Microsoft January 2008 Security Bulletins

Microsoft's January 2008 Security Bulletins

As part of Microsoft's routine, monthly security update cycle, today they
released two new security bulletins that affects Windows system.
Note: There may be latency issues due to replication, if the page does not
display keep refreshing.

Critical
MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code
Execution (941644)
http://www.microsoft.com/technet/sec.../MS08-001.mspx

Important
MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege
(943485)
http://www.microsoft.com/technet/sec.../MS08-002.mspx

Microsoft also released Non-Security, High-Priority Updates on MU, WU, and
WSUS:
- Five non-security, high-priority updates on Microsoft Update (MU) and
Windows Server Update Services (WSUS).
- Two non-security, high-priority updates for Windows on Windows Update (WU)
and WSUS.

Microsoft Windows Malicious Software Removal Tool
Microsoft has released an updated version of the Microsoft Windows Malicious
Software Removal Tool on Windows Update, Microsoft Update, Windows Server
Update Services, and the Download Center.

References:
January 2008 Security Bulletin Summary:
http://www.microsoft.com/technet/sec.../ms08-jan.mspx
Security Bulletin for end-users:
http://www.microsoft.com/protect/com...ns/200801.mspx
MSRC Blog: http://blogs.technet.com

Support:
Call 1-866-PCSAFETY. There is no charge for support calls that are
associated with security updates. International users should go to
http://support.microsoft.com/common/international.aspx

Security Bulletin Webcast:
Microsoft will host a Webcast tomorrow. The webcast focuses on addressing
your questions and concerns about the security bulletins. Therefore, most of
the live webcast is aimed at giving you the opportunity to ask questions and
get answers from their security experts.
http://msevents.microsoft.com/CUI/Ev...&Culture=en-US

Regards,
Donna Buenaventura
Windows Security MVP
http://www.dozleng.com

Could you - or someone - explain why WU is offering me

KB935509

Which is designated for Vista Ultimate & Vista Enterprise only?

I'm using Vista Home Premium (32) and WU is offering this Update along with
6 others today.

What happens if I install this Update on a system that it shouldn't be
offered to? Should I uncheck this Update and proceed with the others?

Thanks.



"Donna Buenaventura" wrote:

> Microsoft's January 2008 Security Bulletins
>
> As part of Microsoft's routine, monthly security update cycle, today they
> released two new security bulletins that affects Windows system.
> Note: There may be latency issues due to replication, if the page does not
> display keep refreshing.
>
> Critical
> MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code
> Execution (941644)
> http://www.microsoft.com/technet/sec.../MS08-001.mspx
>
> Important
> MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege
> (943485)
> http://www.microsoft.com/technet/sec.../MS08-002.mspx
>
> Microsoft also released Non-Security, High-Priority Updates on MU, WU, and
> WSUS:
> - Five non-security, high-priority updates on Microsoft Update (MU) and
> Windows Server Update Services (WSUS).
> - Two non-security, high-priority updates for Windows on Windows Update (WU)
> and WSUS.
>
> Microsoft Windows Malicious Software Removal Tool
> Microsoft has released an updated version of the Microsoft Windows Malicious
> Software Removal Tool on Windows Update, Microsoft Update, Windows Server
> Update Services, and the Download Center.
>
> References:
> January 2008 Security Bulletin Summary:
> http://www.microsoft.com/technet/sec.../ms08-jan.mspx
> Security Bulletin for end-users:
> http://www.microsoft.com/protect/com...ns/200801.mspx
> MSRC Blog: http://blogs.technet.com
>
> Support:
> Call 1-866-PCSAFETY. There is no charge for support calls that are
> associated with security updates. International users should go to
> http://support.microsoft.com/common/international.aspx
>
> Security Bulletin Webcast:
> Microsoft will host a Webcast tomorrow. The webcast focuses on addressing
> your questions and concerns about the security bulletins. Therefore, most of
> the live webcast is aimed at giving you the opportunity to ask questions and
> get answers from their security experts.
> http://msevents.microsoft.com/CUI/Ev...&Culture=en-US
>
> Regards,
> Donna Buenaventura
> Windows Security MVP
> http://www.dozleng.com
>

Since you have the option at any time to "upgrade" to these versions, I
suspect MS is putting them in as preventive maintenance.

