An ordinary guy trying to make a difference
http://technet.microsoft.com/en-us/library/ee292065.aspx
From the System Center Operations Manager blog:
The Visio 2007 Add-in for System Center Operations Manager 2007 R2 combines the strengths of two applications widely used in enterprise IT to simplify the creation of customized graphical dashboards showing the health of an environment. Examples of such diagrams include showing objects by geography overlaid on a map, by location in a datacenter or building, by role in a logical view of an application or by topology for complex distributed applications such as Exchange or Active Directory.
Update: The add-in is available from http://www.visiotoolbox.com. The documentation is at http://technet.microsoft.com/en-us/library/ee342533.aspx.
New features for this release include:
The Visio Add-in has the following features:
To get your imagination going, here are some sample ideas for dashboards created in Visio and linked to Operations Manager using this add-in:
http://blogs.technet.com/momteam/archive/2009/07/31/visio-2007-add-in-for-operations-manager-2007-r2-released.aspx
This bulletin summary lists out-of-band security bulletins released on July 28, 2009. The full version of the Microsoft Security Bulletin Summary for July 2009 can be found at http://www.microsoft.com/technet/security/bulletin/ms09-jul.mspx.
With the release of the out-of-band bulletins on July 28, 2009, this bulletin summary replaces the out-of-band bulletin advance notification originally issued on July 24, 2009. The revised bulletin summary Web page includes the out-of-band security bulletins as well as the security bulletins already released on July 14, 2009. For more information about the bulletin advance notification service, see http://www.microsoft.com/technet/security/Bulletin/advance.mspx.
Microsoft will host two webcasts to address customer questions on these out-of-band bulletins on Tuesday, July 28, 2009, at 1:00 PM and 4:00 PM Pacific Time (US & Canada). Register for these out-of- band Security Bulletin Webcasts at http://www.microsoft.com/technet/security/bulletin/summary.mspx.
Microsoft also provides information to help customers prioritize monthly security updates with any non-security, high-priority updates that are being released on the same day as the monthly security updates. Please see the section, Other Information.
Critical Security Bulletins Microsoft Security Bulletin MS09-034 - Affected Software: - Internet Explorer 5.01 Service Pack 4 when installed on Microsoft Windows 2000 Service Pack 4 - Internet Explorer 6 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4 - Internet Explorer 6 for Windows XP Service Pack 2 and Windows XP Service Pack 3 - Internet Explorer 6 for Windows XP Professional x64 Edition Service Pack 2 - Internet Explorer 6 for Windows Server 2003 Service Pack 2 - Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 2 - Internet Explorer 6 for Windows Server 2003 with SP2 for Itanium-based Systems - Internet Explorer 7 for Windows XP Service Pack 2 and Windows XP Service Pack 3 - Internet Explorer 7 for Windows XP Professional x64 Edition Service Pack 2 - Internet Explorer 7 for Windows Server 2003 Service Pack 2 - Internet Explorer 7 for Windows Server 2003 x64 Edition Service Pack 2 - Internet Explorer 7 for Windows Server 2003 with SP2 for Itanium-based Systems - Internet Explorer 7 in Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 - Internet Explorer 7 in Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 - Internet Explorer 7 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 7 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 7 in Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 - Internet Explorer 8 for Windows XP Service Pack 2 and Windows XP Service Pack 3 - Internet Explorer 8 for Windows XP Professional x64 Edition Service Pack 2 - Internet Explorer 8 for Windows Server 2003 Service Pack 2 - Internet Explorer 8 for Windows Server 2003 x64 Edition Service Pack 2 - Internet Explorer 8 in Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 - Internet Explorer 8 in Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 - Internet Explorer 8 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 8 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 8 in Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 - Impact: Remote Code Execution - Version Number: 1.0
Moderate Security Bulletins Microsoft Security Bulletin MS09-035 - Affected Software: - Microsoft Visual Studio .NET 2003 Service Pack 1 - Microsoft Visual Studio 2005 Service Pack 1 - Microsoft Visual Studio 2005 Service Pack 1 64-Bit Hosted Visual C++ Tools - Microsoft Visual Studio 2008 - Microsoft Visual Studio 2008 Service Pack 1 - Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package - Microsoft Visual C++ 2008 Redistributable Package - Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package - Impact: Remote Code Execution - Version Number: 1.0
Security Advisories Updated or Released Today * Microsoft Security Advisory (973882) - Title: Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution - http://www.microsoft.com/technet/security/advisory/973882.mspx - Revision Note: V1.0 (July 28, 2009): Advisory published.
