Microsoft Security Bulletins for February 2007

02-13-2007

The Microsoft Security Bulletins for February, 2007 has been released.
6 Critical
.. MS07-008 - Vulnerability in HTML Help ActiveX Control Could Allow Remote
Code Execution (928843)
.. MS07-009 - Vulnerability in Microsoft Data Access Components Could Allow
Remote Code Execution(927779)
.. MS07-010 - Vulnerability in Microsoft Malware Protection Engine Could
Allow Remote Code Execution (932135)
.. MS07-014 - Vulnerabilities in Microsoft Word Could Allow Remote Code
Execution (929434)
.. MS07-015 - Vulnerabilities in Microsoft Office Could Allow Remote Code
Execution (932554)
.. MS07-016 - Cumulative Security Update for Internet Explorer (928090)
6 Updates
.. MS07-005 - Vulnerability in Step-by-Step Interactive Training Could Allow
Remote Code Execution (923723)
.. MS07-006 - Vulnerability in Windows Shell Could Allow Elevation of
Privilege (928255)
.. MS07-007 - Vulnerability in Windows Image Acquisition Service Could Allow
Elevation of Privilege (927802)
.. MS07-011 - Vulnerability in Microsoft OLE Dialog Could Allow Remote Code
Execution (926436)
.. MS07-012 - Vulnerability in Microsoft MFC Could Allow Remote Code
Execution (924667)
.. MS07-013 - Vulnerability in Microsoft RichEdit Could Allow Remote Code
Execution (918118)

The Microsoft Security Bulletin Summary for February, 2007 is at
http://www.microsoft.com/technet/sec.../ms07-feb.mspx. An
end-user version of this information is available at
http://www.microsoft.com/athome/secu...ns/200702.mspx

Security Updates Support: If you have any questions regarding the patch or
its implementation, you should contact Product Support Services in the
United States at 1-866-PCSAFETY. International customers should contact
their local subsidiary.

Update sources: As always, download the updates only from the vendors'
website - visit Windows Update and Office Update or Microsoft Update. You
may also get the updates thru Automatic Updates functionality in Windows.
Note: Don't be a victim of spoofed emails. Read "How to tell whether a
security e-mail message is really from Microsoft"
http://www.microsoft.com/athome/secu...uine_mail.mspx

Recommendations: Microsoft advises customers to install the latest product
releases, security updates, and service packs to remain as secure as
possible. Older products, such as Microsoft Windows NT 4.0, may not meet
today's more demanding security requirements. It may not be possible for
Microsoft to provide security updates for older products. More info at
Support Lifecycle website.
http://support.microsoft.com/lifecycle/

Webcast: Microsoft will host a webcast tomorrow. The webcast focuses on
addressing your questions and concerns about the security bulletins.
Therefore, most of the live webcast is aimed at giving you the opportunity
to ask questions and get answers from their security experts.
http://msevents.microsoft.com/CUI/We...CountryCode=US

Security Tool: Find out if you are missing important security updates by
using MBSA.
http://www.microsoft.com/technet/sec.../mbsahome.mspx

--
Regards,
Donna Buenaventura
Windows Security MVP
w: http://cou.dozleng.com
b: http://msmvps.com/donna

02-13-2007

Ugh.. so many posts :-/
Sorry!
--
Regards,
Donna Buenaventura
Windows Security MVP
w: http://cou.dozleng.com
b: http://msmvps.com/donna

02-13-2007

Well, there are a LOT of updates <w> Unfortunately, as of this moment,
all of the links are NOT live/correct on this page:
http://www.microsoft.com/technet/sec.../ms07-feb.mspx
Some links are not live or go to the wrong pages. These are the ones
I've found that have that issue :

Cumulative Security Update for Internet Explorer (928090)
http://go.microsoft.com/fwlink/?LinkId=79655

Vulnerability in Windows Image Acquisition Service Could Allow Elevation
of Privilege (927802)
http://go.microsoft.com/fwlink/?LinkId=77834

Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255)
http://go.microsoft.com/fwlink/?LinkId=81736

Plus, the Security Bulletin and Hotfix page has yet to be updated.

