As part of the monthly security bulletin release cycle, Microsoft provides advance notification to our customers concerning the number of new security updates being released, the products affected, the aggregate maximum severity, and information about detection tools relevant to the update. This is intended to help our customers plan for the deployment of these security updates more effectively.
On November 10, 2009, Microsoft is planning to release six new security bulletins. Below is a summary.
NEW BULLETIN SUMMARY Bulletin ID | Maximum Severity Rating | Vulnerability Impact | Restart Requirement | Affected Software* | Bulletin 1 | Critical | Remote Code Execution | Requires restart | Microsoft Windows Vista and Windows Server 2008 | Bulletin 2 | Critical | Remote Code Execution | Requires restart | Microsoft Windows 2000 | Bulletin 3 | Critical | Remote Code Execution | Requires restart | Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008 | Bulletin 4 | Important | Denial of Service | Requires restart | Microsoft Windows 2000, Windows XP, Windows Server 2003, and Windows Server 2008 | Bulletin 5 | Important | Remote Code Execution | May require restart | Microsoft Office Excel 2002, Excel 2003, Excel 2007, Office 2004 for Mac, Office 2008 for Mac, Open XML File Format converter for Mac, Excel Viewer, Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats | Bulletin 6 | Important | Remote Code Execution | May require restart | Microsoft Office Word 2002, Word 2003, Office 2004 for Mac, Office 2008 for Mac, Open XML File Format converter for Mac, Office Word Viewer, and Office Word Viewer 2003 |
|
* The list of affected software in the summary table is an abstract. To see the full list of affected components please click on the "Advance Notification Web Page" link below and review the "Affected Software" section. Although we do not anticipate any changes, the number of bulletins, products affected, restart information, and severities are subject to change until released. Advance Notification Web Page: The full version of the Microsoft Security Bulletin Advance Notification for this month can be found at http://www.microsoft.com/technet/security/bulletin/ms09-nov.mspx. Microsoft Windows Malicious Software Removal Tool: Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center. Monthly Security Bulletin Webcast: To address customer questions on these bulletins Microsoft will host a Webcast next Wednesday, at 11:00 A.M. Pacific Time (U.S. and Canada). Registration for this event and other details can be found at http://www.microsoft.com/technet/security/bulletin/summary.mspx.  REGARDING INFORMATION CONSISTENCY  We strive to provide you with accurate information in static (this mail) and dynamic (Web-based) content. Microsoft's security content posted to the Web is occasionally updated to reflect late-breaking information. If this results in an inconsistency between the information here and the information in Microsoft's Web-based security content, the information in Microsoft's Web-based security content is authoritative. If you have any questions regarding this alert please contact your Technical Account Manager or Application Development Consultant. Thank you, Microsoft CSS Security Team |
0 comments:
Post a Comment