.NET Framework 2.0
969454 FIX: Error message together with a System.InvalidOperationException exception when you run an ASP.NET 2.0 application: "Hashtable insert failed. Load factor too high"
200081 Outlook 2007: Folders moved in a shared mailbox are not displayed correctly on another machine in cached mode
972002 FIX: Error message when you try to create an encrypted database in SQL Server Compact 3.5: "The operating system does not support encryption"
971490 Cumulative update package 6 for SQL Server 2008
971051 FIX: Error message when you run a SQL Server 2008-based application that calls the SQLBindParameter function: "The incoming tabular data stream (TDS) remote procedure call (RPC) protocol stream is incorrect"
972197 FIX: When you query the DataSpaceUsed property or the IndexSpaceUsed property of a database that contains many tables in SQL Server 2008, the query takes a long time to finish
971985 FIX: A Drillthrough action inside table groups passes incorrect parameter values in SQL Server 2008 Reporting Services
973301 FIX: Error message when you install SQL Server 2008 or SQL Server 2008 Service Pack 1 on a Windows XP-based computer that has SQL Server 2000 installed: "Object reference not set to an instance of an object."
973257 FIX: The SQL:BatchCompleted event and the RPC:Completed event displays an incorrect row count when you use SQL Server Profiler to monitor a sp_executesql stored procedure call in Microsoft SQL Server 2008
972201 FIX: The “Copy Only Backup†option is still available even though you select the “Differential†option in the “Back Up Database†dialog box in SQL Server 2008 Management Studio
972200 FIX: Error message when you try to disable Resource Governor by using the UI in SQL Server 2008 Management Studio after you drop a Resource Governor workload group: "Alter failed for ResourceGovernor 'Microsoft.SqlServer.Management.Smo.ObjectKeyBase'"
971136 FIX: Error message when you synchronize a database or manually run sp_replcmds after you perform partial updates on a varbinary(max) column in SQL Server 2008: "The rowset does not contain any column with offset -1."
971491 Cumulative update package 3 for SQL Server 2008 Service Pack 1
973303 FIX: Error message when you run the sp_add_alert stored procedure in SQL Server 2008 on a computer that is running Windows Server 2008 or Windows Vista: "SQLServerAgent Error: WMI error: 0x80041003"
970399 FIX: The MAXDOP option for a running query or the max degree of parallelism option for the sp_configure stored procedure does not work in SQL Server 2008
972767 FIX: The SQL Server 2008 database engine and SQL Server 2008 Reporting Services may consume more power on Windows client computers than expected
972759 FIX: Installing SQL Server 2008 Service Pack 1 may reset the "max_worker_threads" column value for a SQL Server Agent subsystem
972203 FIX: Error message when you press F1 to open the Device Contents help during a restore operation in SQL Server 2008: "Object reference not set to an instance of an object. (DqlManagerUI)"
973888 The Full-Text Search component is not completely rolled back to the Service Pack 1 version after you uninstall Cumulative Update 3 for SQL Server 2008 Service Pack 1 that is applied by using a slipstream installation
971640 FIX: You cannot set up Data Collector on a SQL Server 2008 server if the server has a database that cannot be accessed or only allows restricted access
970909 FIX: You receive an incorrect result when you run a full-text query that combines the NEAR operator together with the AND operator in SQL Server 2008
970713 FIX: A policy is evaluated against an incorrect target when you run the policy category in evaluation mode on a remote server that is running SQL Server 2008
972681 FIX: The removal of a transaction log file of the database on the principal server breaks a database mirroring session in SQL Server 2008
973250 FIX: A specified collation is displayed incorrectly when you use the Advanced/Enterprise installation mode to install a SQL Server 2008 failover cluster through the GUI
970133 FIX: When you create a compressed backup for a database in SQL Server 2008, you cannot stop the backup operation if the backup operation stops responding
971057 FIX: An INSERT INTO EXEC statement generates error messages even if you set the ANSI_WARNINGS option to "OFF" in SQL Server 2008
973479 Pages may not be print and the print preview may be blank when printing from Internet Explorer 7 or Internet Explorer 8 on Windows Vista or Windows 7
970653 August 2009 cumulative time zone update for Microsoft Windows operating systems
970910 A memory leak issue occurs if you call the WTSQuerySessionInformation function to query the published applications for session ID 0, or if you to call this function to initialize the program information for session ID 0
972685 FIX: The Explorer.exe process becomes unresponsive when Windows Explorer hosts a shell extension that was created by using Microsoft Foundation Class (MFC)
971291 The cache information for only the first 32 processors is reported if the number of processors is greater than 32 on a computer that is running Windows Server 2003 SP2
200079 iSCSI I/O requests never complete if the iSCSI target does not return a status.