This is one of 3 (?) updates that will come out prior to SP1 that will be
released as prerequisites.

"marktime" wrote:

> Could you - or someone - explain why WU is offering me
>
> KB935509
>
> Which is designated for Vista Ultimate & Vista Enterprise only?
>
> I'm using Vista Home Premium (32) and WU is offering this Update along with
> 6 others today.
>
> What happens if I install this Update on a system that it shouldn't be
> offered to? Should I uncheck this Update and proceed with the others?
>
> Thanks.
>
>
>
> "Donna Buenaventura" wrote:
>
> > Microsoft's January 2008 Security Bulletins
> >
> > As part of Microsoft's routine, monthly security update cycle, today they
> > released two new security bulletins that affects Windows system.
> > Note: There may be latency issues due to replication, if the page does not
> > display keep refreshing.
> >
> > Critical
> > MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code
> > Execution (941644)
> > http://www.microsoft.com/technet/sec.../MS08-001.mspx
> >
> > Important
> > MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege
> > (943485)
> > http://www.microsoft.com/technet/sec.../MS08-002.mspx
> >
> > Microsoft also released Non-Security, High-Priority Updates on MU, WU, and
> > WSUS:
> > - Five non-security, high-priority updates on Microsoft Update (MU) and
> > Windows Server Update Services (WSUS).
> > - Two non-security, high-priority updates for Windows on Windows Update (WU)
> > and WSUS.
> >
> > Microsoft Windows Malicious Software Removal Tool
> > Microsoft has released an updated version of the Microsoft Windows Malicious
> > Software Removal Tool on Windows Update, Microsoft Update, Windows Server
> > Update Services, and the Download Center.
> >
> > References:
> > January 2008 Security Bulletin Summary:
> > http://www.microsoft.com/technet/sec.../ms08-jan.mspx
> > Security Bulletin for end-users:
> > http://www.microsoft.com/protect/com...ns/200801.mspx
> > MSRC Blog: http://blogs.technet.com
> >
> > Support:
> > Call 1-866-PCSAFETY. There is no charge for support calls that are
> > associated with security updates. International users should go to
> > http://support.microsoft.com/common/international.aspx
> >
> > Security Bulletin Webcast:
> > Microsoft will host a Webcast tomorrow. The webcast focuses on addressing
> > your questions and concerns about the security bulletins. Therefore, most of
> > the live webcast is aimed at giving you the opportunity to ask questions and
> > get answers from their security experts.
> > http://msevents.microsoft.com/CUI/Ev...&Culture=en-US
> >
> > Regards,
> > Donna Buenaventura
> > Windows Security MVP
> > http://www.dozleng.com
> >

"Gis Bun" wrote:

