April 10, 2007
Today Microsoft released the following Security Bulletin(s).
This Microsoft Security Bulletin Summary for April 2007 courtesy of Melissa Travers (Microsoft MVP Lead Security)
Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.
Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.
Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939)
Vulnerability in Universal Plug and Play Could Allow Remote Code Execution (931261)
Vulnerability in Microsoft Agent Could Allow Remote Code Execution 932168
Vulnerabilities in CSRSS Could Allow Remote Code Execution 930178
Released out of band on April 3rd – Critical Bulletin
Vulnerabilities in GDI Could Allow Remote Code Execution (925902)
Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784)
This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.
If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338 International customers should contact their local subsidiary