January 2008 MSRC Security Bulletin Release

Here we go, folks, get ready for the start of the 2008 Security updates! On Tuesday, January 8, 2008, Microsoft is planning to release two new security bulletins, one critical and the other identified as important. Note, in particular, that the critical update affects Windows Vista (both 32 and 64 Bit). Both updates will require a restart.

Critical

• Microsoft Security Bulletin 1

Impact of Vulnerability: Remote Code Execution
Detection: MBSA can detect whether your computer system requires this update.
Affected Software: Current versions of Microsoft Windows 2000, Windows XP and Windows Server 2003 and Windows Vista.

Important

• Microsoft Security Bulletin 2

Impact of Vulnerability: Local Elevation of Privilege
Detection: MBSA can detect whether your computer system requires this update.
Affected Software: Current versions of Microsoft Windows 2000, Windows XP and Windows Server 2003.

The Microsoft Windows Malicious Software Removal Tool will be updated. In addition, Microsoft is planning to release five high-priority, non-security updates on Microsoft Update and two high-priority, non-security updates on Windows Update.

Since there may be a number of new Windows Vista users resulting from Christmas gifts or perhaps Boxing Day purchases, check that you have automatic updates turned on (whether you choose to be notified or have the updates automatically installed. Click the Windows Vista Start Orb and type security. Click on the Security Center link and confirm the settings. For more information, see Understanding Microsoft Updates.

References:

MSRC Blog: January 2008 Advance Notification
TechNet: Microsoft Security Bulletin Advance Notification for January 2008

Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...