> Since you have the option at any time to "upgrade" to these versions, I
> suspect MS is putting them in as preventive maintenance.
>
> This is one of 3 (?) updates that will come out prior to SP1 that will be
> released as prerequisites.
>
> "marktime" wrote:
>
> > Could you - or someone - explain why WU is offering me
> >
> > KB935509
> >
> > Which is designated for Vista Ultimate & Vista Enterprise only?
> >
> > I'm using Vista Home Premium (32) and WU is offering this Update along with
> > 6 others today.
> >
> > What happens if I install this Update on a system that it shouldn't be
> > offered to? Should I uncheck this Update and proceed with the others?
> >
> > Thanks.
> >
> >
> >
> > "Donna Buenaventura" wrote:
> >
> > > Microsoft's January 2008 Security Bulletins
> > >
> > > As part of Microsoft's routine, monthly security update cycle, today they
> > > released two new security bulletins that affects Windows system.
> > > Note: There may be latency issues due to replication, if the page does not
> > > display keep refreshing.
> > >
> > > Critical
> > > MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code
> > > Execution (941644)
> > > http://www.microsoft.com/technet/sec.../MS08-001.mspx
> > >
> > > Important
> > > MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege
> > > (943485)
> > > http://www.microsoft.com/technet/sec.../MS08-002.mspx
> > >
> > > Microsoft also released Non-Security, High-Priority Updates on MU, WU, and
> > > WSUS:
> > > - Five non-security, high-priority updates on Microsoft Update (MU) and
> > > Windows Server Update Services (WSUS).
> > > - Two non-security, high-priority updates for Windows on Windows Update (WU)
> > > and WSUS.
> > >
> > > Microsoft Windows Malicious Software Removal Tool
> > > Microsoft has released an updated version of the Microsoft Windows Malicious
> > > Software Removal Tool on Windows Update, Microsoft Update, Windows Server
> > > Update Services, and the Download Center.
> > >
> > > References:
> > > January 2008 Security Bulletin Summary:
> > > http://www.microsoft.com/technet/sec.../ms08-jan.mspx
> > > Security Bulletin for end-users:
> > > http://www.microsoft.com/protect/com...ns/200801.mspx
> > > MSRC Blog: http://blogs.technet.com
> > >
> > > Support:
> > > Call 1-866-PCSAFETY. There is no charge for support calls that are
> > > associated with security updates. International users should go to
> > > http://support.microsoft.com/common/international.aspx
> > >
> > > Security Bulletin Webcast:
> > > Microsoft will host a Webcast tomorrow. The webcast focuses on addressing
> > > your questions and concerns about the security bulletins. Therefore, most of
> > > the live webcast is aimed at giving you the opportunity to ask questions and
> > > get answers from their security experts.
> > > http://msevents.microsoft.com/CUI/Ev...&Culture=en-US
> > >
> > > Regards,
> > > Donna Buenaventura
> > > Windows Security MVP
> > > http://www.dozleng.com
> > >
Any reason none of these updates apply to my Vista Business 32bit system
with SP1RC?

Appreciate the reply. That possibility crossed my mind, but for whatever
reason it just doesn't seem right to me.

Why then would the KB article specifically state that KB935509 only applies
to Ultimate & Enterprise if it was to be offered to Home Premium as well, in
light of possible future upgrades?

Suffice to say; I don't trust WU very much. It's already offered me "updated
drivers" for audio components that did not match my system...



"Gis Bun" wrote:

> Since you have the option at any time to "upgrade" to these versions, I
> suspect MS is putting them in as preventive maintenance.
>
> This is one of 3 (?) updates that will come out prior to SP1 that will be
> released as prerequisites.
>
> "marktime" wrote:
>
> > Could you - or someone - explain why WU is offering me
> >
> > KB935509
> >
> > Which is designated for Vista Ultimate & Vista Enterprise only?
> >
> > I'm using Vista Home Premium (32) and WU is offering this Update along with
> > 6 others today.
> >
> > What happens if I install this Update on a system that it shouldn't be
> > offered to? Should I uncheck this Update and proceed with the others?
> >
> > Thanks.
> >

"marktime" <> wrote in message
news:B979462C-21D2-4089-9D0C-...
> Appreciate the reply. That possibility crossed my mind, but for whatever
> reason it just doesn't seem right to me.
> Why then would the KB article specifically state that KB935509 only
> applies
> to Ultimate & Enterprise if it was to be offered to Home Premium as well,
> in
> light of possible future upgrades?
> Suffice to say; I don't trust WU very much. It's already offered me
> "updated
> drivers" for audio components that did not match my system...


See below posted a few hours ago by PA BEAR - a quote from MS.

http://windowsvistablog.com/blogs/wi...p1-prereq.aspx

It might explain some - but not why you have been offered this update.
Stick it in the Hidden Folder in WINUPDATE Home until you feel you need it -
then at least you will not keep getting pestered to install.

Antioch

"marktime" <> wrote in message
news:93633494-F104-45FB-AE9F-...
> Could you - or someone - explain why WU is offering me
>
> KB935509
>
> Which is designated for Vista Ultimate & Vista Enterprise only?


