Randy Franklin Smith's Ultimate Windows Security

If you administer workstations, servers, IIS servers or domain controllers pay attention to the patches this month. Here's my thoughts by system category and then the chart follows.

All systems

For this new print spooler vulnerability, apply MS09-22 or disable the service. Make sure you understand MS09-026 before deciding to forgo installation; in general we recommend installing after normal testing.

Workstation/Terminal Services Patches

Install MS09-024 even if though your users don't use MS Works; the bad guys don't mind using Works to send malicious files. Install MS09-019 as as possible after minimal testing since exploit details are public. Install MS09-23, MS09-021 and MS09-027 after normal testing. MS09-025 is only an issue for those of you with least privilege workstation environments.

IIS Servers

Install MS09-020 after normal to minimum testing; exploit details are public.

Domain Controllers

Start testing MS09-018 right away and get it installed thereafter. Exploit details are not public but domain controller vulnerabilities expose your entire forest to risk.

Research security patch database

Bulletin	Exploit Types /Technologies Affected	System Types Affected	Exploit details public? / Being exploited?	Comprehensive, practical workaround available?	MS severity rating	Products Affected	Notes	Randy's recommendation
MS09-024 957632	Arbitrary code / Works Converters	Workstations Terminal Servers	No/No	No	Critical	Office 2000 Office XP Office 2003 Office 2007 Office 2002		Patch after testing
MS09-022 961501	Arbitrary code / Print Spooler	Workstations Servers	No/No	Yes	Critical	Win2000 XP Win2003 Vista Win2008		Disable Print Spooler if not used; Patch after testing
MS09-023 963093	Information disclosure / Windows Search 4.0	Workstations Terminal Servers	No/No	No	Moderate	XP Server 2003	Restart Req'd	Patch after testing
MS09-025 968537	Privilege elevation / Windows	Workstations Terminal Servers	Yes/No	No	Important	Win2000 XP Win2003 Vista Win2008	Restart Req'd	Patch after testing
MS09-021 969462	Arbitrary code / Office Excel	Workstations Terminal Servers	No/No	No	Critical	Office 2000 Office 2003 Office 2007 Office 2004 for Mac Office 2008 for Mac Open XML Format Converter Mac Excel Viewer Office Converter Pack Office 2002
MS09-027 969514	Arbitrary code / Office Word	Workstations Terminal Servers	No/No	Yes	Critical	Office 2000 Office 2003 Office 2007 Office 2004 for Mac Office 2008 for Mac Office Converter Pack Office 2002		Patch after testing
MS09-019 969897	Arbitrary code / Internet Explorer	Workstations Terminal Servers	Yes/No	No	Critical	Internet Explorer	Restart Req'd	Patch after minimal testing
MS09-026 970238	Privilege elevation / RPC	Workstations Servers	Yes/No	No	Important	Win2000 XP Win2003 Vista Win2008	RPC runtime & RPC third party	Patch after testing
MS09-020 970483	Privilege elevation / IIS	IIS Servers	Yes/No	No	Important	Win2000 XP Win2003	Restart Req'd	Patch after testing
MS09-018 971055	Arbitrary code / Active Directory	Domain Controllers	No/No	Yes	Critical	Win2000 XP Win2003	Restart Req'd	Patch after testing

Send me this chart next Patch Tuesday.
Email:
We will not share your address. Unsubscribe anytime.

Home

User name:
Password:
	/ Forgot?
	Register

Home

About | Contact

Ultimate Windows Security is a division of Monterey Technology Group, Inc. ©2006-2009 Monterey Technology Group, Inc. All rights reserved.
Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk.