Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information About Microsoft Out-of-Band Security Bulletins.

Published byAubrey Craig Modified over 8 years ago

Similar presentations

Presentation on theme: "Information About Microsoft Out-of-Band Security Bulletins."— Presentation transcript:

1 Information About Microsoft Out-of-Band Security Bulletins

2 What We Will Cover Review of Out-of-Band release:Review of Out-of-Band release: –New Security Bulletin –New Security Advisory ResourcesResources Questions and answersQuestions and answers

3 MS10-002: Cumulative Security Update for Internet Explorer (978207) CVESeverityExploitabilityCommentNote CVE-2009-4074Moderate1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0027Critical1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0244Critical1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0245Critical1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0246Critical1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0247Critical1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0248Critical1 Consistent exploit code likely. RCE Responsibly disclosed CVE-2010-0249Critical1 Consistent exploit code likely. RCE Publicly disclosed Affected Products All currently supported versions of Windows and Internet Explorer Deployment Priority 1 Main Target Workstations and Terminal Servers Possible Attack Vectors An attacker could host a specially crafted website designed to exploit these vulnerabilities through Internet Explorer.An attacker could host a specially crafted website designed to exploit these vulnerabilities through Internet Explorer. This constitutes a browse and own scenario.This constitutes a browse and own scenario. Impact of Attack An attacker who successfully exploited this vulnerability would gain the same rights as the logged on user.An attacker who successfully exploited this vulnerability would gain the same rights as the logged on user. Mitigating Factors An attacker would have no way to force a user to visit their malicious website.An attacker would have no way to force a user to visit their malicious website. By default, Internet Explorer on Windows Server 2003 and Windows Server 2008 runs in a restricted mode that is known as Enhanced Security Configuration.By default, Internet Explorer on Windows Server 2003 and Windows Server 2008 runs in a restricted mode that is known as Enhanced Security Configuration. By default, all supported versions of Microsoft Outlook, Microsoft Outlook Express, and Windows Mail open HTML e- mail messages in the Restricted sites zone.By default, all supported versions of Microsoft Outlook, Microsoft Outlook Express, and Windows Mail open HTML e- mail messages in the Restricted sites zone. Additional Information We are aware of targeted attacks against IE 6.We are aware of targeted attacks against IE 6. Windows Server when installed using server core is not affected.Windows Server when installed using server core is not affected.

4 Security Advisory 979682: Vulnerability in Windows Could Allow an Elevation in Privilege Microsoft is investigating new public reports of a vulnerability in the Windows kernel. We are not aware of attacks that try to use the reported vulnerability or of customer impact at this time.Microsoft is investigating new public reports of a vulnerability in the Windows kernel. We are not aware of attacks that try to use the reported vulnerability or of customer impact at this time. Microsoft released Security Advisory 979682 to provide mitigations and workarounds for this vulnerability.Microsoft released Security Advisory 979682 to provide mitigations and workarounds for this vulnerability. Microsoft is currently working towards an update to address this vulnerability.Microsoft is currently working towards an update to address this vulnerability. Mitigating Factors:Mitigating Factors: –An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. –Windows operating systems for x64-based and Itanium-based computers are not affected. Workaround: Disable the NTVDM subsystem (users will not be able to run 16-bit applications)Workaround: Disable the NTVDM subsystem (users will not be able to run 16-bit applications)

5 Bulletin Windows Update Microsoft Update MBSA 2.1.1 WSUS 3.0 SMS 2003 with SUIT SMS 2003 with ITMU SCCM 2007 MS10-002 YesYesYesYes No 1 YesYes 1.Yes for Internet Explorer 6.0 only in Windows XP SP2, Windows XP SP3 and Windows Server 2003 SP2 Detection & Deployment

