ITSS-Advisory : Medium : Microsoft : Windows : Microsoft Security Bulletin Summary for March 2009

THREAT LEVEL
============
Medium

INFORMATION
===========

Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)
----------------------------------------------------------------------------
This security update resolves several privately reported vulnerabilities in the Windows kernel. The most serious vulnerability could allow remote code execution if a user viewed a specially crafted EMF or WMF image file from an affected system.

Vulnerability in SChannel Could Allow Spoofing (960225)
-------------------------------------------------------
This security update resolves a privately reported vulnerability in the Secure Channel (SChannel) security package in Windows. The vulnerability could allow spoofing if an attacker gains access to the certificate used by the end user for authentication. Customers are only affected when the public key component of the certificate used for authentication has been obtained by the attacker through other means.

Vulnerabilities in DNS and WINS Server Could Allow Spoofing (962238)
--------------------------------------------------------------------
This security update resolves two privately reported vulnerabilities and two publicly disclosed vulnerabilities in Windows DNS server and Windows WINS server. These vulnerabilities could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.

AFFECTED PLATFORMS
==================
Operating System: Windows 2000
Windows XP
Windows Server 2003
Windows Vista
Windows Server 2008

ACTION
======
Administrators of affected computers are advised to review the
bulletins, test and apply relevant updates.

The majority of customers have automatic updating
enabled and will not need to take any action because this security
update will be downloaded and installed automatically. Customers who
have not enabled automatic updating need to check for updates and
install this update manually. For information about specific
configuration options in automatic updating, see Microsoft
Knowledge Base Article 294781.

For administrators and enterprise installations, or end users who want
to install this security update manually, Microsoft recommends that
customers apply the update immediately using update management
software, or by checking for updates using the Microsoft Update
service.

References
==========
Microsoft Security Bulletin March 2009
http://www.microsoft.com/technet/security/Bulletin/MS09-mar.mspx