Microsoft « It Is What It Is

Posts Tagged ‘Microsoft’

Microsoft Patches – June 2010

Tuesday, June 8th, 2010

Here is a summary of the June, 2010 Microsoft Security Patches. The full details from Microsoft can be found here.

As always, do your own research to determine if these patches are necessary for your systems.

Bulletin	Description	Reference KB	Microsoft Rating
MS10-033	Vulnerabilities in Media Decompression Could Allow Remote Code Execution	979902	Servers: Critical
MS10-033	Remote Code Execution		Desktops: Critical
MS10-034	Cumulative Security Update of ActiveX Kill Bits	980195	Servers: Moderate
MS10-034	Remote Code Execution		Desktops: Critical
MS10-035	Cumulative Security Update for Internet Explorer	982381	Servers: Moderate
MS10-035	Remote Code Execution		Desktops: Critical
MS10-032	Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege	979559	Servers: Important
MS10-032	Elevation of Privilege		Desktops: Important
MS10-036	Vulnerability in COM Validation in Microsoft Office Could Allow Remote Code Execution	983235	Server/Desktop Microsoft Office: Important
MS10-036	Remote Code Execution		Server/Desktop Microsoft Office: Important
MS10-037	Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege	980218	Servers: Important
MS10-037	Elevation of Privilege		Desktops: Important
MS10-038	Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution	2027452	Server/Desktop Microsoft Office: Important
MS10-038	Remote Code Execution		Server/Desktop Microsoft Office: Important
MS10-039	Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege	2028554	Server / Desktop: Microsoft Office: Important
MS10-039	Elevation of Privilege		Server / Desktop: Microsoft Office: Important
MS10-040	Vulnerability in Internet Information Services Could Allow Remote Code Execution	982666	Servers: Important
MS10-040	Remote Code Execution		Desktops: Important
MS10-041	Vulnerability in Microsoft .NET Framework Could Allow Tampering	981343	Servers: Important
MS10-041	Tampering		Desktops: Important

Find an error in my analysis? Let me know!

Tags: Microsoft, Patches, Security, Updates
Posted in Uncategorized | No Comments »

Microsoft Patches – May 2010

Monday, May 17th, 2010

It’s time to patch those servers and workstations again. Only two patches from Microsoft this month. Should make for an easy night.

Patch #	Affected	Reference KB	Microsoft Rating
Patch #	Affected	Reference KB	Microsoft Rating
MS10-030	Vulnerabilities in Outlook Express and Windows Mail
	Outlook Express and Windows Mail Integer Overflow	KB978542	Servers: Important
	Outlook Express and Windows Mail Integer Overflow	KB978542	Clients: Critical
MS10-031	Vulnerabilities in Microsoft Visual Basic for Applications
	VBE6.DLL Stack Memory Corruption	KB978213	OS: Important
			Office 2007: Important
			Developer Tools: Critical

Don’t take my word for it, check the MS Site yourself and determine if you need these patches. Any good System Administrator will check the patches at the source themselves.

Tags: Microsoft, Patches, Security, Updates
Posted in System Administration, Windows | No Comments »

Last night, we were patching our Windows Servers and had some strange behavior on one of the servers. The server would boot up fine, but when you arrived at the log in screen most of the screen was black. The cursor was visible, but foreground and background of text and field names were all black. Many attempts were made to log in and they all failed. The Event log on the server did not provide any clues as to what was causing the problem.

At first, I suspected the hard drive was full. Servers with IIS seem to be somewhat notorious for this happening if they are not watched closely. In this case, the server runs an application that uses IIS for management and client application connectivity. Since the server was on the network, I was able to connect to the local hard drive and cleaned up several GB of IIS and Application logs. I rebooted the server, fully expecting the issue to be gone. No luck there.

