Please see details below of the August 2009 security bulletin. The bulletins are being released on August 11th 2009 PST. Please click each bulletin ID for more details on the update
You can get summaries of these bulletins here.
Microsoft Windows Malicious Software Removal Tool
We are also releasing an updated version of the Windows Malicious Software Removal Tool. You can get more details at the MSRT Website.
New Security Advisory
In addition to the new security bulletins outlined above we are also releasing on new security advisory. Below is an overview.
Microsoft is announcing the availability of a new feature, Extended Protection for Authentication, on the Windows platform. This feature enhances the protection and handling of credentials when authenticating network connections using Integrated Windows Authentication (IWA).
The update itself does not directly provide protection against specific attacks such as credential forwarding, but allows applications to “opt-in” to Extended Protection for Authentication. This advisory briefs developers and system administrators on this new functionality and how it can be deployed to help protect authentication credentials.
Q: Is this a security vulnerability that requires Microsoft to issue a security update? A: No, this is not a security vulnerability that requires Microsoft to issue a security update. This feature requires optional configuration that some customers may choose to deploy. Enabling this feature is not appropriate for all customers. For more information about this feature and how to appropriately configure it, see Microsoft Knowledge Base Article 973811. This feature is already included in Windows 7 and Windows Server 2008 R2.
Microsoft Security Advisory 973811 - Extended Protection for Authentication: http://www.microsoft.com/technet/security/advisory/973811.mspx
Microsoft KB Article 973811: http://support.microsoft.com/kb/973811
Microsoft Security Response Center (MSRC) Blog: http://blogs.technet.com/msrc/
Microsoft Malware Protection Center (MMPC) Blog: http://blogs.technet.com/mmpc/
Security Research & Defense (SRD) Blog: http://blogs.technet.com/srd/
One of the SIDE effects of the latter MS09-038 if loading them onto a computer with Windows Media Player Series 9.0 Is that it WILL FORCE you to UPGRADE to Windows Media Player version 11.0 AFTER the RESTART.
We are Skeptical about loading Microsoft Updates without testing. We refuse to be BETA Testers unwillingly for their software; on most occasions thats what you are.
Windows XP Pro Serv Pack 2 + HOLDING, I.E. 6.0 and HOLDING Adobe FLASH Version 9.0...Why update to increase MORE FLASH ADVERTISING?