[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

UNIRAS Brief - 609/05 - Microsoft - Advance warning of August Microsoft Security Bulletins



 
-----BEGIN PGP SIGNED MESSAGE-----

- ----------------------------------------------------------------------------------
   UNIRAS (UK Govt CERT) Briefing Notice - 609/05 dated 05.08.05  Time: 10:28
  UNIRAS is part of NISCC (National Infrastructure Security Co-ordination Centre)
- ---------------------------------------------------------------------------------- 
  UNIRAS material is also available from its website at www.uniras.gov.uk and
         Information about NISCC is available from www.niscc.gov.uk
- ----------------------------------------------------------------------------------

Title
=====
Microsoft - Advance warning of August Microsoft Security Bulletins

Detail
====== 
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

********************************************************************
Title: August 2005 Microsoft Security Response Center Bulletin 
Notification
Issued: August 04, 2005
********************************************************************

Summary
=======

As part of the monthly security bulletin release cycle, Microsoft 
provides advance notification to our customers on the number of new 
security updates being released, the products affected, the 
aggregate maximum severity and information about detection tools 
relevant to the update. This is intended to help our customers plan 
for the deployment of these security updates more effectively.

In addition, to help customers prioritize monthly security updates 
with any non-security updates released on Microsoft Update, Windows 
Update, Windows Server Update Services and Software Update Services 
on the same day as the monthly security bulletins, we also provide:

 - Information about the release of updated versions of the 
Microsoft Windows Malicious Software Removal Tool.
 - Information about the release of NON-SECURITY, High Priority 
updates on Microsoft Update (MU), Windows Update (WU), Windows 
Server Update Services (WSUS) and Software Update Services (SUS). 
Note that this information will pertain ONLY to updates on Windows 
Update and only about High Priority, non-security updates being 
released on the same day as security updates. Information will NOT 
be provided about Non-security updates released on other days.

On 9 August 2005 Microsoft is planning to release:

Security Updates
 - 6 Microsoft Security Bulletins affecting Microsoft Windows. The 
highest Maximum Severity rating for these is Critical. These updates 
will require a restart. These updates will be detectable using the 
Microsoft Baseline Security Analyzer (MBSA).

Microsoft Windows Malicious Software Removal Tool

 - Microsoft will release an updated version of the Microsoft 
Windows Malicious Software Removal Tool on Windows Update, Microsoft 
Update, Windows Server Update Services and the Download Center. 
Note that this tool will NOT be distributed using Software Update 
Services (SUS).

Non-security High Priority updates on MU, WU, WSUS and SUS

 - Microsoft will release one NON-SECURITY High-Priority Update for 
Microsoft Windows on Windows Update (WU), Microsoft Update (MU), 
Software Update Services (SUS), and Windows Server Update Services 
(WSUS).

Although we do not anticipate any changes, the number of bulletins, 
products affected, restart information and severities are subject to 
change until released. 

Microsoft will host a webcast next week to address customer 
questions on these bulletins. For more information on this webcast 
please see below:

 - TechNet Webcast: Information about Microsoft's August Security 
Bulletins (Level 100)   
 - Wednesday, August 10, 2005 11:00 AM (GMT-08:00) Pacific Time (US 
& Canada) 
 - 
http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1
032277894&EventCategory=4&culture=en-US&CountryCode=US
********************************************************************

Support: 
========
Technical support is available from Microsoft Product Support 
Services at 1-866-PC SAFETY (1-866-727-2338). There is no 
charge for support calls associated with security updates. 
International customers can get support from their local Microsoft 
subsidiaries. Phone numbers for international support can be found
at: http://support.microsoft.com/common/international.aspx
 