When all else fails, Google is your friend…

Tags: Black, Colors, Default, KB906510, Login, Microsoft, Support, Windows
Posted in System Administration, Windows | No Comments »

Microsoft Patches – April 2010

Saturday, April 17th, 2010

It’s time to patch those servers and workstations again. I figured I’d take a preview of how big the workload was going to be. Lots of critical patches released this month. I’m sure I don’t need to get on a soapbox about patching your home computers as well…

Patch #	Affected	Reference KB	Microsoft Rating
Patch #	Affected	Reference KB	Microsoft Rating	MS10-019	Vulnerabilities in Windows Authenticode Verification
Authenticode	KB 981210	Severity: Critical		MS10-019
MS10-020	Vulnerabilities in SMB Client (Replaces MS10-006 )
MS10-020	SMB Client	KB 980232	Severity: Critical
MS10-021	Privilege Elevation Vulnerabilities in Windows Kernel (Replaces MS10-015 )
MS10-021	Windows Kernel	KB 979683	Severity: Important
MS10-022	Vulnerability in VBScript Engine
MS10-022	VBScript	KB 981169	Severity: Critical
MS10-023	Vulnerability in Microsoft Office Publisher (Replaces MS08-027 MS09-030 )
MS10-023	Publisher	KB 981160	Severity: Important
MS10-024	DoS Vulnerability in Microsoft Exchange and SMTP Service
MS10-024	Exchange, SMTP Service	KB 981832	Severity: Important
MS10-025	Vulnerability in Micorsoft Windows Media Services
MS10-025	Windows Meida Services	KB 980858	Severity: Critical
MS10-026	Vulnerability in Microsoft MPEG Layer 3 Codec
MS10-026	MPEG Layer 3 Codec	KB 977816	Severity: Critical
MS10-027	Vulnerability in Windows Media Player (Replaces MS07-047 )
MS10-027	Windows Media Player	KB 979402	Severity: Critical
MS10-028	Vulnerabilities in Microsoft Visio (Replaces MS09-062 MS09-005 )
MS10-028	Windows Media Player	KB 980094	Severity: Critical
MS10-029	ISATAP Spoofing Vulnerability
MS10-029	ISATAP	KB 978338	Severity: Moderate

Credit: The SANS Internet Storm Center puts together a reference of the patches every month. I frequent their site for extra details when I am compiling my patch list.

Tags: Microsoft, Patches, Security, Updates
Posted in System Administration, Windows | No Comments »

Fun With Windows – RDP & Passwords

Saturday, April 17th, 2010

After purchasing an iPad, I set up VirtualBox and installed iTunes to do my syncing. The plan was that I would share my music from my Ubuntu box to the Virtual Machine. Two problems immediately presented themselves: I could not charge my iPad and the sync speed was very slow.

So I changed the plan and recycled an old computer and installed Windows XP. I don’t want to have multiple keyboards and mice on my desk. Nor do I want to have to stop what I’m doing and switch screens should I need to make a change on the XP box. To get around this, I set up Remote Desktop and went back to Ubuntu and tried to log in. The connection was fine, however I received a message “Unable to log you on because of an account restriction.” Specifically, this Microsoft KB covers the details: http://support.microsoft.com/kb/303846

The account restriction specifically relates to a security setting in XP that requires accounts using Remote Desktop to have a password. In short: No password, No Access. I’m not one to complain about good security, remote access with no password is a bad idea – regardless of the OS you are using. I switched screens and did the usual CTRL-ALT-DELETE to change the password. Since the computer is not on the domain, I did not get a password change box. The next attempt was to use the Control Panel, since I did not have a mouse connected I was not able to change the password there either. Last stop: Command Prompt! Microsoft includes a great set of command line tools that can be used to replace many of the graphical wizards they provide. In this case the net utility will do the job.

net user <username> <newpassword>

Once my password was reset, I was able to connect my remote desktop, no problems.

Now I need to do Windows Updates, here’s the count as of today:

72 Post Service Pack 2 Updates
Service Pack 3
24 Post Service Pack 3 Updates (including IE8)
3 Post IE Updates

All told, probably about 3 hours of downloading, installing and rebooting. I am now very glad that I don’t have to switch screens to check on it every 20 minutes.

Tags: Account Restriction, Command Line, Microsoft, Password Change, RDP, Remote Desktop, Unable to log you on, Windows, XP
Posted in System Administration, Windows | No Comments »

It Is What It Is

Posts Tagged ‘Microsoft’

Microsoft Patches – June 2010

Microsoft Patches – May 2010

Microsoft Patches – April 2010

Fun With Windows – RDP & Passwords

Surfing Safely?

Article History

Tag Cloud!

Site Links

It Is What It Is

Posts Tagged ‘Microsoft’

Microsoft Patches – June 2010

Microsoft Patches – May 2010

Windows – Black Login Screen

Microsoft Patches – April 2010

Fun With Windows – RDP & Passwords

Surfing Safely?

Article History

Tag Cloud!

Site Links