971229 The private key description field always displays "CryptoAPI Private Key," and you cannot change the text on computers that are running Windows Server 2003 or Windows XP x64 Professional
971334 An application that uses .NET Framework to monitor the event log does not read the descriptions in the Application log from the source of a Software Licensing Service on a computer that is running Windows Vista or Windows Server 2008
971060 You cannot run network related tools when an application uses serialized Network Driver Interface Specification (NDIS) miniport drivers
200030 Windows Server 2008 installation fails with "The computer could not find a valid system volume" when installing to previously used disks
973422 The upgrade from Windows Server 2008 to Windows Server 2008 R2 fails if you have applied some TCP-A and NetDMA settings before the upgrade
970730 Certificates are unusable when you import a PEX file to a computer that is running Windows Vista or Windows Server 2008
971800 Applications that reply on the RPC service are blocked in Windows Vista SP1 or Windows Server 2008 when you block Windows Firewall incoming connections and enable remote management
972485 USB 2.0 high-speed devices are recognized as full-speed after you hibernate and then resume a computer that is running Windows Vista or Windows Server 2008
973921 A Zip file with a long file name might be truncated to a short file name after being modified in Windows Vista and in Windows Server 2008
970732 You cannot create an Authorization Manager SQL store in a database that has a case-sensitive collation
974038 "Windows cannot install required files" error when installing a third party storage driver during Windows setup
974001 Windows Server Backup treats removable cartridge disk drives as DVD drives
970694 You receive a "Stop 0x00000050" error message after you enable or disable Microsoft Bluetooth Enumerator in Device Manager on a Windows Vista-based computer that has the Windows Vista Feature Pack for Wireless installed
970887 Performance issues occur when Windows Rights Management Services client has very large files associated with an RMS policy
This is an advance notification of out-of-band security bulletins that Microsoft is intending to release on July 28, 2009. The full version of the Microsoft Security Bulletin Advance Notification for the July 2009 out-of-band release can be found at http://www.microsoft.com/technet/security/bulletin/ms09-jul-ans.mspx
This bulletin advance notification will be replaced with the revised July bulletin summary on July 28, 2009. The revised bulletin summary will include the out-of-band security bulletins, as well as the security bulletins already released on July 14, 2008. For more information about the bulletin advance notification service see http://www.microsoft.com/technet/security/Bulletin/advance.mspx.
Microsoft will host two webcasts to address customer questions on these out-of-band bulletins on Tuesday, July 28, 2009, at 1:00 PM Pacific Time (US & Canada) and at 4:00 PM Pacific Time (US & Canada). Register for these out-of-band Security Bulletin Webcasts at http://www.microsoft.com/technet/security/bulletin/summary.mspx.
