July 2008 - Microsoft Releases

Risk: Important Description:

Microsoft addresses the following vulnerabilities in its July batch of patches:

  • (MS08-037) Vulnerabilities in DNS Could Allow Spoofing (953230)

    Risk Rating: Important

    This update solves the vulnerabilities vulnerabilities that affect both DNS client and DNS server. The said vulnerabilities could allow a remote user to redirect network traffic intended for systems on the Internet to his own systems. Read more here.

  • (MS08-038) Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582)

    Risk Rating: Important

    This update addresses a vulnerability in Windows Explorer which allows remote code execution when a specially crafted saved-search file is opened and saved. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Read more here.

  • (MS08-039) Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation of Privilege (953747)

    Risk Rating: Important

    This security update resolves vulnerabilities in Outlook Web Access (OWA) for Microsoft Exchange Server which may allow an attacker to gain access to an individual OWA client’s session data, allowing elevation of privilege. Read more here.

  • (MS08-040) Vulnerabilities in Microsoft SQL Server Could Allow Elevation of Privilege (941203)

    Risk Rating: Important

    This security update fixes four reported vulnerabilities by modification of the way that SQL Server manages certain items. Read more here.

  • [Source: Microsoft]

0 comments