Microsoft is releasing the eleven (11) new security bulletins described below for newly discovered vulnerabilities. In addition, Microsoft also revised the following bulletins to update detection changes:
MS08-022 – major revision, added XP SP3 detection
MS08-033 – major revision, added XP SP3 detection
MS07-047 – major revision, update detection
MS08-040 – minor revision, update detection
Advisories:
Release Advisory 955179
Revised Advisory 954960
Security Update Bulletins:
Bulletin Number: MS08-041
Maximum Severity: Critical
Affected Products: Snapshot Viewer for Access, Office Access 2000, Office Access 2002, and Office Access 2003
Impact: Remote Code Execution
Bulletin Number: MS08-042
Maximum Severity: Important
Affected Products: Office Word 2002 and Office Word 2003
Impact: Remote Code Execution
Bulletin Number: MS08-043
Maximum Severity: Critical
Affected Products: Office Excel 2000, Office Excel 2002, Office Excel 2003, Office Excel 2007, Excel Viewer, Excel Viewer 2003, SharePoint Server 2007, Office 2004 for Mac, Office 2008 for Mac
Impact: Remote Code Execution
Bulletin Number: MS08-044
Maximum Severity: Critical
Affected Products: Office 2000, Office XP, Office 2003, Office Project 2002, Office Converter Pack, Works 8.0
Impact: Remote Code Execution
Bulletin Number: MS08-045
Maximum Severity: Critical
Affected Products: Internet Explorer on Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008
Impact: Remote Code Execution
Bulletin Number: MS08-046
Maximum Severity: Critical
Affected Products: Windows 2000, Windows XP, Windows Server 2003
Impact: Remote Code Execution
Bulletin Number: MS08-047
Maximum Severity: Important
Affected Products: Windows Vista and Windows Server 2008
Impact: Information Disclosure
Bulletin Number: MS08-048
Maximum Severity: Important
Affected Products: Outlook Express on Windows 2000, Windows XP, Windows Server 2003. Windows Mail on Windows Vista and Windows Server 2008
Impact: Information Disclosure
Bulletin Number: MS08-049
Maximum Severity: Important
Affected Products: Windows 2000, Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008
Impact: Remote Code Execution
Bulletin Number: MS08-050
Maximum Severity: Important
Affected Products: Windows Messenger on Windows 2000, Windows XP and Windows Server 2003
Impact: Information Disclosure
Bulletin Number: MS08-051
Maximum Severity: Critical
Affected Products: Office PowerPoint 2000, Office PowerPoint 2002, Office PowerPoint 2003, Office PowerPoint 2007, Office PowerPoint Viewer 2003, Office Compatibility Pack for 2007 File Formats, and Office 2004 for Mac.
Impact: Remote Code Execution
References:
MSRT:
Microsoft Windows Malicious Software Removal ToolMSRC BLog:
August 2008 Bulletin Monthly ReleaseTechNet:
Microsoft Security Bulleting Summary for August 2008Remember - "A day without laughter is a day wasted."May the wind sing to you and the sun rise in your heart...