Microsoft also provides information to help customers prioritize monthly security updates with any non-security, high-priority updates that are being released on the same day as the monthly security updates. Please see the section, Other Information. This advance notification provides the software subject as the bulletin identifier, because the official Microsoft Security Bulletin numbers are not issued until release. The bulletin summary that replaces this advance notification will have the proper Microsoft Security Bulletin numbers (in the MSyy-xxx format) as the bulletin identifier. The security bulletins for this month are as follows, in order of severity:
Critical Security Bulletins IE Bulletin - Affected Software: - Internet Explorer 5.01 Service Pack 4 when installed on Microsoft Windows 2000 Service Pack 4 - Internet Explorer 6 Service Pack 1 when installed on Microsoft Windows 2000 Service Pack 4 - Internet Explorer 6 for Windows XP Service Pack 2 and Windows XP Service Pack 3 - Internet Explorer 6 for Windows XP Professional x64 Edition Service Pack 2 - Internet Explorer 6 for Windows Server 2003 Service Pack 2 - Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 2 - Internet Explorer 6 for Windows Server 2003 with SP2 for Itanium-based Systems - Internet Explorer 7 for Windows XP Service Pack 2 and Windows XP Service Pack 3 - Internet Explorer 7 for Windows XP Professional x64 Edition Service Pack 2 - Internet Explorer 7 for Windows Server 2003 Service Pack 2 - Internet Explorer 7 for Windows Server 2003 x64 Edition Service Pack 2 - Internet Explorer 7 for Windows Server 2003 with SP2 for Itanium-based Systems - Internet Explorer 7 in Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 - Internet Explorer 7 in Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 - Internet Explorer 7 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 7 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 7 in Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 - Internet Explorer 8 for Windows XP Service Pack 2 and Windows XP Service Pack 3 - Internet Explorer 8 for Windows XP Professional x64 Edition Service Pack 2 - Internet Explorer 8 for Windows Server 2003 Service Pack 2 - Internet Explorer 8 for Windows Server 2003 x64 Edition Service Pack 2 - Internet Explorer 8 in Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 - Internet Explorer 8 in Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 - Internet Explorer 8 in Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 8 in Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Internet Explorer 8 in Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 - Impact: Remote Code Execution - Version Number: 1.0
Moderate Security Bulletins VS Bulletin - Affected Software: - Microsoft Visual Studio .NET 2003 Service Pack 1 - Microsoft Visual Studio 2005 Service Pack 1 - Microsoft Visual Studio 2005 Service Pack 1 64-bit Hosted Visual C++ Tools - Microsoft Visual Studio 2008 - Microsoft Visual Studio 2008 Service Pack 1 - Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package - Microsoft Visual C++ 2008 Redistributable Package - Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package - Impact: Remote Code Execution - Version Number: 1.0
Summary The following bulletins have undergone a minor revision increment. Please see the appropriate bulletin for more details. * MS09-032 - Critical * MS09-016 - Important
Bulletin Information: * MS09-032 - Critical - http://www.microsoft.com/technet/security/bulletin/ms09-032.mspx - Reason for Revision: V1.2 (July 23, 2009): Clarified the FAQ about Microsoft-specific kill bits contained in this update. - Originally posted: July 14, 2009 - Updated: July 23, 2009 - Bulletin Severity Rating: Critical - Version: 1.2
* MS09-016 - Important - http://www.microsoft.com/technet/security/bulletin/ms09-016.mspx - Reason for Revision: V1.2 (July 23, 2009): Added a link to Microsoft Knowledge Base Article 961759 under Known Issues in the Executive Summary. - Originally posted: April 14, 2009 - Updated: July 23, 2009 - Bulletin Severity Rating: Important - Version: 1.2
Security Advisories Updated or Released Today * Microsoft Security Advisory (973472) - Title: Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution - http://www.microsoft.com/technet/security/advisory/973472.mspx - Revision Note: V1.2 (July 23, 2009): Added additional workarounds.
