Microsoft Updates for Multiple Vulnerabilities
http://jvnrss.ise.chuo-u.ac.jp/jtg/trn/en/TRTA08-190A.html
JVNRSS based Status Tracking Notes: Microsoft has released updates that address vulnerabilities in Microsoft Windows, Windows Server, Microsoft SQL Server, and Microsoft Outlook Web Access.JVNRSS Feasibility Study Teamjvn@jvn.jpTRTA08-190A2008-07-16T12:07+00:002008-07-16T12:07+00:002008-07-16T12:07+00:00ThreatCON (2) => (1)
https://tms.symantec.com/
Symantechttp://www.us-cert.gov/cas/techalerts/TA08-190A.html2008-07-16T21:38+00:002008-07-16T21:38+00:002008-07-16T21:38+00:00Zone Alarm Releases Security Advisory
http://www.us-cert.gov/current/archive/2008/07/14/archive.html#zone_alarm_releases_security_advisory
US-CERT Current Activity
Zone Alarm has released a Security Advisory indicating that version 7.0.483.0 has been released to address an issue in the way Microsoft Security Bulletin MS08-037 affects Zone Alarm.
US-CERThttp://www.us-cert.gov/cas/techalerts/TA08-190A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms08-037.mspx2008-07-14T13:58-04:002008-07-14T13:58-04:002008-07-14T13:58-04:00Workaround to Sudden Loss of Internet Access Problem
http://download.zonealarm.com/bin/free/pressReleases/2008/LossOfInternetAccessIssue.html
Microsoft Update KB951748 is known to cause loss of internet access for ZoneAlarm users on Windows XP/2000. Windows Vista users are not affected.
Check Point Software Technologies Ltd. http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx2008-07-11T21:36-00:002008-07-11T21:36-00:002008-07-11T21:36-00:00Microsoft Security Bulletin Major Revisions
http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx?jvntrev=1
Via Microsoft Mailing List
Vulnerabilities in DNS Could Allow Spoofing (MS08-037)
Bulletin revised to inform users of ZoneAlarm and Check Point Endpoint Security of an Internet connectivity issue.
MicrosoftMS08-037http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx2008-07-10T17:51-07:002008-07-10T17:51-07:002008-07-10T17:51-07:00July 2008 black tuesday overview (Version: 2)
http://isc.sans.org/diary.html?storyid=4684
Overview of the July 2008 Microsoft patches and their status.
SANS Internet Storm Centerhttp://www.us-cert.gov/cas/techalerts/TA08-190A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms08-037.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-038.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-039.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-040.mspx2008-07-08T21:30+00:002008-07-08T21:30+00:002008-07-08T21:30+00:00ThreatCON (1) => (2)
https://tms.symantec.com/
Tuesday, July 8, 2008, Symantec has discovered active exploitation of a what is possibly an undisclosed vulnerability affecting Microsoft Word. Ensure that AntiVirus software is up to date.
Symantechttp://www.us-cert.gov/cas/techalerts/TA08-190A.html2008-07-08T21:30+00:002008-07-08T21:30+00:002008-07-08T21:30+00:00Microsoft Updates for Multiple Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA08-190A.html
Via US-CERT Mailing List
US-CERTTA08-190Ahttp://www.us-cert.gov/cas/techalerts/TA08-190A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms08-037.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-038.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-039.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-040.mspx2008-07-08T16:08-04:002008-07-08T16:08-04:002008-07-08T16:08-04:00Microsoft Security Bulletin Summary for July 2008
http://www.microsoft.com/technet/security/bulletin/ms08-jul.mspx
Included in this advisory are updates for newly discovered vulnerabilities.
MicrosoftMS08-JULhttp://www.microsoft.com/technet/security/bulletin/ms08-037.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-038.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-039.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-040.mspx2008-07-08T16:08-04:002008-07-08T16:08-04:002008-07-08T16:08-04:00Microsoft Releases July Security Bulletin
http://www.us-cert.gov/current/archive/2008/07/08/archive.html#microsoft_releases_july_security_bulletin
US-CERT Current Activity
Microsoft has released updates to address vulnerabilities in Microsoft Windows and SQL Server as part of the Microsoft Security Bulletin Summary for July 2008. These vulnerabilities may allow an attacker to execute arbitrary code, redirect network traffic to a malicious location, or access the system with elevated privileges.
US-CERThttp://www.us-cert.gov/cas/techalerts/TA08-190A.htmlhttp://www.microsoft.com/technet/security/bulletin/ms08-037.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-038.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-039.mspxhttp://www.microsoft.com/technet/security/bulletin/ms08-040.mspx2008-07-08T13:27-04:002008-07-08T13:27-04:002008-07-08T13:27-04:00ZoneAlarm is investigating the issue with Microsoft update KB951748
http://forum.zonelabs.org/zonelabs/board/message?board.id=cfg&message.id=52785
We are investigating the issue with the MS update KB951748. For the time being we suggest you uninstall KB951748 until the issue has been resolved.
Check Point Software Technologies Ltd. http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx2008-07-08T15:47+00:002008-07-08T15:47+00:002008-07-08T15:47+00:00Context IS Advisory - MS08-39 OWA XSS
http://www.securityfocus.com/archive/1/494131
Outlook Web Access for Exchange Server Data Validation Cross-Site Scripting Vulnerability (MS08-039, CVE-2008-2247)
Outlook Web Access for Exchange Server Parsing Cross-Site Scripting Vulnerability (MS08-039, CVE-2008-2248)
Vulnerability Reported
Several Cross Site Scripting vulnerabilities were found in within Outlook Web Access (OWA) 2003/2007. An
Context IShttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2247http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2248http://www.microsoft.com/technet/security/bulletin/ms08-039.mspx2008-01-102008-01-102008-01-10Microsoft SQL Server Restore Integer Underflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=723
SQL Server Memory Corruption Vulnerability (MS08-040, CVE-2008-0107)
Vulnerability Reported
Remote exploitation of an integer underflow vulnerability within Microsoft Corp.'s SQL Server could allow a remote attacker to execute arbitrary code with the privileges of the SQL Server.
iDefensehttp://www.us-cert.gov/cas/techalerts/TA08-190A.htmlhttp://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0107http://www.microsoft.com/technet/security/bulletin/MS08-040.mspx2007-12-062007-12-062007-12-06