6 Other Update Information BulletinRestartUninstallReplaces MS10-002 YesYesMS09-072

7 Resources Blogs Microsoft Security Response Center (MSRC) blog: http://blogs.technet.com/msrcMicrosoft Security Response Center (MSRC) blog: http://blogs.technet.com/msrc http://blogs.technet.com/msrc Security Research & Defense blog: http://blogs.technet.com/srdSecurity Research & Defense blog: http://blogs.technet.com/srd http://blogs.technet.com/srd Microsoft Malware Protection Center Blog: http://blogs.technet.com/mmpc/Microsoft Malware Protection Center Blog: http://blogs.technet.com/mmpc/ http://blogs.technet.com/mmpc/ Bulletins, Advisories, Notifications & Newsletters Security Bulletins Summary: www.microsoft.com/technet/security/bulletin/summary. mspxSecurity Bulletins Summary: www.microsoft.com/technet/security/bulletin/summary. mspx www.microsoft.com/technet/security/bulletin/summary. mspx www.microsoft.com/technet/security/bulletin/summary. mspx Security Bulletins Search: www.microsoft.com/technet/security/current.aspxSecurity Bulletins Search: www.microsoft.com/technet/security/current.aspx www.microsoft.com/technet/security/current.aspx Security Advisories: www.microsoft.com/technet/security/advisory/Security Advisories: www.microsoft.com/technet/security/advisory/ www.microsoft.com/technet/security/advisory/ Microsoft Technical Security Notifications: www.microsoft.com/technet/security/bulletin/notify.mspxMicrosoft Technical Security Notifications: www.microsoft.com/technet/security/bulletin/notify.mspx www.microsoft.com/technet/security/bulletin/notify.mspx Microsoft Security Newsletter: www.microsoft.com/technet/security/secnews/Microsoft Security Newsletter: www.microsoft.com/technet/security/secnews/ www.microsoft.com/technet/security/secnews/ Security Centers Microsoft Security Home Page: www.microsoft.com/securityMicrosoft Security Home Page: www.microsoft.com/security www.microsoft.com/security TechNet Security Center: www.microsoft.com/technet/securityTechNet Security Center: www.microsoft.com/technet/security www.microsoft.com/technet/security MSDN Security Developer Center: http://msdn.microsoft.com/en-us/security/default.aspxMSDN Security Developer Center: http://msdn.microsoft.com/en-us/security/default.aspx http://msdn.microsoft.com/en-us/security/default.aspx Other Resources OOB Update Resources:OOB Update Resources: –IT Pro/Enterprise Guidance: www.microsoft.com/technet/security www.microsoft.com/technet/security –Consumer Guidance: http://www.microsoft.com/security/updates/ie.aspx http://www.microsoft.com/security/updates/ie.aspx Update Management Process http://www.microsoft.com/technet/security/guidance/pat chmanagement/secmod193.mspxUpdate Management Process http://www.microsoft.com/technet/security/guidance/pat chmanagement/secmod193.mspx http://www.microsoft.com/technet/security/guidance/pat chmanagement/secmod193.mspx http://www.microsoft.com/technet/security/guidance/pat chmanagement/secmod193.mspx Microsoft Active Protection Program Partners: http://www.microsoft.com/security/msrc/mapp/partners. mspxMicrosoft Active Protection Program Partners: http://www.microsoft.com/security/msrc/mapp/partners. mspx http://www.microsoft.com/security/msrc/mapp/partners. mspx http://www.microsoft.com/security/msrc/mapp/partners. mspx

8 Questions and Answers Submit text questions using the “Ask” button.Submit text questions using the “Ask” button. Don’t forget to fill out the survey.Don’t forget to fill out the survey. A recording of this webcast will be available within 48 hours on the MSRC Blog: http://blogs.technet.com/msrcA recording of this webcast will be available within 48 hours on the MSRC Blog: http://blogs.technet.com/msrc http://blogs.technet.com/msrc Register for next months webcast at: http://microsoft.com/technet/security/current.aspxRegister for next months webcast at: http://microsoft.com/technet/security/current.aspx http://microsoft.com/technet/security/current.aspx

9

Download ppt "Information About Microsoft Out-of-Band Security Bulletins."

