6 Bulletins this month. Most are workstation centric risks and 3 can be mitigated via group policy with my free KillBits administrative template.
Free Security Log Training
Join us for a Webinar
Title: Understanding Authentication and Logon in the Security Log
Date: November 30, 2006
Time: 12:00 pm EDT
Inside Windows, authentication and logon are 2 different activities and this is reflected by 2 different categories in the security log with confusingly similar names: “Account Logon” and “Logon/Logon”. In this webinar Randy will explain the difference and unique values of both categories and why the events they report should be interpreted very differently depending on whether the events came from a domain controller, member server or workstation.
This is real training by Randy Franklin Smith with opportunity for Q&A.
If you can’t make the live event, register anyway so that you can watch the recorded version.
You can attend free or pay a small fee if you wish to avoid sharing contact information with the sponsor.
6 Microsoft Security Bulletins November 2006
KB # |
Exploit Type |
Principle type of systems exposed* |
Exploit details public? |
Currently being exploited? |
MS severity rating |
Vulnerable Windows versions |
Notes |
Randy’s recommendation |
|
|
|
|
|
|
2000 |
XP |
2003 |
Vista |
|
|
922760 MS06-067 |
Arbitrary code |
WS & TS |
yes |
yes |
critical |
yes |
yes |
yes |
No |
Multiple vulnerabilities requiring different responses |
Use my free KillBits ADM tool AND test and then patch |
920213 MS06-068 |
Arbitrary code |
WS & TS |
no |
no |
critical |
yes |
yes |
yes |
No |
ActiveX |
Test&patch or use my free KillBits ADM tool |
923789 MS06-069 |
Arbitrary code |
WS & TS |
no |
no |
critical |
no - unless flash player installed |
yes |
no - unless flash player installed |
no - unless flash player installed |
Adobe Flash Player |
Test and patch |
924270 - MS06-070 |
Arbitrary code |
All |
no |
no |
critical |
yes |
yes |
no |
no |
Workstation Service |
Test and patch |
928088 MS06-071 |
Arbitrary code |
WS & TS |
yes |
yes |
critical |
All - if MS XML Core Services 4.0 or 6.0 installed |
ActiveX |
Patch or use my free KillBits ADM tool |
923980 MS06-066 |
Arbitrary code |
Netware clients |
no |
no |
important |
yes |
yes |
yes |
no |
Client Service for Netware |
Get rid of Netware - just kidding - test and patch |
If you don’t want to share your contact information but want to attend this month’s webinar we understand! The sponsor is what makes the webinar possible but if you want your information to stay put you can pay a small fee instead and attend the webinar as well as participate in the Q&A. Click here to sign up.
Remember, to watch the recorded version you must sign up beforehand.
Time is running out to reserve your copy of the Windows Server 2003 Security Log poster. Most of you already have a copy of my Quick Reference Chart for the Windows Server Security Log.
The new Windows Server 2003 Security Log Poster is bigger and better, and best of all, you can get it free.
My new poster has 10 times the information of the old Quick Reference Chart.
