Hey everyone - Adrian Stone here again, stepping in for Craig Gehre to provide a quick overview of the security updates we've released Today.  The full list of the updates released today are below, and, as always, additional information on the specific vulnerabilities resolved with this release are included within each security bulletin.   While we always recommend applying any updates rated "Critical" as soon as possible, we are recommending that customers give priority to MS06-040 for testing and deployment due to technical specifics around the vulnerability.
  • MS06-040 applies to Microsoft Windows and is rated critical.
  • MS06-041 applies to Microsoft Windows and is rated critical.
  • MS06-042 applies to Microsoft Windows and is rated critical.
  • MS06-043 applies to Microsoft Windows and is rated critical.
  • MS06-044 applies to Microsoft Windows and is rated critical.
  • MS06-045 applies to Microsoft Windows and is rated important.
  • MS06-046 applies to Microsoft Windows and is rated critical.
  • MS06-047 applies to Microsoft Office and is rated critical for earlier versions and important for more recent versions.
  • MS06-048 applies to Microsoft Office and is rated critical for earlier versions and important for more recent versions.
  • MS06-049 applies to Microsoft Windows and is rated important.
  • MS06-050 applies to Microsoft Windows and is rated important.
  • MS06-051 applies to Microsoft Windows and is rated critical.
Also - an additional point of clarification - its important to distinguish that while MS06-040 addresses a vulnerability in the Server Service it does not resolve the Denial of Service issue I spoke about earlier on the blog in the "Information About Public Postings Related to MS06-035" posting. We are still working on the security update for the Denial of Service issue and the report for it came in after we had completed our testing cycle for MS06-040. With the importance and potential severity previously mentioned regarding MS06-040 we felt it was important to get the security update for MS06-040 out as soon as possible. We'll continue working on the DoS issue and will release a security update once it's reached an appropriate level of quality.
 
And as a final reminder, don't forget to tune into the monthly technical webcast tomorrow at 11am Pacific Time with Christopher Budd and Mike Reavey discussing this months' updates to ask and get answers to any questions you may have on this release.
 
--Adrian
*This posting is provided "AS IS" with no warranties, and confers no rights.*