200032 Modifying a schema once it’s been added to a System.XML.SchemaSet may leave the XmlSchemaSet in a nondeterministic state
973346 MS09-032: Cumulative Security Update of ActiveX Kill Bits
971931 Description of the Outlook 2003 Junk E-mail Filter update: July 09, 2009
971933 Description of the Outlook 2007 Junk E-mail Filter update: July 09, 2009
971970 FIX: You cannot insert rows or upload changes into the SQL Server 2005 Compact Edition subscriber tables after you run the "sp_changemergearticle" stored procedure or you add a new merge publication article when another article has an IDENTITY column
200021 SQL Server 2008 failover cluster installation can take a long time on Windows Server 2008
959867 Management Pack cannot be specified for saving new override of monitor or rule in System Center Operations Manager 2007 Service Pack 1 Operations console
972110 How to generate a kernel dump file or a complete memory dump file in Windows Server 2003
970998 You cannot stop safely a removable storage device on a computer that is running Windows Server 2003 after you delete a folder on the removable storage device
973591 Printer Redirection from Client to Terminal Services Session Does not Preserve User Preferences
961371 MS09-029: Vulnerabilities in the Embedded OpenType Font Engine could allow remote code execution
971633 MS09-028: Vulnerabilities in Microsoft DirectShow could allow remote code execution
973627 Microsoft Time Zone Index Values
968995 The Terminal Server Licensing MMC snap-in or the TS Licensing Manager MMC snap-in uses NT LAN Manager instead of the Kerberos protocol to pass authentication, respectively, in Windows Server 2003 or in Windows Vista and Windows Server 2008
972045 Slow system response together with many other performance issues occur on a virtualization server that is running Windows Server 2008 and that has the Hyper-V role installed
972495 Network bindings are incorrect after you change a network adapter's configuration on a computer that is running Windows Vista or Windows Server 2008
971330 An application that uses an event log API in legacy Windows does not receive event information in a readable format, on a computer that is running Windows Vista or Windows Server 2008
967167 An update is available that enables RRAS servers that are running Windows Server 2008 to use the DH-2048 algorithm together with the AES-256 algorithm to negotiate IKE in the L2TP
970964 The Group Policy Management MMC snap-in stops responding on a computer that is running Windows Vista or Windows Server 2008 when you select a Group Policy object in a domain that has lots of organizational units
970529 The volume GUID may unexpectedly change after a volume is extended on a Windows Server 2008 failover cluster node
968967 The CPU usage of an application or a service that uses MSXML 6.0 to handle XML requests reaches 100% in Windows Server 2008, Windows Vista, Windows XP Service Pack 3, or other systems that have MSXML 6.0 installed
971163 The STDIN, the STDOUT, and the STDERR redirections do not work in a WOW64 child process if the CreateProcessWithTokenW function creates the child process
969512 The MIDI application that uses the inbox USB audio driver crashes after a high rate of MIDI events occurs in Windows Vista or Windows Server 2008
971405 Windows Explorer stops responding for approximately 30 seconds when you try to access the DFS resources in a Windows Server 2008 domain
973818 New Tabs Open Very Slow on Internet Explorer 8 with Skype 4.1 IE add-on installed
971311 After you set the value of the EventMask parameter to WTS_EVENT_FLUSH in the WTSWaitSystemEvent function in Windows Vista or Windows Server 2008, you cannot receive pending WTSWaitSystemEvent function calls if the target server is running Windows XP
971576 Error message when you create a new partition during a Windows Server 2008 installation on a computer that has UEFI enabled: "0x8004240f (VDS_E_NOT_ENOUGH_SPACE)"
971734 Locale data is missing in the saved event logs if you archive the event logs on a computer that is running Windows Vista or Windows Server 2008 and that has an MUI for a non-English language installed
972144 The Windows Media Player icon appears in the "All Programs" list, even if you remove access to Windows Media Player by clicking "Set program access and computer defaults" on a computer that is running Windows Vista
973558 Error message when you try to perform a system backup operation on a Windows Vista-based computer: "Catastrophic failure (0x8000FFFF)"
Consider the following scenario:
In this scenario, the image size is larger than necessary. If the package in Configuration Manager has an image size that is larger than necessary, this may cause System Center Configuration Manager 2007 to create more CD or DVD images than what is expected.
http://support.microsoft.com/default.aspx?scid=kb;en-us;971689
I’ve added this to the List of ConfigMgr KB Articles on FAQShop.
