Microsoft Security Bulletins

SecPod ID: 10145 Microsoft Security Bulletins - Sept 2008	Status: Public Report Release Date: 09-10-2008 Severity: Critical
Affected Software/OS/Device: MS08-055 - Microsoft Office XP Service Pack 3 - Microsoft Office 2003 Service Pack 2 - Microsoft Office 2003 Service Pack 3 - 2007 Microsoft Office System - 2007 Microsoft Office System Service Pack 1 - Microsoft Office OneNote 2007 - Microsoft Office OneNote 2007 Service Pack 1 MS08-054 - Windows Media Player 11 on all platforms MS08-053 - Windows Media Encoder 9 Series on all platforms MS08-052 - All Windows Operating Systems - Internet Explorer 6 - Microsoft .NET Framework - Microsoft Office all versions - Microsoft SQL Server all versions - Microsoft Developer Tools	Impact Level: Application/System/Network

SecPod Nessus Plugin ID: 900044 900045 900046	Snort ID:
Vulnerability Insight: Overview: Microsoft has released four security advisories that affect Microsoft Windows, Microsoft Office, Windows Media Player, Windows Media Encoder and other applications that integrate/use GDI+ Description: The updates in all fixes 8 flaws. All these vulnerabilities were privately disclosed and there are no known exploits available in the wild. However, careful thought is need to deploy the fixes, especially MS08-052 which is affecting multiple applications/services. Any custom built application that integrates with GDI+ has to be separately patched. Impact : Remote code execution to take complete control of the system, Denial of Service are possible attacks. Fix: Update the Windows system as directed in each bulletin, https://www.microsoft.com/technet/security/bulletin/ms08-sep.mspx References: http://www.microsoft.com/technet/security/bulletin/ms08-052.mspx http://www.microsoft.com/technet/security/bulletin/ms08-053.mspx http://www.microsoft.com/technet/security/bulletin/ms08-054.mspx http://www.microsoft.com/technet/security/bulletin/ms08-055.mspx

Home Corporate Resources Report Security Bug Blog