-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Alert System
Technical Cyber Security Alert TA07-DDDA
Microsoft Updates for Multiple Vulnerabilities
Original release date: June 10, 2008
Last revised: --
Source: US-CERT
Systems Affected
* Microsoft Windows
* Microsoft Windows Server
* Microsoft Internet Explorer
Overview
Microsoft has released updates that address vulnerabilities in
Microsoft Windows, Windows Server, and Internet Explorer.
I. Description
Microsoft has released updates to address vulnerabilities that
affect Microsoft Windows, Windows Server, and Internet Explorer as
part of the Microsoft Security Bulletin Summary for June 2008. The
most severe vulnerabilities could allow a remote, unauthenticated
attacker to execute arbitrary code. For more information, see the
US-CERT Vulnerability Notes Database.
II. Impact
A remote, unauthenticated attacker could execute arbitrary code or
cause a vulnerable system to crash.
III. Solution
Apply updates from Microsoft
Microsoft has provided updates for these vulnerabilities in the
June 2008 Security Bulletin Summary. The security bulletin
describes any known issues related to the updates. Administrators
are encouraged to note these issues and test for any potentially
adverse effects. Administrators should consider using an automated
update distribution system such as Windows Server Update Services
(WSUS).
IV. References
* US-CERT Vulnerability Notes for Microsoft June 2008 updates -
<http://www.kb.cert.org/vuls/byid?searchview&query=ms08-jun>
* Microsoft Security Bulletin Summary for June 2008 -
<http://www.microsoft.com/technet/security/bulletin/
ms08-jun.mspx>
* Microsoft Update -
<https://www.update.microsoft.com/microsoftupdate/>
* Windows Server Update Services -
<http://www.microsoft.com/windowsserversystem/updateservices/
default.mspx>
____________________________________________________________________
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/techalerts/TA08-162B.html>
____________________________________________________________________
Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@xxxxxxxx> with "TA08-162B Feedback VU#926531" in the
subject.
____________________________________________________________________
For instructions on subscribing to or unsubscribing from this
mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
____________________________________________________________________
Produced 2008 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
____________________________________________________________________
Revision History
June 10, 2008: Initial release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iQEVAwUBSE7lp3IHljM+H4irAQJejQf/XAoOAqifuWYEa+ZjmJokKalvy0JXEFvh
9XYjz9xlhScFiWM302apc11b7NFjLLteS2bLtBhC3+IP4Fa9FwbuzvLDlAWbQO+K
VOeWBKNzOxtR8HRDYXeenmC3tkibdLT1JWiOH3g778HcFme0RRrlAdZkMe192KZO
eCKg60lH2l2ljo+nXBuuA88QP3ej5MhxAoZpkeJmGml4jXhRzliKOHyT0Xd+7C3n
LtpNJEgNOlIIln5htOWiDtboMejd+SRGElCfkuCxxT9WNJxUTSCmc2wNU7rzVJa/
huqltEBnkcY3n9qrS+ys1ORBqk4/Aol+J5bfEoKq+cVi+gTDd+JA1w==
=8uVN
-----END PGP SIGNATURE-----