Summary The following bulletins have undergone a minor revision increment. Please see the appropriate bulletin for more details. * MS09-033 - Important * MS09-032 - Critical * MS09-030 - Important * MS09-029 - Critical
Bulletin Information: * MS09-033 - Important - http://www.microsoft.com/technet/security/bulletin/ms09-033.mspx - Reason for Revision: V1.1 (July 15, 2009): Added command line instructions for Windows Vista and Windows Server 2008. Also removed erroneous entry of update log file. - Originally posted: July 14, 2009 - Updated: July 15, 2009 - Bulletin Severity Rating: Important - Version: 1.1
* MS09-032 - Critical - http://www.microsoft.com/technet/security/bulletin/ms09-032.mspx - Reason for Revision: V1.1 (July 15, 2009): Clarified a FAQ about the workaround from Microsoft Security Advisory 972890, added a FAQ about Microsoft Security Advisory 973472, and added a FAQ about the kill bits contained in this bulletin - Originally posted: July 14, 2009 - Updated: July 15, 2009 - Bulletin Severity Rating: Critical - Version: 1.1
* MS09-030 - Important - http://www.microsoft.com/technet/security/bulletin/ms09-030.mspx - Reason for Revision: V1.1 (July 15, 2009): Added a link to Microsoft Knowledge Base Article 969693 under Known Issues in the Executive Summary. Added information about additional security features included in this update to the Frequently Asked Questions (FAQ) Related to This Security Update section. Corrected the update filename for Office Publisher 2007 (publisher2007-kb969693-fullfile-x86-glb) in the Security Update Deployment section. These are informational changes only. There were no changes made to the security update files in this bulletin. - Originally posted: July 14, 2009 - Updated: July 15, 2009 - Bulletin Severity Rating: Important - Version: 1.1
* MS09-029 - Critical - http://www.microsoft.com/technet/security/bulletin/ms09-029.mspx - Reason for Revision: V1.1 (July 15, 2009): Updated the restart requirement descriptions for all updates in the Update Information section to clarify that in some cases, this update does not require a restart. - Originally posted: July 14, 2009 - Updated: July 15, 2009 - Bulletin Severity Rating: Critical - Version: 1.1
Security Advisories Updated or Released Today * Microsoft Security Advisory (973472) - Title: Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution - http://www.microsoft.com/technet/security/advisory/973472.mspx - Revision Note: V1.1 (July 15, 2009): Updated the impact description of the workaround, "Prevent Office Web Components Library from running in Internet Explorer."
This bulletin summary lists security bulletins released for July 2009. The full version of the Microsoft Security Bulletin Summary for July 2009 can be found at http://www.microsoft.com/technet/security/bulletin/ms09-jul.mspx.
With the release of the bulletins for July 2009, this bulletin summary replaces the bulletin advance notification originally issued on July 9, 2009. For more information about the bulletin advance notification service, see http://www.microsoft.com/technet/security/Bulletin/advance.mspx.
Microsoft will host a webcast to address customer questions on these bulletins on Wednesday, July 15, 2009, at 11:00 AM Pacific Time (US & Canada). Register for the July Security Bulletin Webcast at http://www.microsoft.com/technet/security/bulletin/summary.mspx.
Critical Security Bulletins Microsoft Security Bulletin MS09-029 - Affected Software: - Microsoft Windows 2000 Service Pack 4 - Windows XP Service Pack 2 and Windows XP Service Pack 3 - Windows XP Professional x64 Edition Service Pack 2 - Windows Server 2003 Service Pack 2 - Windows Server 2003 x64 Edition Service Pack 2 - Windows Server 2003 with SP2 for Itanium-based Systems - Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 - Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 - Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 - Impact: Remote Code Execution - Version Number: 1.0
Microsoft Security Bulletin MS09-028 - Affected Software: - DirectX 7.0 on Microsoft Windows 2000 Service Pack 4 - DirectX 8.1 on Microsoft Windows 2000 Service Pack 4 - DirectX 9.0 on Microsoft Windows 2000 Service Pack 4 - DirectX 9.0 on Windows XP Service Pack 2 and Windows XP Service Pack 3 - DirectX 9.0 on Windows XP Professional x64 Edition Service Pack 2 - DirectX 9.0 on Windows Server 2003 Service Pack 2 - DirectX 9.0 on Windows Server 2003 x64 Edition Service Pack 2 - DirectX 9.0 on Windows Server 2003 with SP2 for Itanium-based Systems Note: The update for DirectX 9.0 also applies to DirectX 9.0a, DirectX 9.0b, and DirectX 9.0c - Impact: Remote Code Execution - Version Number: 1.0
