1 / 20

Microsoft Technical Security Bulletin Release Briefing

Microsoft Technical Security Bulletin Release Briefing. July OOB 2009. What We Will Cover July 2009 (Out-of-Band) Agenda. New Security Bulletins and Advisories 1 New Security Advisory 1 New Critical Bulletin 1 New Moderate Bulletin Other Security Resources

yule
Télécharger la présentation

Microsoft Technical Security Bulletin Release Briefing

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Microsoft Technical Security Bulletin Release Briefing July OOB 2009

  2. What We Will Cover July 2009 (Out-of-Band) Agenda • New Security Bulletins and Advisories • 1 New Security Advisory • 1 New Critical Bulletin • 1 New Moderate Bulletin • Other Security Resources • Detection and Deployment • Links • Contact Information

  3. July (OOB) Security Bulletins Updates at a Glance

  4. Security Advisory (973882) |General Information

  5. MS09-035: Visual Studio |ModerateGeneral Information Exploitability Index:__ 1 - Consistent exploit code likely | __2 - Inconsistent exploit code likely |__ 3 - Functioning exploit code unlikely

  6. MS09-035: Visual Studio |ModerateVulnerability Details: CVE-2009-0901

  7. MS09-035: Visual Studio |ModerateVulnerability Details: CVE-2009-2493

  8. MS09-035: Visual Studio |ModerateVulnerability Details: CVE-2009-2495

  9. MS09-035: Visual Studio |ModerateDetection and Deployment Tools and Guidance

  10. MS09-035: Visual Studio |ModerateUpdate Information

  11. Questions about MS09-035?

  12. MS09-034: Internet Explorer |CriticalGeneral Information Exploitability Index:__ 1 - Consistent exploit code likely | __2 - Inconsistent exploit code likely |__ 3 - Functioning exploit code unlikely

  13. MS09-034: Internet Explorer |Critical Defense in Depth Changes

  14. MS09-034: Internet Explorer |Critical Vulnerability Details: CVE-2009-1917, CVE-2009-1918, and CVE-2009-1919

  15. MS09-034: Internet Explorer |Critical Detection and Deployment Tools and Guidance • SMS SUSFP does not support Internet Explorer 7, Internet Explorer 8, Exchange Server 2007, Windows Media Player 11, Works 8.5 and 9.0, Office System 2007, OneNote 2007, Windows Vista, Windows Server 2008, or any Windows x64 or Windows ia64 systems

  16. MS09-034: Internet Explorer |CriticalUpdate Information

  17. Questions about MS09-034?

  18. Detection and Deployment Manageability Tools Reference SMS SUSFP does not support Internet Explorer 7, Internet Explorer 8, Office System 2007, Works 8.5 & 9.0, ISA 2006, DirectX, Virtual PC and Virtual Server, Windows Vista, Windows Server 2008, or any Windows x64 or Windows ia64 systems Windows Update only supports native Windows Security Update packages

  19. July 2009 Out-of-Band ATL Links Public Security Links and Resources • ATL Issue Landing Page | http://www.microsoft.com/atl • Security BulletinMS09-034 | http://www.microsoft.com/technet/security/Bulletin/MS09-034.mspx • Knowledge Base Article (972260) | http://support.microsoft.com/kb/972260 • Security Bulletin MS09-035 | http://www.microsoft.com/technet/security/Bulletin/MS09-035.mspx • Knowledge Base Article (969706) | http://support.microsoft.com/kb/969706 • Security Advisory 973882 | http://www.microsoft.com/technet/security/advisory/973882.mspx • Knowledge Base Article (973882) | http://support.microsoft.com/kb/973882 • MSDN ATL Guidance | http://msdn.microsoft.com/en-us/library/3ax346b7(VS.71).aspx • ICASI / Verizon Business ATL Scan Tool | http://www.icasi.org/ • The Microsoft Security Response Center (MSRC) Blog | http://blogs.technet.com/msrc • Security Research & Defense Blog | http://blogs.technet.com/srd • The Security Development Lifecycle Blog | http://blogs.technet.com/sdl

  20. Bulletins Links: Security Bulletins Searchhttp://www.microsoft.com/technet/security/current.aspx Security Advisorieshttp://www.microsoft.com/technet/security/advisory Microsoft Security Bulletin Summary for July 2009 http://www.microsoft.com/technet/security/bulletin/ms09-jul.mspx Supplemental updated monthly reference articles: KB961747 Detection and deployment guidance for Microsoft Security Updateshttp://support.microsoft.com/kb/961747 KB894199 Description of Software Update Services and Windows Server Update Services changes in content for 2009http://support.microsoft.com/kb/894199 New, Revised, and Rereleased Updates for Microsoft Products other than Microsoft Windowshttp://technet.microsoft.com/en-us/wsus/bb466214.aspx KB890830 The Microsoft Windows Malicious Software Removal Tool helps remove specific, prevalent malicious software from computers that are running Windows Vista, Windows Server 2003, Windows XP, or Windows 2000http://support.microsoft.com/kb/890830 Useful Links Public Security Links and Resources • Blogs: • MSRC Bloghttp://blogs.technet.com/msrc • SRD Team Blog • http://blogs.technet.com/srd • MSRC Ecosystem Strategy Teamhttp://blogs.technet.com/ecostrat • MMPC Team Blog • http://blogs.technet.com/mmpc

More Related