ADVANCE NOTIFICATION - October 2007 MSRC Security Bulletin Release

[Dr.Melzer 191]

Hallo zusammen, gestern Abend wurde nachfolgende Ankündigung der Oktober Security Bulletins veröffentlicht. Weitere Infos findet Ihr unter: Microsoft Security Bulletin Advance Notification für Oktober 2007 (dt.)

 

What is this alert?

 

As part of the monthly security bulletin release cycle, Microsoft provides advance notification to our customers on the number of new security updates being released, the products affected, the aggregate maximum severity and information about detection tools relevant to the update. This is intended to help our customers plan for the deployment of these security updates more effectively.

 

On 09 October 2007 Microsoft is planning to release Seven new security bulletins. Here is a summary in order of severity:

 

Bulletin Number Affected Products Maximum Severity Impact Detection Restart

Bulletin 1 Microsoft Windows Critical Remote Code Execution MBSA Required

Bulletin 2 Windows, Outlook Express, Windows Mail. Critical Remote Code Execution MBSA & EST May be Required

Bulletin 3 Windows, Internet Explorer Critical Remote Code Execution MBSA Required

Bulletin 6 Microsoft Office Critical Remote Code Execution MBSA Not Required

Bulletin 4 Microsoft Windows Important Denial of

Service MBSA Required

Bulletin 5 Microsoft Windows Important Spoofing MBSA Not Required

Bulletin 7 Microsoft Windows, Office Important Elevation of Privilege MBSA May be Required

 

Although we do not anticipate any changes, the number of bulletins, products affected, restart information and severities are subject to change until released.

 

The full version of the Microsoft Security Bulletin Advance Notification for this month can be found here: Microsoft Security Bulletin Advance Notification for October 2007

 

Microsoft Windows Malicious Software Removal Tool: Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services and the Download Center.

 

Monthly Security Bulletin Webcast: To address customer questions on these bulletins Microsoft will host a webcast next week Wednesday at 11:00 AM Pacific Time (US & Canada). Registration for this event and other details can be found here:

 

Microsoft Security Bulletin Summaries and Webcasts

 

At this time no additional information on these bulletins such as details regarding severity or details regarding the vulnerability will be made available until the bulletins are published on Tuesday.

 

Regarding Information Consistency

 

We strive to provide you with accurate information in static (this mail) and dynamic (web-based) content. Microsoft’s security content posted to the web is occasionally updated to reflect late-breaking information. If this results in an inconsistency between the information here and the information in Microsoft’s web-based security content, the information in Microsoft’s web-based security content is authoritative.

 

If you have any questions regarding this alert please contact your Technical Account Manager or Application Development Consultant.

 

Thank you,

Microsoft CSS Security Team