Similar presentations

Patch Management Patch Management in a Windows based environment

Patch Management Patch Management in a Windows based environment
Dial In Number 1-877-593-2001 Pin: 3959 Information About Microsoft September 21, 2012 Security Bulletin Jeremy Tinder Security Program Manager Microsoft.

Dial In Number Pin: 3959 Information About Microsoft September 21, 2012 Security Bulletin Jeremy Tinder Security Program Manager Microsoft.
Desktop Value - Introducing Windows XP Service Pack 2 with Advanced Security Technologies Presenter: James K. Murray Title: Information Technologies Consultant.

Desktop Value - Introducing Windows XP Service Pack 2 with Advanced Security Technologies Presenter: James K. Murray Title: Information Technologies Consultant.
Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.

Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.
Dial In Number 1-800-227-8104 Pin: 9049 Information About Microsoft April 2012 Security Bulletins Jonathan Ness Security Development Manager Microsoft.

Dial In Number Pin: 9049 Information About Microsoft April 2012 Security Bulletins Jonathan Ness Security Development Manager Microsoft.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Getting Ahead: Integrating Development and Response for Improved Security Steven B. Lipner Director of Security Engineering Strategy Security Business.

Getting Ahead: Integrating Development and Response for Improved Security Steven B. Lipner Director of Security Engineering Strategy Security Business.
Information for Developers Windows XP Service Pack 2 Information for Developers.

Information for Developers Windows XP Service Pack 2 Information for Developers.
Monthly Security Bulletin Briefing

Monthly Security Bulletin Briefing
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.

Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
Internet Explorer 7 Security Features Steve Lamb Technical Security Microsoft Ltd

Internet Explorer 7 Security Features Steve Lamb Technical Security Microsoft Ltd
To receive our video stream in LiveMeeting: - Click on “Voice & Video” - Click the drop down next to the camera icon - Select “Show Main Video” Dial-in.

To receive our video stream in LiveMeeting: - Click on “Voice & Video” - Click the drop down next to the camera icon - Select “Show Main Video” Dial-in.
Review of February 2013 Bulletin Release Information - 12 New Security Bulletins - One Updated Security Advisory - Microsoft Windows Malicious Software.

Review of February 2013 Bulletin Release Information - 12 New Security Bulletins - One Updated Security Advisory - Microsoft Windows Malicious Software.
To receive our video stream in LiveMeeting: - Click on “Voice & Video” - Click the drop down next to the camera icon - Select “Show Main Video” Dial-in.

To receive our video stream in LiveMeeting: - Click on “Voice & Video” - Click the drop down next to the camera icon - Select “Show Main Video” Dial-in.
Dial In Number 1-800-227-8104 Pin: 3879 Information About Microsoft May 2012 Security Bulletins Dustin Childs Sr. Security Program Manager Microsoft Corporation.

Dial In Number Pin: 3879 Information About Microsoft May 2012 Security Bulletins Dustin Childs Sr. Security Program Manager Microsoft Corporation.
IT:Network:Microsoft Applications

IT:Network:Microsoft Applications
Dial In Number 1-800-229-0449 Pin: 3750 Information About Microsoft August 2011 Security Bulletins Jonathan Ness Security Development Manager, MSRC Microsoft.

Dial In Number Pin: 3750 Information About Microsoft August 2011 Security Bulletins Jonathan Ness Security Development Manager, MSRC Microsoft.
Dial In Number 1-800-227-8104 PIN: 1056 Information About Microsoft December 2011 Security Bulletins Jonathan Ness Security Development Manager Microsoft.

Dial In Number PIN: 1056 Information About Microsoft December 2011 Security Bulletins Jonathan Ness Security Development Manager Microsoft.
To receive our video stream in Live Meeting: - Click on “Voice & Video” - Click the drop down next to the camera icon - Select “Show Main Video” Dial-in.

To receive our video stream in Live Meeting: - Click on “Voice & Video” - Click the drop down next to the camera icon - Select “Show Main Video” Dial-in.
2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada.

2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada.

Similar presentations

Ads by Google