using a different operating system to find out what has been patched for it.

Windows Vista:

Microsoft Security Bulletin MS07-063 – Important (Vulnerability in SMBv2 Could Allow Remote Code Execution (942624))

Microsoft Security Bulletin MS07-064 – Critical (Vulnerabilities in DirectX Could Allow Remote Code Execution (941568))

Microsoft Security Bulletin MS07-066 – Important (Vulnerability in Windows Kernel Could Allow Elevation of Privilege (943078))

Microsoft Security Bulletin MS07-068 – Critical (Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 and 944275))

Microsoft Security Bulletin MS07-069 – Critical (Cumulative Security Update for Internet Explorer (942615))

Windows XP:

Microsoft Security Bulletin MS07-064 – Critical (Vulnerabilities in DirectX Could Allow Remote Code Execution (941568))

Microsoft Security Bulletin MS07-065 – Important (Vulnerability in Message Queuing Could Allow Remote Code Execution (937894))

Microsoft Security Bulletin MS07-067 – Important (Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653))

Microsoft Security Bulletin MS07-068 – Critical (Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 and 944275))

Microsoft Security Bulletin MS07-069 – Critical (Cumulative Security Update for Internet Explorer (942615))

Related posts

• Windows Updates Downloader (6)
• Restart your computer to finish installing important updates (7)
• Microsoft Security Patches April 2008 (0)
• Microsoft releases two security patches for Windows (1)
• XP SP3 and Vista SP 1 available through Windows Update (6)

The process requires some faith that the xss worm is really fixing the vulnerabilities but the application itself is easy. About the faith: I have not read negative reviews so far and the worm has been released two days ago which should be enough time for some experts to complain about it.

If you want to secure your blog you simply write a comment on your own blog while you are logged in as the administrator linking to http://mybeni.rootzilla.de/mybeNi/ ; Click on that link from your admin panel afterwards which will lead to the site.

The first page explains what will be done and only if you actively click on “Secure my Blog” the vulnerability scan will be started. It will check three Wordpress files for the vulnerabilities and offer to fix them if the vulnerability is found.

The vulnerabilities can only be fixed if the files are writable so make sure they are. An alternative would be to copy the code that will be inserted and add it manually in the files. The complete code of the file is shown and the addition is highlighted.

I suggest to run the worm a second time to make sure that your blog is safe and that the fixes have been applied.

Related posts

• Wordpress Incorrect Password (2)
• Wordpress 2.7.1 Update (3)
• Windows Vulnerability Scanner (4)
• Microsoft updates two critical security patches (5)
• Microsoft Security Updates May 2008 (0)