月份资讯安全公告S.ppt

九月份資訊安全公告 Sep 14, 2006,Richard Chen 陳政鋒 (Net+, Sec+, MCSE2003+Security, CISSP) 資深技術支援工程師 台灣微軟技術支援處,Questions last time,When will XPSP3 release? Answer: SP3 for Windows XP Professional is currently planned for 2H 2007. This date is preliminary. Check the following: /windows/lifecycle/servicepacks.mspx,What We Will Cover,Review Sep. releases Re-released bulletins New security bulletins High-priority non-security updates Other security resources Windows Malicious Software Removal Tool Resources Questions and answers,Questions and Answers,Submit text questions using the “Ask a Question” button,Sep 2006 Security Bulletins Summary,3 New Security Bulletins for September 1 new critical 1 new moderate 1 new important 2 Re-released Bulletins both critical 2 Security Advisories,Sep 2006 Security Bulletins Overview,MS06-040v2: Windows - Critical,MS06-040v2: Windows - Critical,MS06-040v2: Windows - Critical,MS06-040v2: Windows - Critical,Questions about MS06-040v2?,MS06-042v3: IE Cumulative (Critical),MS06-042v3: IE Cumulative (Critical),MS06-042v3: IE Cumulative (Critical),MS06-042v3: New Vulnerabilities,MS06-042v3: IE Cumulative (Critical),MS06-042v3: IE Cumulative (Critical),Questions about MS06-042v3?,MS06-052: Pragmatic General Multicast (PGM) -Important,MS06-052: Pragmatic General Multicast (PGM) -Important,MS06-052: Pragmatic General Multicast (PGM) -Important,Questions on MS06-052?,MS06-053: Indexing Service - Moderate,MS06-053: Indexing Service - Moderate,MS06-053: Indexing Service - Moderate,MS06-053: Indexing Service - Moderate,Questions about MS06-053?,MS06-054: Office - Critical,MS06-054: Office - Critical,MS06-054: Office - Critical,Questions about MS06-054?,Security Advisory (1 of 2),Security Advisory 922582 - Minifilter can block AU and WSUS Non-security update This update addresses an error that could result when using a minifilter-based application on a system. Specific Error Code: 0x80070002 This error code could occur when updating any of the following Microsoft tools: Automatic Updates WU Web site MU Web site Inventory Tool for Microsoft Updates (ITMU) for Microsoft Systems Management Server (SMS) 2003 SUS WSUS Windows Server 2003 R2 is the only version of Windows that ships with a minifilter-based application, but it is not installed by default. ISVs are building new applications using the minifilter technology; this error could affect any systems in the future. Customers should evaluate and deploy the update. More information: /?id=922582,Security Advisory (2 of 2),Security Advisory 925143 Adobe Security Bulletin: APSB06-11 Flash Player Update to Address Security Vulnerabilities Recent security vulnerabilities in Macromedia Flash Player from Adobe redistributed with Microsoft Windows XP SP1 & SP2. The Microsoft Security Response Center is in communication with Adobe. Adobe has made updates available on their Web site. Customers who use Flash Player should follow the Adobe guidance. For more information please see Adobe Security Bulletin located at: /go/apsb06-11/ KB925143: /technet/security/advisory/925143.mspx,Sep 2006 Non-Security Updates,Detection and Deployment,MU does not support detection for vulnerable Office 2000 products For Office 2000, use SMS/WSUS/MBSA1.2/OfficeUpdateTool,Other Update Information,Windows Malicious Software Removal Tool,Twenty-first monthly incremental update. The September update adds the ability to remove: Win32/Bancos Win32/Haxdoor Win32/Sinteri Available as priority update through Windows Update or Microsoft Update for Windows XP users Offered through WSUS; not offered through SUS 1.0 Also as an ActiveX control or download at /malwareremove,Lifecycle Support Information,End of public security support for Windows XP SP 1 10 October 2006 Support EOL for Software Update Services (SUS) 1.0 6 December 2006 /windowsserversystem/updateservices/evaluation/previous/default.mspx Public security support for Windows 98, 98 SE, and Millennium Edition HAS ENDED as of 11 July 2006. See /lifecycle for more information,Resources,September Security Bulletin Webcast (US) /CUI/EventDetail.aspx?EventID=1032305653&Culture=en-US Security Bulletins Summary /taiwan/technet/security/bulletin/ms06-aug.mspx Security Bulletins Search /technet/security/current.aspx Security Advisories /taiwan/technet/security/advisory/ MSRC Blog /msrc Notifications /technet/security/bulletin/notify.mspx TechNet Radio /tnradio SearchSecurity Column /news/0,289141,sid14,00.html IT Pro Security Newsletter /technet/security/secnews/ TechNet Security Center /taiwan/technet/security,Questions and Answers,S