Microsoft Windows Server Update Services (WSUS) Blocked from Deploying Security Updates

Source: MSRC

Hi. Bill here.

I want to let you know that we have just posted Microsoft Security Advisory 954960, which contains information regarding deployment Issues with Microsoft Windows Server Update Services (WSUS) version 3.0 and 3.0 Service Pack 1. Under specific conditions, the issue does not let clients detect any updates from a WSUS server on systems with Microsoft Office 2003 installed.

While the notification of this issue went out as a Security Advisory, this issue is not a security vulnerability in WSUS or Microsoft Office 2003, but it does address customers’ overall security. This issue only affects the ability of client machines to synchronize with a WSUS server.

We encourage affected customers to implement the manual workarounds, included in the Advisory, which enable clients to synchronize with a WSUS server and will be updated when our ongoing work in testing the permanent solution is complete.

This issue is not related to Microsoft Security Advisory 954474 where systems were blocked from deploying security updates using System Center Configuration Manager 2007.

Thanks,

Bill Sisk

Did you get the Adobe Update?

I read about the update yesterday, but interestingly enough, you won’t see the update (for the automated updater from Adobe) until you actually have to use Adobe Reader.

I could go for months without using Adobe – and, frankly wish I never had to use it.  But, I did today and was presented with the update.

image

If you want to do it yourself, here’s the info about it…

http://kb.adobe.com/selfservice/viewContent.do?externalId=kb403742&sliceId=1

It addresses a buffer overflow security vulnerability.

Microsoft Security Advisory (954474) – affects ConfigMgr 2007

System Center Configuration Manager 2007 Blocked from Deploying Security Updates

Microsoft is investigating public reports of a non-security issue that affects environments with System Center Configuration Manager 2007 that deploy updates to Systems Management Services (SMS) 2003 clients. Microsoft is aware of reports from customers who are experiencing this issue.

Upon completion of the investigation, Microsoft will take the appropriate action to resolve the problem within System Center Configuration Manager 2007.

Mitigating Factors:

• This issue impacts customers using System Center Configuration Manager 2007 servers to deploy updates to SMS 2003 clients.

 

Read the full Advisory…

http://www.microsoft.com/technet/security/advisory/954474.mspx

Early Warning: 7 patches from Microsoft for June 2008

Microsoft Security Bulletin Advance Notification for June 2008

http://www.microsoft.com/technet/security/bulletin/ms08-jun.mspx?pf=true

3 Critical

Bulletin Identifier
Bluetooth Bulletin

Maximum Severity Rating

Critical

Impact of Vulnerability

Remote Code Execution

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update may require a restart.

Affected Software

Microsoft Windows. For more information, see the Affected Software section.

Bulletin Identifier
Internet Explorer Bulletin

Maximum Severity Rating

Critical

Impact of Vulnerability

Remote Code Execution

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update requires a restart.

Affected Software

Microsoft Windows, Internet Explorer. For more information, see the Affected Software section.

Bulletin Identifier
DirectX Bulletin

Maximum Severity Rating

Critical

Impact of Vulnerability

Remote Code Execution

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update may require a restart.

Affected Software

Microsoft Windows. For more information, see the Affected Software section.

 

3 Important

Bulletin Identifier
WINS Bulletin

Maximum Severity Rating

Important

Impact of Vulnerability

Elevation of Privilege

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update requires a restart.

Affected Software

Microsoft Windows. For more information, see the Affected Software section.

Bulletin Identifier
Active Directory Bulletin

Maximum Severity Rating

Important

Impact of Vulnerability

Denial of Service

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update requires a restart.

Affected Software

Microsoft Windows. For more information, see the Affected Software section.

Bulletin Identifier
PGM Bulletin

Maximum Severity Rating

Important

Impact of Vulnerability

Denial of Service

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update requires a restart.

Affected Software

Microsoft Windows. For more information, see the Affected Software section.

 

– and –

1 Moderate

Bulletin Identifier
Kill Bit Bulletin

Maximum Severity Rating

Moderate

Impact of Vulnerability

Remote Code Execution

Detection

Microsoft Baseline Security Analyzer can detect whether your computer system requires this update. The update may require a restart.

Affected Software

Microsoft Windows. For more information, see the Affected Software section.