July 2008

ID: 3653
Date: 08/07/2008

---

Title: 3653 - Microsoft July Updates for Multiple Vulnerabilities
Platform level affected:Operating System
Hardware components affected:Intel PC
Specific operating systems components affected: 32-bit Windows
Net-enabled software: Other
Security software:Other
Remediation Summary:Update your copy of the software with the download available from the supplier.
Vendors affected:Microsoft
Applications affected:Windows, Windows Server, Microsoft SQL Server, and Microsoft Outlook Web Access
Adversity source: Unknown
Attack Vector: Vulnerability exploitation
Virulence: Unknown
Warning Status: Imminent
Potential Damage: Remote execution/modification
Possible Duration: Unknown
Availability of fix: Available
Type of fix: Patch
Source: US-CERT & Microsoft
Reliability of source: Trusted
Source URL: http://www.microsoft.com/technet/security/bulletin/ms08-jul.mspx
Abstract: This Microsoft summary lists security bulletins released for July 2008.

                National Cyber Alert System
           Technical Cyber Security Alert TA08-190A

Microsoft Updates for Multiple Vulnerabilities

   Original release date: July 8, 2008
   Last revised: --
   Source: US-CERT

Systems Affected

     * Microsoft Windows
     * Microsoft Windows Server
     * Microsoft SQL Server
     * Microsoft Outlook Web Access

Overview

   Microsoft has released updates that address vulnerabilities in Microsoft
   Windows, Windows Server, Microsoft SQL Server, and Microsoft Outlook Web
   Access.

I. Description

   Microsoft  has released updates to address vulnerabilities that affect
   Microsoft Windows, Windows Server, Microsoft SQL Server, and Microsoft
   Outlook Web Access as part of the Microsoft Security Bulletin Summary for
   July  2008.  The  most  severe  vulnerabilities  could allow a remote,
   unauthenticated attacker to execute arbitrary code. For more information,
   see the US-CERT Vulnerability Notes Database.

II. Impact

   A remote, unauthenticated attacker could execute arbitrary code or cause a
   vulnerable application to crash.

III. Solution

Apply updates from Microsoft

   Microsoft has provided updates for these vulnerabilities in the July 2008
   Security Bulletin Summary. The security bulletin describes any known issues
   related to the updates. Administrators are encouraged to note these issues
   and test for any potentially adverse effects. Administrators should consider
   using an automated update distribution system such as Windows Server Update
   Services (WSUS).

IV. References

     * US-CERT  Vulnerability  Notes  for  Microsoft  July 2008 updates -
       <http://www.kb.cert.org/vuls/byid?searchview&query=ms08-jul>

     * Microsoft    Security   Bulletin   Summary   for   July   2008   -
       <http://www.microsoft.com/technet/security/bulletin/ms08-jul.mspx>

     * Microsoft Update - <https://www.update.microsoft.com/microsoftupdate/>

     * Windows Server Update Services -
       <http://www.microsoft.com/windowsserversystem/updateservices/default.mspx>

 ____________________________________________________________________

   The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/techalerts/TA08-190A.html>
 ____________________________________________________________________

   Feedback can be directed to US-CERT Technical Staff. Please send
   email to <cert@cert.org> with "TA08-190A Feedback VU#561331" in the
   subject.
 ____________________________________________________________________

   For instructions on subscribing to or unsubscribing from this
   mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
 ____________________________________________________________________

   Produced 2008 by US-CERT, a government organization.

   Terms of use:

     <http://www.us-cert.gov/legal.html>
 ____________________________________________________________________

   Revision History

   July 8, 2008: Initial release

This advisory contains information released by the original author. Some of the information may have changed since it was released. If the issue affects you, it may be prudent to retrieve the advisory from the site of the original source to ensure that you receive the most current information concerning that problem. Reference to any specific commercial product, process, or service by trade name, trademark manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favouring by CPNI.

The views and opinions of authors expressed within this notice shall not be used for advertising or product endorsement purposes. CPNI shall not accept responsibility for any errors or omissions contained within this advisory. In particular, they shall not be liable for any loss or damage whatsoever, arising from or in connection with the usage of information contained within this advisory.

CSIRTUK is a member of the Forum of Incident Response and Security Teams (FIRST) and has contacts with other international Incident Response Teams (IRTs) in order to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing amongst its members and the community at large.