• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
    • Budfred

      PLEASE READ - Reversing upgrade   02/23/2017

      We have found that this new upgrade is somewhat of a disaster.  We are finding lots of glitches in being able to post and administer the forum.  Additionally, there are new costs associated with the upgrade that we simply cannot afford.  As a result, we have decided to reverse course and go back to the previous version of our software.  Since this will involve restoring it from a backup, we will lose posts that have been added since January 30 or possibly even some before that.    If you started a topic during that time, we urge you to make backups of your posts and you will need to start the topics over again after the change.  You can simply paste the copies of your posts that you created at that point.    If you joined the forum this month, you will need to re-register since your membership will be lost along with the posts.  Since you have a concealed password, we cannot simply restore your membership for you.   We are going to backup as much as we can so that it will reduce inconvenience for our members.  Unfortunately we cannot back everything up since much will be incompatible with the old version of our software.  We apologize for the confusion and regret the need to do this even though it is not viable to continue with this version of the software.   We plan to begin the process tomorrow evening and, if it goes smoothly, we shouldn't be offline for very long.  However, since we have not done this before, we are not sure how smoothly it will go.  We ask your patience as we proceed.   EDIT: I have asked our hosting service to do the restore at 9 PM Central time and it looks like it will go forward at that time.  Please prepare whatever you need to prepare so that we can restore your topics when the forum is stable again.
Sign in to follow this  
Followers 0
AplusWebMaster

MS Security Bulletin Summary - December 2009

2 posts in this topic

FYI...

 

- http://www.microsoft.com/technet/security/Bulletin/MS09-dec.mspx

December 08, 2009 - "This bulletin summary lists security bulletins released for December 2009..." (Total of -6-)

 

Critical -3-

 

Microsoft Security Bulletin MS09-071 - Critical

Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution (974318)

- http://www.microsoft.com/technet/security/bulletin/MS09-071.mspx

Maximum Severity Rating: Critical

Vulnerability Impact: Remote Code Execution

Restart Requirement: Requires restart

Affected Software: Microsoft Windows

 

Microsoft Security Bulletin MS09-074 - Critical

Vulnerability in Microsoft Office Project Could Allow Remote Code Execution (967183)

- http://www.microsoft.com/technet/security/bulletin/MS09-074.mspx

Maximum Severity Rating: Critical

Vulnerability Impact: Remote Code Execution

Restart Requirement: May require restart

Affected Software: Microsoft Office

 

Microsoft Security Bulletin MS09-072 - Critical

Cumulative Security Update for Internet Explorer (976325)

- http://www.microsoft.com/technet/security/bulletin/MS09-072.mspx

Maximum Severity Rating: Critical

Vulnerability Impact: Remote Code Execution

Restart Requirement: Requires restart

Affected Software: Microsoft Windows ...

Revisions:

• V1.0 (December 8, 2009): Bulletin published.

• V1.1 (December 9, 2009): Corrected a reference to Microsoft Knowledge Base Article 976749 in the section, Frequently Asked Questions (FAQ) Related to This Security Update. Also corrected, in the Security Update Deployment section, the registry key for verification of the update for Internet Explorer 7 for all supported x64-based editions of Windows XP.

 

Important -3-

 

Microsoft Security Bulletin MS09-069 - Important

Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (974392)

- http://www.microsoft.com/technet/security/bulletin/MS09-069.mspx

Maximum Severity Rating: Important

Vulnerability Impact: Denial of Service

Restart Requirement: Requires restart

Affected Software: Microsoft Windows

 

Microsoft Security Bulletin MS09-070 - Important

Vulnerabilities in Active Directory Federation Services Could Allow Remote Code Execution (971726)

- http://www.microsoft.com/technet/security/bulletin/MS09-070.mspx

Maximum Severity Rating: Important

Vulnerability Impact: Remote Code Execution

Restart Requirement: Requires restart

Affected Software: Microsoft Windows

 

Microsoft Security Bulletin MS09-073 - Important

Vulnerability in WordPad and Office Text Converters Could Allow Remote Code Execution (975539)

- http://www.microsoft.com/technet/security/bulletin/MS09-073.mspx

Maximum Severity Rating: Important

Vulnerability Impact: Remote Code Execution

Restart Requirement: Requires restart

Affected Software: Microsoft Windows, Microsoft Office

___

 

Severity and Exploitability Index

- http://blogs.technet.com/photos/msrcteam/images/3299186/original.aspx

December 08, 2009

 

Deployment priority

- http://blogs.technet.com/photos/msrcteam/images/3299187/original.aspx

December 08, 2009

___

 

MSRT

- http://support.microsoft.com/?kbid=890830

December 8, 2009 - Revision: 67.0

(Recent additions)

Win32/FakeScanti - October 2009 (V 3.0) Moderate

Win32/FakeVimes - November 2009 (V 3.1) Moderate

Win32/PrivacyCenter - November 2009 (V 3.1) Moderate

Win32/Hamweq - December 2009 (V 3.2) Moderate

___

 

ISC Analysis

- http://isc.sans.org/diary.html?storyid=7711

Last Updated: 2009-12-10 19:42:30 UTC

___

 

Microsoft Office Project Memory Validation Vuln

- http://secunia.com/advisories/37588/2/

... Original Advisory: http://www.microsoft.com/technet/security/bulletin/MS09-074.mspx

___

 

Microsoft WordPad / Office Text Converters Memory Corruption Vuln

- http://secunia.com/advisories/37580/2/

... Original Advisory: http://www.microsoft.com/technet/security/bulletin/MS09-073.mspx

___

 

Internet Explorer multiple vulns

- http://secunia.com/advisories/37448/2/

... Original Advisory: http://www.microsoft.com/technet/security/Bulletin/MS09-072.mspx

___

 

Microsoft Windows Internet Authentication Service Vuln

- http://secunia.com/advisories/37579/2/

... Original Advisory: http://www.microsoft.com/technet/security/bulletin/MS09-071.mspx

 

Microsoft Windows MS-CHAP Authentication Bypass

- http://secunia.com/advisories/37543/2/

... Original Advisory: http://www.microsoft.com/technet/security/bulletin/MS09-071.mspx

___

 

Microsoft Windows Local Security Authority Subsystem DoS

- http://secunia.com/advisories/37524/2/

... Original Advisory: http://www.microsoft.com/technet/security/Bulletin/MS09-069.mspx

___

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

Also now showing up at the MS Update site:

 

AppCompat update for Indeo codec

- http://support.microsoft.com/kb/955759

December 9, 2009 - Revision: 3.0

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4311

- http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4310

Last revised: 12/15/2009

 

Extended Protection for Authentication in Microsoft Windows HTTP Services (WinHTTP)

- http://support.microsoft.com/kb/971737

December 8, 2009 - Revision: 1.0

 

Extended Protection for Authentication in the HTTP Protocol Stack (http.sys)

- http://support.microsoft.com/kb/970430

December 8, 2009 - Revision: 1.0

 

:question: :question: :question:

Edited by apluswebmaster

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0