US-CERT Technical Cyber Security Alert TA09-069A -- Microsoft Updates for Multiple Vulnerabilities

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


                    National Cyber Alert System

              Technical Cyber Security Alert TA09-069A


Microsoft Updates for Multiple Vulnerabilities

   Original release date: March 10, 2009
   Last revised: --
   Source: US-CERT


Systems Affected

     * Microsoft Windows
     * Windows Server


Overview

   Microsoft has released updates that address vulnerabilities in
   Microsoft Windows and Windows Server.


I. Description

   As part of the Microsoft Security Bulletin Summary for March 2009,
   Microsoft released updates to address vulnerabilities that affect
   Microsoft Windows and Windows Server.


II. Impact

   A remote, unauthenticated attacker could gain elevated privileges,
   poison the DNS cache, execute arbitrary code, or cause a vulnerable
   application to crash.


III. Solution

   Microsoft has provided updates for these vulnerabilities in the
   Microsoft Security Bulletin Summary for March 2009. The security
   bulletin describes any known issues related to the updates.
   Administrators are encouraged to note these issues and test for any
   potentially adverse effects. Administrators should consider using
   an automated update distribution system such as Windows Server
   Update Services (WSUS).


IV. References

 * Microsoft Security Bulletin Summary for March 2009 -
   <http://www.microsoft.com/technet/security/bulletin/ms09-mar.mspx>

 * Microsoft Windows Server Update Services -
   <http://technet.microsoft.com/en-us/wsus/default.aspx>

 * US-CERT Vulnerability Notes for Microsoft March 2009 updates -
   <http://www.kb.cert.org/vuls/byid?searchview&query=ms09-mar>

 ____________________________________________________________________

   The most recent version of this document can be found at:

     <http://www.us-cert.gov/cas/techalerts/TA09-069A.html>
 ____________________________________________________________________

   Feedback can be directed to US-CERT Technical Staff. Please send
   email to <cert@xxxxxxxx> with "TA09-069A Feedback VU#319331" in
   the subject.
 ____________________________________________________________________

   For instructions on subscribing to or unsubscribing from this
   mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
 ____________________________________________________________________

   Produced 2009 by US-CERT, a government organization.

   Terms of use:

     <http://www.us-cert.gov/legal.html>
 ____________________________________________________________________

Revision History
  
  March 10, 2009: Initial release


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBSbbFV3IHljM+H4irAQL3sQgAh6Z6TXMAYoaf5C6IZu28OjS5SvXWgseT
pGXdeira1h3GsfK509rvholzbi9tMO8m1Xk+nO8ct7/NrKu13T3wudERyqxTN120
XMRVuNOuVsKLNrRYciAw+sl8d6cYQrwmVHDLRP1x8LOxlTl2lEuPwj808Q4TiKbz
zecw7rOAXEHPxwy8sWivuFbIqPVWKMY2Cl5bXN7/M63FHD3wC0arw1q2EoUUrZCD
/GNusyesTps3SNGZc5tHLDLS2pdDbIlI+Yf2BrsUV8nS8z9FqgPjtkdkiOC8ZLYP
gBwLnjcH2TDIf6dW1GzOVX0QKKB6mcoPzks5xtJ0S4f3FSULW2mtqQ==
=ujTi
-----END PGP SIGNATURE-----

[Index of Archives]     [Fedora Announce]     [Linux Crypto]     [Kernel]     [Netfilter]     [Bugtraq]     [USB]     [Fedora Security]

  Powered by Linux