Microsoft Security Bulletin MS09-032 - Affected Software: - Microsoft Windows 2000 Service Pack 4 - Windows XP Service Pack 2 and Windows XP Service Pack 3 - Windows XP Professional x64 Edition Service Pack 2 - Windows Server 2003 Service Pack 2 - Windows Server 2003 x64 Edition Service Pack 2 - Windows Server 2003 with SP2 for Itanium-based Systems - Windows Vista, Windows Vista Service Pack 1, and Windows Vista Service Pack 2 - Windows Vista x64 Edition, Windows Vista x64 Edition Service Pack 1, and Windows Vista x64 Edition Service Pack 2 - Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 (Windows Server 2008 Server Core installation not affected) - Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 - Impact: Remote Code Execution - Version Number: 1.0
Important Security Bulletins Microsoft Security Bulletin MS09-033 - Affected Software: - Microsoft Virtual PC 2004 Service Pack 1 - Microsoft Virtual PC 2007 - Microsoft Virtual PC 2007 Service Pack 1 - Microsoft Virtual PC 2007 x64 Edition - Microsoft Virtual PC 2007 x64 Edition Service Pack 1 - Microsoft Virtual Server 2005 R2 Service Pack 1 - Microsoft Virtual Server 2005 R2 x64 Edition Service Pack 1 - Impact: Elevation of Privilege - Version Number: 1.0
Microsoft Security Bulletin MS09-031 - Affected Software: - Microsoft Internet Security and Acceleration Server 2006 - Microsoft Internet Security and Acceleration Server 2006 Supportability Update - Microsoft Internet Security and Acceleration Server 2006 Service Pack 1 - Impact: Elevation of Privilege - Version Number: 1.0
Microsoft Security Bulletin MS09-030 - Affected Software: - Microsoft Office Publisher 2007 Service Pack 1 - Impact: Remote Code Execution - Version Number: 1.0
Security Advisories Updated or Released Today * Microsoft Security Advisory (972890) - Title: Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution - http://www.microsoft.com/technet/security/advisory/972890.mspx - Revision Note: V2.0 (July 14, 2009): Advisory updated to reflect publication of security bulletin.
* Microsoft Security Advisory (971778) - Title: Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution - http://www.microsoft.com/technet/security/advisory/971778.mspx - Revision Note: V2.0 (July 14, 2009): Advisory updated to reflect publication of security bulletin.
972915 The transaction isolation level is not reset when you reuse a connection from the connection pool
200061 When inserting .jpeg images from SharePoint 2007 to Outlook 2003 you are being prompted for network password
200052 SQL Reporting services always passes string parameters as Unicode
972890 Microsoft Security Advisory: Vulnerability in Microsoft Video ActiveX control could allow remote code execution
973071 The File Server Resource Manager (FSRM) service may cause high CPU usage in a Windows Server 2003
970659 A computer that is running Windows Server 2003 stops responding (hangs) during startup if many IPv6 addresses are assigned
973306 Microsoft Windows Vista and Microsoft Windows Server 2008 may report incorrect ping statistics for a response similar to "Destination Host Unreachable"
973072 Advanced Group Policy Management (AGPM) takes more than 60 seconds to load Group Policy object (GPO)
950836 You encounter poor performance when you use the SMB 2.0 protocol to perform network-related operations, such as ADMT migration, on computers that are running Windows Server 2008 or Windows Vista
959963 Description of Group Policy Preference Migration Tool (GPPMIG)
971069 You cannot print to an IPP printer in Internet Explorer with protected mode enabled on a computer that is running Windows Vista or Windows Server 2008
971138 Error message when you run an application that uses the per-user class registration feature on a computer that is running Windows Vista or Windows Server 2008: "Interface not found"
971302 Single CALs support is available for Terminal Server license servers that are running Windows Server 2008
972105 SYSVOL migration to DFSR unnecessarily replicates or conflicts files in Windows Server 2008
970076 An isochronous data transfer through an IEEE 1394 device suddenly stops in Windows Vista or Windows Server 2008
971394 A backup of virtual machines fails when you use the Hyper-V VSS writer to back up virtual machines concurrently on a computer that is running Windows Server 2008
973446 The audio volume recorded by the Sound Recorder in windows vista may be lower than windows XP
973508 The "New Contact" and "New Contact Group" buttons are missing in Windows Vista after installing Works 9