Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > April 2007 > Microsoft Security Bulletin Summary for April 2007

April 2007

Microsoft Security Bulletin Summary for April 2007

ID: 110
Ref: 052/2007
Date: 11 April 2007:10:39:50
Version: 1
Title: Microsoft Security Bulletin Summary for April 2007
Abstract: Microsoft Security Bulletin Summary for April 2007
Vendors affected: Microsoft
Operating systems affected: Microsoft

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

********************************************************************
Title: Microsoft Security Bulletin Summary for April 2007
Issued: April 10, 2007
Version Number: 2.0
Bulletin Summary: http://go.microsoft.com/fwlink/?LinkId=87050
********************************************************************

Summary:
========
This Bulletin Summary contains information about all security updates released this month. Their security bulletins, in order of severity, are as follows:


Critical Security Bulletins
===========================

MS07-017 - Vulnerabilities in GDI Could Allow Remote Code
Execution (925902)

- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Vista
- Windows Vista x64 Edition

- Impact: Remote Code Execution
- Version Number: 1.0

MS07-018 - Vulnerabilities in Microsoft Content Management Server
Could Allow Remote Code Execution (925939)

- Affected Software:
- Content Management Server 2001 Service Pack 1
- Content Management Server 2002 Service Pack 2

- Impact: Remote Code Execution
- Version Number: 1.0

MS07-019 - Vulnerability in Universal Plug and Play Could Allow
Remote Code Execution (931261)

- Affected Software:
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2

- Impact: Remote Code Execution
- Version Number: 1.0

MS07-020 - Vulnerability in Microsoft Agent Could Allow Remote Code
Execution (932168)

- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2

- Impact: Remote Code Execution
- Version Number: 1.0

MS07-021 - Vulnerabilities in CSRSS Could Allow Remote Code
Execution (930178)

- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 for Itanium-based Systems
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Vista
- Windows Vista x64 Edition

- Impact: Remote Code Execution
- Version Number: 1.0

Important Security Bulletins
============================

MS07-022 - Vulnerability in Windows Kernel Could Allow Elevation
of Privilege (931784)

- Affected Software:
- Windows 2000 Service Pack 4
- Windows XP Service Pack 2
- Windows Server 2003
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2

- Impact: Elevation of Privilege
- Version Number: 1.0

Update Availability:
===================
Updates are available to address these issues.
For additional information, including Technical Details, Workarounds, answers to Frequently Asked Questions, and Update Deployment Information please read the Microsoft Security Bulletin Summary for this month at: http://go.microsoft.com/fwlink/?LinkId=87050

Support:
========
Technical support is available from Microsoft Product Support Services at 1-866-PC SAFETY (1-866-727-2338). There is no charge for support calls associated with security updates.
International customers can get support from their local Microsoft subsidiaries. Phone numbers for international support can be found
at: http://support.microsoft.com/common/international.aspx

Microsoft Support Lifecycle for Business and Developer Software ===============================================================
The Microsoft Support Lifecycle policy provides consistent and predictable guidelines for product support availability at the time that the product is released. Under this policy, Microsoft will offer a minimum of ten years of support. This includes five years of Mainstream Support and five years of Extended Support for Business and Developer products. Microsoft will continue to provide security update support, at a supported Service Pack level, for a minimum of ten years through the Extended support phase. For more information about the Microsoft Support Lifecycle, visit http://support.microsoft.com/lifecycle/ or contact your Technical Account Manager.

Additional Resources:
=====================
* Microsoft has created a free monthly e-mail newsletter containing
valuable information to help you protect your network. This
newsletter provides practical security tips, topical security
guidance, useful resources and links, pointers to helpful
community resources, and a forum for you to provide feedback
and ask security-related questions.
You can sign up for the newsletter at:

http://www.microsoft.com/technet/security/secnews/default.mspx

* Microsoft has created a free e-mail notification service that
serves as a supplement to the Security Notification Service
(this e-mail). The Microsoft Security Notification Service:
Comprehensive Version. It provides timely notification of any
minor changes or revisions to previously released Microsoft
Security Bulletins and Security Advisories. This new service
provides notifications that are written for IT professionals and
contain technical information about the revisions to security
bulletins. To register visit the following Web site:

http://www.microsoft.com/technet/security/bulletin/notify.mspx

* Join Microsoft's webcast for a live discussion of the technical
details of these security bulletins and steps you can take
to protect your environment. Details about the live webcast
can be found at:

www.microsoft.com/technet/security/bulletin/summary.mspx

The on-demand version of the webcast will be available 24 hours
after the live webcast at:

www.microsoft.com/technet/security/bulletin/summary.mspx

* Protect your PC: Microsoft has provided information on how you
can help protect your PC at the following locations:

http://www.microsoft.com/security/protect/

If you receive an e-mail that claims to be distributing a
Microsoft security update, it is a hoax that may be distributing a
virus. Microsoft does not distribute security updates through
e-mail. You can learn more about Microsoft's software distribution
policies here:

http://www.microsoft.com/technet/security/bulletin/info/swdist.mspx


Acknowledgments:
================
Microsoft thanks the following for working with us to protect
customers:

- - Alexander Sotirov of Determina Security Research
(http://www.determina.com/) for reporting an issue described in MS07-017.

- - McAfee (http://www.mcafee.com/ ) for working with us on an issue described in MS07-017.

- - iDefense Labs (http://labs.idefense.com/) for reporting an issue described in MS07-017.

- - Shaun Colley of NGS Software (http://www.ngssoftware.com/) for reporting an issue described in MS07-017.

- - Thomas Phinney of Adobe Systems (http://www.adobe.com/) for reporting an issue described in MS07-017.

- - Sergey Svinolobov for reporting an issue described in MS07-017.

- - Martyn Tovey of Netcraft (http://news.netcraft.com/) for reporting an issue described in MS07-018.

- - Greg MacManus of iDefense Labs (http://labs.idefense.com/) for reporting an issue described in MS07-019.

- - JJ Reyes and Carsten Eiram of Secunia (http://secunia.com/) for reporting an issue described in MS07-020.

- - Tim Garnett of Determina Security Research
(http://www.determina.com/) for reporting an issue described in MS07-021.

- - eEye (http://www.eeye.com/) for reporting an issue described in MS07-021.

- - eEye (http://www.eeye.com/) for reporting an issue described in MS07-022.

********************************************************************
THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.
********************************************************************


-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1
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=F93F
-----END PGP SIGNATURE-----

______________________________________________________________________________

CPNI values your feedback.

1. Which of the following most reflects the value of the advisory to you?
(Place an 'X' next to your choice)

Very useful:__ Useful:__ Not useful:__

2. If you did not find it useful, why not?


3. Any other comments? How could we improve our advisories?


Thank you for your contribution.
______________________________________________________________________________
CPNI wishes to acknowledge the contributions of Microsoft for the information contained in this advisory.
______________________________________________________________________________
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |