March, 2009

  • March 2009 Monthly Bulletin Release

    Hi, Bill here, The March 2009 release contains 3 new bulletins, 1 of which has a maximum severity of "Critical". MS09-006 - Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690) MS09-007 - Vulnerability in SChannel Could Allow Spoofing (960225) MS09-008 - Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238) We also revised bulletin MS08-052 Vulnerabilities in GDI+ Could Allow Remote Code Execution (954593) , to note a revision to some of...
  • Update on Conficker.D

    We’ve received a lot of questions from customers about April 1, 2009 and the latest Conficker variant discovered earlier this month, Worm:Win32/Conficker.D (also known as Conficker.C or Downadup.C by some other companies). I wanted to let you know that we’ve put some new information up about Conficker.D today from our work with our partners in the Conficker Working Group. We hope this new information helps you better understand the current situation. While any malware attack is cause for concern...
  • Security Bulletin Overview Video - March 2009

    Hi Everyone, This month we are adding another new video feature. In addition to the entire security bulletin webcast recordings being posted for you to playback (available later this week), we are also providing a short, five to ten minute overview of the bulletins we have released. These clips will focus on the severity of the issue and the exploitability index ratings we have assigned them in order to help you get a quick understanding of the impact to your environment. For the March 2009...
  • March 2009 Advanced Notification

    Hello, Bill here. I wanted to let you know that we just posted our Advance Notification for next week’s bulletin release, scheduled for Tuesday, March 10, 2009 around 10 a.m. Pacific Standard Time. As part of this month’s security bulletin release process, we will issue three security bulletins – one rated ‘Critical’ and two rated ‘Important’ – to address vulnerabilities in Microsoft Windows. Depending on the bulletin, a restart may be required. The updates will be detectable using the Microsoft...
  • MS09-008 Protection

    Hi Bill here, You may have seen reports regarding the effectiveness of Microsoft Security Bulletin MS09-008 . I wanted to let everyone know that we have thoroughly reviewed these reports, and customers who’ve deployed this update are protected from the four vulnerabilities outlined in the bulletin. We’ve also been collaborating with several researchers regarding the effectiveness of this update, as it is a complex issue, and have released more details about these vulnerabilities and how...
  • March 2009 Security Bulletin Webcast Videos

    Hey everyone, Jerry Bryant here. I am back with the videos from yesterday’s security bulletin webcast. We got great responses to the overview video we posted on Tuesday. To compliment that, the videos below go in to more detail on each bulletin and the exploitability index . As always, please plan to attend our monthly security bulletin webcast live if you can as we staff those with subject matter experts to answer the questions you have about the bulletins we released. In part 1 , Adrian Stone and...
  • Security Bulletin Webcast Questions and Answers - March 2009

    Hi, During this month’s webcast we were able to address 18 questions in the time allotted. Most of the questions centered on the MS09-008, the DNS and WINS Server bulletin. We did address some additional questions regarding MS09-006, the Windows kernel bulletin, and the Malicious Software Removal Tool (MSRT). Here is the link to the full Q&A so you can see all of the answers that were provided for these great questions: http://blogs.technet.com/msrc/pages/monthly-security-bulletin...
  • Monthly Security Bulletin Webcast Q&A - March 2009

    Hosts: Adrian Stone, Senior Security Program Manager Lead Steve Adegbite, Senior Security Program Manager Lead Website: TechNet/security Chat Topic: March 2009 Security Bulletin Date: Wednesday, March 11, 2009 Q: The Bulletin Summary received yesterday indicated all MS09-008 vulnerabilities were set to Exploitability Level 2. When did this change and why? A: MS09-008 should still have an Exploitability Index (XI) rating of 2 for all listed CVEs. Q: What is the most likely...