ALL of the updates CAN be located at the MS Download Center.
Enter the KB number into the Search field to obtain them.
http://www.microsoft.com/downloads/search.asp

MowGreen [MVP 2003-2007]
===============
*-343-* FDNY
Never Forgotten
===============

Donna Buenaventura wrote:

> Ugh.. so many posts :-/
> Sorry!

02-14-2007

Please, what OS do these updates apply to??

"Donna Buenaventura" <dbuenaventura@mvps.org> wrote in message
news:AA6D8552-0ACD-41CB-B720-DC7558EA4F3B@microsoft.com...
Ugh.. so many posts :-/
Sorry!
--
Regards,
Donna Buenaventura
Windows Security MVP
w: http://cou.dozleng.com
b: http://msmvps.com/donna

02-14-2007

You'll need to read the details of each bulletin, I'm afraid.

Bulletins may apply to any supported OS: Win2K SP4 (with exceptions), WinXP
SP2, WinXP x64, Win2K03 Server, and Windows Vista.
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE, OE, Security, Shell/User)

Nameless wrote:
> Please, what OS do these updates apply to??
>
>
> "Donna Buenaventura" <dbuenaventura@mvps.org> wrote in message
> news:AA6D8552-0ACD-41CB-B720-DC7558EA4F3B@microsoft.com...
> Ugh.. so many posts :-/
> Sorry!

02-13-2007	#1 (permalink)
Donna Buenaventura Guest n/a posts	Microsoft Security Bulletins for February 2007 The Microsoft Security Bulletins for February, 2007 has been released. 6 Critical .. MS07-008 - Vulnerability in HTML Help ActiveX Control Could Allow Remote Code Execution (928843) .. MS07-009 - Vulnerability in Microsoft Data Access Components Could Allow Remote Code Execution(927779) .. MS07-010 - Vulnerability in Microsoft Malware Protection Engine Could Allow Remote Code Execution (932135) .. MS07-014 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (929434) .. MS07-015 - Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (932554) .. MS07-016 - Cumulative Security Update for Internet Explorer (928090) 6 Updates .. MS07-005 - Vulnerability in Step-by-Step Interactive Training Could Allow Remote Code Execution (923723) .. MS07-006 - Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255) .. MS07-007 - Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802) .. MS07-011 - Vulnerability in Microsoft OLE Dialog Could Allow Remote Code Execution (926436) .. MS07-012 - Vulnerability in Microsoft MFC Could Allow Remote Code Execution (924667) .. MS07-013 - Vulnerability in Microsoft RichEdit Could Allow Remote Code Execution (918118) The Microsoft Security Bulletin Summary for February, 2007 is at http://www.microsoft.com/technet/sec.../ms07-feb.mspx. An end-user version of this information is available at http://www.microsoft.com/athome/secu...ns/200702.mspx Security Updates Support: If you have any questions regarding the patch or its implementation, you should contact Product Support Services in the United States at 1-866-PCSAFETY. International customers should contact their local subsidiary. Update sources: As always, download the updates only from the vendors' website - visit Windows Update and Office Update or Microsoft Update. You may also get the updates thru Automatic Updates functionality in Windows. Note: Don't be a victim of spoofed emails. Read "How to tell whether a security e-mail message is really from Microsoft" http://www.microsoft.com/athome/secu...uine_mail.mspx Recommendations: Microsoft advises customers to install the latest product releases, security updates, and service packs to remain as secure as possible. Older products, such as Microsoft Windows NT 4.0, may not meet today's more demanding security requirements. It may not be possible for Microsoft to provide security updates for older products. More info at Support Lifecycle website. http://support.microsoft.com/lifecycle/ Webcast: Microsoft will host a webcast tomorrow. The webcast focuses on addressing your questions and concerns about the security bulletins. Therefore, most of the live webcast is aimed at giving you the opportunity to ask questions and get answers from their security experts. http://msevents.microsoft.com/CUI/We...CountryCode=US Security Tool: Find out if you are missing important security updates by using MBSA. http://www.microsoft.com/technet/sec.../mbsahome.mspx -- Regards, Donna Buenaventura Windows Security MVP w: http://cou.dozleng.com b: http://msmvps.com/donna
My System Specs