Perhaps more significantly it also says
<quote>
for versions of Windows Vista that include the Windows BitLocker
Drive Encryption feature
</quote>

Do you have that feature on your OS? If so, then your observation
might be explained as a simple documentation error. ; )


To try to determine what is actually happening you could
activate verbose logging (ref. KB902093)
and then trace the context with ProcMon.


>
> I'm using Vista Home Premium (32) and WU is offering this Update along with
> 6 others today.
>
> What happens if I install this Update on a system that it shouldn't be
> offered to? Should I uncheck this Update and proceed with the others?


Typically updates fail if their prerequisites or dependencies are missing.
Again, it might help to run the update with its verbose logging (if any)
to clarify exactly what it was trying to do and why it failed. And again,
running ProcMon concurrently could help supplement the context
of any log messages.

If you have to install Vista SP1 and that fails you could then take another
look at this one:

<qp>
Note This software update is a prerequisite for Windows Vista Service Pack 1 (SP1).
This update helps improve reliability when you install or remove Windows Vista SP1.
</qp>


Good luck

Robert Aldwinckle
---


>
> Thanks.
>
>
>
> "Donna Buenaventura" wrote:
>
>> Microsoft's January 2008 Security Bulletins

....

will the lattency issue be a permanet issue if it does appear, or will the
issue resolve itself after refreshing?


"Donna Buenaventura" <> wrote in message
news:4A157AEB-97DF-44BA-B394-...
> Microsoft's January 2008 Security Bulletins
>
> As part of Microsoft's routine, monthly security update cycle, today they
> released two new security bulletins that affects Windows system.
> Note: There may be latency issues due to replication, if the page does not
> display keep refreshing.
>
> Critical
> MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code
> Execution (941644)
> http://www.microsoft.com/technet/sec.../MS08-001.mspx
>
> Important
> MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege
> (943485)
> http://www.microsoft.com/technet/sec.../MS08-002.mspx
>
> Microsoft also released Non-Security, High-Priority Updates on MU, WU, and
> WSUS:
> - Five non-security, high-priority updates on Microsoft Update (MU) and
> Windows Server Update Services (WSUS).
> - Two non-security, high-priority updates for Windows on Windows Update
> (WU) and WSUS.
>
> Microsoft Windows Malicious Software Removal Tool
> Microsoft has released an updated version of the Microsoft Windows
> Malicious Software Removal Tool on Windows Update, Microsoft Update,
> Windows Server Update Services, and the Download Center.
>
> References:
> January 2008 Security Bulletin Summary:
> http://www.microsoft.com/technet/sec.../ms08-jan.mspx
> Security Bulletin for end-users:
> http://www.microsoft.com/protect/com...ns/200801.mspx
> MSRC Blog: http://blogs.technet.com
>
> Support:
> Call 1-866-PCSAFETY. There is no charge for support calls that are
> associated with security updates. International users should go to
> http://support.microsoft.com/common/international.aspx
>
> Security Bulletin Webcast:
> Microsoft will host a Webcast tomorrow. The webcast focuses on addressing
> your questions and concerns about the security bulletins. Therefore, most
> of the live webcast is aimed at giving you the opportunity to ask
> questions and get answers from their security experts.
> http://msevents.microsoft.com/CUI/Ev...&Culture=en-US
>
> Regards,
> Donna Buenaventura
> Windows Security MVP
> http://www.dozleng.com
>

Had to look around a bit, but, interested parties who may also have been
erroneously offered KB935509 please see the replies here:

http://windowshelp.microsoft.com/com...2bb00accb9&p=1

It appears that those not running Vista Ultimate or Vista Enterprise should
not have been offered KB935509, but, supposedly, even installing it on
non-applicable systems will have no negative impact. That's what they say
anyway.

I can confirm that WU is no longer offering KB935509 for my Vista Home
Premium system.

Guess I'll go ahead with other Updates and hope that I'm not negatively
impacted by these updates as some others seem to have been. Fingers crossed.

Thanks to all who responded to my initial inquiry.



