October, 2008

  • Update on MS08-067 and Microsoft Security Advisory 958963

    Hi, this is Christopher Budd. As we go into the weekend I wanted to take a moment and give you an update on the latest information around MS08-067 and Microsoft Security Advisory 958963 . Essentially there is no new information to report. We’ve seen no significant changes in the threat landscape since our posting of Microsoft Security Advisory 958963 on Monday. We continue to see strong, rapid and wide deployments of the security update worldwide. We also still have no reports of issues with the...
  • Microsoft Security Advisory 958963

    Hey folks, Mike Reavey here, It’s been almost five days since we originally released MS08-067 , and our tracking shows that security deployments remain strong. We’re also still unaware of any application compatibility issues with this update. Like we’ve said, we’re continuing to watch the threat environment. Yesterday , we said that our analysis of public exploit code that was available showed it would always result in a denial of service. Today, we’ve identified the public availability of...
  • Out-Of-Band Security Bulletin Webcast Questions and Answers - MS08-067

    Hi, On Thursday, October 23, 2008, Microsoft released an Out-Of-Band Security Bulletin (MS08-067). To meet the customer demand for information relating to this release, Microsoft conducted three customer webcasts. Two of these webcasts were conducted on Thursday, October 23 rd and the other on Friday, October 24 th . The link below will direct you to a collection of all questions answered during the three webcasts. Here is the link to the full Q&A so you can see all of the answers...
  • Microsoft out-of-band Security Bulletin (MS08-067) Webcast Q&A

    Register now for the November 2008 Security Bulletin Webcast Security Bulletin Webcast Q&A Index Hosts: Christopher Budd, Security Response Communications Lead Adrian Stone, Lead Security Program Manager (MSRC) Website: TechNet/security Chat Topic: Microsoft out-of-band Security Bulletin (MS08-067) TechNet Webcast Date: Thursday, October 23, 2008 and Friday, October 24, 2008 Note: The below questions were submitted from webcast attendees and are not necessarily in the order...
  • Update on MS08-067

    Hello everyone, This is Christopher Budd once again. As I said in my last post , we aren’t done when we release an update. Our response teams are constantly watching the situation around the world to understand as much as possible what’s going on with things like the threat environment and the state of security update deployments. Based on some of our latest situation reports I wanted to provide you with an update as of this morning. You’ve told us it’s helpful for you to have this information...
  • Additional Microsoft Security Bulletin Webcasts and Information Available for MS08-067

    Hi All, Mike Reavey, here. Just wanted to let you know that based on customer feedback, w e have set up two additional Security Bulletin Webcasts related to this o ut - of -b and release. Details are below: · For the Thursday , 10/23/08 , 5:00 PM Webcast , c ustomers can register at: http://msevents.microsoft.com/CUI/EventDetail.aspx?EventID=1032394183&Culture=en-US · For the Friday , 10/24/08 , 11:00 AM Webcast , c ustomers can register at: http://msevents.microsoft.com/CUI...
  • MS08-067 Released

    Hi, This is Christopher Budd. Following up on my post from last night, I wanted to let you know that we’ve released MS08-067 today. This security update resolves a vulnerability in the Server service that affects all currently supported versions of Windows. Windows XP and older versions are rated as “Critical” while Windows Vista and newer versions are rated as “Important”. Because the vulnerability is potentially wormable on those older versions of Windows, we’re encouraging customers to test...
  • Advance Notification for Out-of-Band Release

    Hello this is Christopher Budd, I wanted to let you know that we’ve just posted an Advance Notification for an out-of-band bulletin release. We plan to release one Windows security bulletin with a maximum severity of Critical; scheduled for a target time of 10:00 a.m. PT on Thursday Oct. 23, 2008. A restart will be required. We have scheduled a special webcast to cover this release. This will also be on Thursday at 1 p.m. PT. You can register for it here . Thanks Christopher *This...
  • Monthly Security Bulletin Webcast Q&A – October, 2008

    Register now for the Novemberr 2008 Security Bulletin Webcast Security Bulletin Webcast Q&A Index Hosts: Christopher Budd, Security Response Communications Lead Adrian Stone, Lead Security Program Manager (MSRC) Website: TechNet/security Chat Topic: October 2008 Security Bulletin Date: Wednesday, October 15, 2008 Q: What is the difference between Microsoft Update and Windows Update as patch mechanisms? A: Windows Update only provides detection and deployment support...
  • Security Bulletin Webcast Questions and Answers - October 2008

    Hi, During this month’s webcast we were able to address 18 questions in the time allotted. The questions were spread fairly evenly across all bulletins, as well as the Exploitability Index that was released for the first time with this Bulletin Release Cycle. Here is the link to the full Q&A so you can see all of the answers that were provided for these great questions: http://blogs.technet.com/msrc/pages/monthly-security-bulletin-webcast-q-a-October-2008.aspx Also, here...