02-13-2007	#2 (permalink)
Donna Buenaventura Guest n/a posts	Re: Microsoft Security Bulletins for February 2007 Ugh.. so many posts :-/ Sorry! -- Regards, Donna Buenaventura Windows Security MVP w: http://cou.dozleng.com b: http://msmvps.com/donna
My System Specs

02-13-2007	#3 (permalink)
MowGreen [MVP] Guest n/a posts	Re: Microsoft Security Bulletins for February 2007 Well, there are a LOT of updates <w> Unfortunately, as of this moment, all of the links are NOT live/correct on this page: http://www.microsoft.com/technet/sec.../ms07-feb.mspx Some links are not live or go to the wrong pages. These are the ones I've found that have that issue : Cumulative Security Update for Internet Explorer (928090) http://go.microsoft.com/fwlink/?LinkId=79655 Vulnerability in Windows Image Acquisition Service Could Allow Elevation of Privilege (927802) http://go.microsoft.com/fwlink/?LinkId=77834 Vulnerability in Windows Shell Could Allow Elevation of Privilege (928255) http://go.microsoft.com/fwlink/?LinkId=81736 Plus, the Security Bulletin and Hotfix page has yet to be updated. ALL of the updates CAN be located at the MS Download Center. Enter the KB number into the Search field to obtain them. http://www.microsoft.com/downloads/search.asp MowGreen [MVP 2003-2007] =============== -343- FDNY Never Forgotten =============== Donna Buenaventura wrote: > Ugh.. so many posts :-/ > Sorry!
My System Specs

02-14-2007	#4 (permalink)
Nameless Guest n/a posts	Re: Microsoft Security Bulletins for February 2007 Please, what OS do these updates apply to?? "Donna Buenaventura" <dbuenaventura@mvps.org> wrote in message news:AA6D8552-0ACD-41CB-B720-DC7558EA4F3B@microsoft.com... Ugh.. so many posts :-/ Sorry! -- Regards, Donna Buenaventura Windows Security MVP w: http://cou.dozleng.com b: http://msmvps.com/donna
My System Specs

02-14-2007	#5 (permalink)
PA Bear Guest n/a posts	Re: Microsoft Security Bulletins for February 2007 You'll need to read the details of each bulletin, I'm afraid. Bulletins may apply to any supported OS: Win2K SP4 (with exceptions), WinXP SP2, WinXP x64, Win2K03 Server, and Windows Vista. -- ~Robear Dyer (PA Bear) MS MVP-Windows (IE, OE, Security, Shell/User) Nameless wrote: > Please, what OS do these updates apply to?? > > > "Donna Buenaventura" <dbuenaventura@mvps.org> wrote in message > news:AA6D8552-0ACD-41CB-B720-DC7558EA4F3B@microsoft.com... > Ugh.. so many posts :-/ > Sorry!
My System Specs

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Microsoft Security Bulletins for December 2007	Donna Buenaventura	Vista security	15	12-14-2007 04:26 AM
Microsoft Security Bulletins for May 2007	Donna Buenaventura	Vista security	5	05-08-2007 09:40 PM
Microsoft Security Bulletins for February 2007	Donna Buenaventura	Vista security	2	02-13-2007 09:20 PM
Microsoft Security Bulletins for February 2007	Donna Buenaventura	Vista security	1	02-13-2007 05:35 PM
Microsoft Security Bulletins for February 2007	Donna Buenaventura	Vista security	0	02-13-2007 01:44 PM