Additional Resources:
=====================
* Microsoft has created a free monthly e-mail newsletter containing
  valuable information to help you protect your network. This
  newsletter provides practical security tips, topical security
  guidance, useful resources and links, pointers to helpful
  community resources, and a forum for you to provide feedback
  and ask security-related questions.
  You can sign up for the newsletter at:

  http://www.microsoft.com/technet/security/secnews/default.mspx

* Microsoft has created a free e-mail notification service that
  serves as a supplement to the Security Notification Service
  (this e-mail). The Microsoft Security Notification Service: 
  Comprehensive Version. It provides timely notification of any 
  minor changes or revisions to previously released Microsoft 
  Security Bulletins and Security Advisories. This new service 
  provides notifications that are written for IT professionals and 
  contain technical information about the revisions to security 
  bulletins. To register visit the following Web site:

  http://www.microsoft.com/technet/security/bulletin/notify.mspx

* Protect your PC: Microsoft has provided information on how you 
  can help protect your PC at the following locations: 

  http://www.microsoft.com/security/protect/

  If you receive an e-mail that claims to be distributing a 
  Microsoft security update, it is a hoax that may be distributing a 
  virus. Microsoft does not distribute security updates via e-mail. 
  You can learn more about Microsoft's software distribution 
  policies here: 

http://www.microsoft.com/technet/security/topics/policy/swdist.mspx


********************************************************************
THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS 
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT 
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING 
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE 
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, 
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL 
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN 
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. 
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY 
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING 
LIMITATION MAY NOT APPLY.
********************************************************************

- -----BEGIN PGP SIGNATURE-----
Version: PGP 8.1
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=2Nzc
- -----END PGP SIGNATURE-----

Legal Information <http://www.microsoft.com/info/legalinfo/default.mspx>.

This newsletter was sent by the Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052

- ----------------------------------------------------------------------------------

For additional information or assistance, please contact the HELP Desk by 
telephone or Not Protectively Marked information may be sent via 
EMail to: uniras@xxxxxxxxxxxx

Office Hours:
Mon - Fri: 08:30 - 17:00 Hrs
Tel: +44 (0) 870 487 0748 Ext 4511
Fax: +44 (0) 870 487 0749

Outside of Office Hours:
On Call Duty Officer:
Tel: +44 (0) 870 487 0748 and follow the prompts

- ----------------------------------------------------------------------------------
UNIRAS wishes to acknowledge the contributions of Microsoft Corporation for the 
information contained in this Briefing. 
- ----------------------------------------------------------------------------------
This Briefing contains the information released by the original author. Some 
of the information may have changed since it was released. If the vulnerability 
affects you, it may be prudent to retrieve the advisory from the canonical site 
to ensure that you receive the most current information concerning that problem.

Reference to any specific commercial product, process, or service by trade 
name, trademark manufacturer, or otherwise, does not constitute or imply 
its endorsement, recommendation, or favouring by UNIRAS or NISCC.  The views 
and opinions of authors expressed within this notice shall not be used for 
advertising or product endorsement purposes.

Neither UNIRAS or NISCC shall also accept responsibility for any errors 
or omissions contained within this briefing notice. In particular, they shall 
not be liable for any loss or damage whatsoever, arising from or in connection 
with the usage of information contained within this notice.

UNIRAS is a member of the Forum of Incident Response and Security Teams (FIRST) 
and has contacts with other international Incident Response Teams (IRTs) in 
order to foster cooperation and coordination in incident prevention, to prompt 
rapid reaction to incidents, and to promote information sharing amongst its 
members and the community at large. 
- ----------------------------------------------------------------------------------
<End of UNIRAS Briefing>




-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQCVAwUBQvMxqIpao72zK539AQG8xAQAiwcB2gh1yzXF26deB/IQwJnkmTmD+V9i
wCIoMSHNAORsr9FZQDESp5yNIX8cVklATE11Itrk/bcH0vGivEIuoGa9MJ+uDCAp
bx784szk0gESwX0LrfenNA7a9bpSJGg/6KtzgzyrsStZr74l61dwbcqtZ8csdB4p
zcQZOFZj3KM=
=QQQg
-----END PGP SIGNATURE-----


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email 
______________________________________________________________________