This month we have quite a few security bulletins for you to consider. Please see the details below for links and more information.
If you want to see a summary of these bulletins please click here.
New Security Advisories
We are also releasing two new security advisories. These were released on June 9th 2009. Details are below.
Customers who are joined to a domain and have a DNS suffix search list configured on their system are not at risk of inadvertently treating external systems as though they were internal. Microsoft encourages all enterprise customers to set DNS suffix search lists on client systems in order to ensure all DNS queries stay within organizational boundaries.
In most cases, home users who are not members of a domain do not use DNS devolution and therefore are not exposed to this risk. Home users who are not members of a domain but have configured a primary DNS suffix, however, do use DNS devolution and are at risk of inadvertently treating external systems as though they were internal.
Customers whose DNS domain name consists of two labels are not exposed to this risk. An example of a customer who is not affected is contoso.com or fabrikam.gov, where "contoso" and "fabrikam" are customer registered domain names under their respective ".com" and ".gov" top-level domains (TLDs).
Microsoft is releasing a new set of ActiveX Kill Bits with this advisory. The update includes a kill bit from a previously published Microsoft Cumulative Update:
The update also includes kill bits for the following third-party software:
And as per normal we are release an updated version of the Microsoft Windows Malicious Software Removal Tool. Get more details on that here.
PingBack from http://rim.wsww.co.uk/2009/06/10/jeff-alexanders-weblog-microsoft-security-bulletin-june-2009/