"Robert Aldwinckle" wrote:

> "marktime" <> wrote in message
> news:93633494-F104-45FB-AE9F-...
> > Could you - or someone - explain why WU is offering me
> >
> > KB935509
> >
> > Which is designated for Vista Ultimate & Vista Enterprise only?
>
>
> Perhaps more significantly it also says
> <quote>
> for versions of Windows Vista that include the Windows BitLocker
> Drive Encryption feature
> </quote>
>
> Do you have that feature on your OS? If so, then your observation
> might be explained as a simple documentation error. ; )
>
>
> To try to determine what is actually happening you could
> activate verbose logging (ref. KB902093)
> and then trace the context with ProcMon.
>
>
> >
> > I'm using Vista Home Premium (32) and WU is offering this Update along with
> > 6 others today.
> >
> > What happens if I install this Update on a system that it shouldn't be
> > offered to? Should I uncheck this Update and proceed with the others?
>
>
> Typically updates fail if their prerequisites or dependencies are missing.
> Again, it might help to run the update with its verbose logging (if any)
> to clarify exactly what it was trying to do and why it failed. And again,
> running ProcMon concurrently could help supplement the context
> of any log messages.
>
> If you have to install Vista SP1 and that fails you could then take another
> look at this one:
>
> <qp>
> Note This software update is a prerequisite for Windows Vista Service Pack 1 (SP1).
> This update helps improve reliability when you install or remove Windows Vista SP1.
> </qp>
>
>
> Good luck
>
> Robert Aldwinckle
> ---
>
>
> >
> > Thanks.
> >
> >
> >
> > "Donna Buenaventura" wrote:
> >
> >> Microsoft's January 2008 Security Bulletins
>
> ....
>
>
>

Windows Update automatically downloaded these last security updates on my
Windows 2000 Profession home system and initiated an system restart. When I
logged in with my username I discovered that all my settings and files
associated with my username were missing.

On closer inspection in the directory c:\documents and settings I noticed
that a new directory had been created called "\username.computername" to
which my user account was now connected.

All my old information is sitting in the folder "c:\documents and
settings\username"

Question: Why would it have done this and more importantly, when I log in,
how can I get my user to connect back to the original folder?

Any help gratefully accepted.

Thanks, Neil

"Donna Buenaventura" wrote:

> Microsoft's January 2008 Security Bulletins
>
> As part of Microsoft's routine, monthly security update cycle, today they
> released two new security bulletins that affects Windows system.
> Note: There may be latency issues due to replication, if the page does not
> display keep refreshing.
>
> Critical
> MS08-001 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code
> Execution (941644)
> http://www.microsoft.com/technet/sec.../MS08-001.mspx
>
> Important
> MS08-002 - Vulnerability in LSASS Could Allow Local Elevation of Privilege
> (943485)
> http://www.microsoft.com/technet/sec.../MS08-002.mspx
>
> Microsoft also released Non-Security, High-Priority Updates on MU, WU, and
> WSUS:
> - Five non-security, high-priority updates on Microsoft Update (MU) and
> Windows Server Update Services (WSUS).
> - Two non-security, high-priority updates for Windows on Windows Update (WU)
> and WSUS.
>
> Microsoft Windows Malicious Software Removal Tool
> Microsoft has released an updated version of the Microsoft Windows Malicious
> Software Removal Tool on Windows Update, Microsoft Update, Windows Server
> Update Services, and the Download Center.
>
> References:
> January 2008 Security Bulletin Summary:
> http://www.microsoft.com/technet/sec.../ms08-jan.mspx
> Security Bulletin for end-users:
> http://www.microsoft.com/protect/com...ns/200801.mspx
> MSRC Blog: http://blogs.technet.com
>
> Support:
> Call 1-866-PCSAFETY. There is no charge for support calls that are
> associated with security updates. International users should go to
> http://support.microsoft.com/common/international.aspx
>
> Security Bulletin Webcast:
> Microsoft will host a Webcast tomorrow. The webcast focuses on addressing
> your questions and concerns about the security bulletins. Therefore, most of
> the live webcast is aimed at giving you the opportunity to ask questions and
> get answers from their security experts.
> http://msevents.microsoft.com/CUI/Ev...&Culture=en-US
>
> Regards,
> Donna Buenaventura
> Windows Security MVP
> http://www.dozleng.com
>