J-Security Center

Microsoft Security Bulletins

July 2009

Prior Updates:

2009 |December |November |October |September |August |July |June |May |April |March |February |January
2008 |December |November |October |September |August |July |June |May |April |March |February |January
2007 |December |November |October |September |August |July |June |May |April |March |February |January
2006 |December |November |October |September |August |July |June |May |April |March |February |January
2005 |December |November |October |September |August |July |June |May |April |March |February |January
2004 |December |November |October |September |August |July |June |May |April |March |February |January
2003 |December |November |October

lock icon Login to learn more about how Juniper Networks products can protect you from these vulnerabilities. (If you don't already have a login, see Requesting Support.)

July 2009

Microsoft Security Bulletin MS09-028

Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)

Severity: Critical
Vulnerabilities:
  • DirectX NULL Byte Overwrite Vulnerability - CVE-2009-1537
    A remote code execution vulnerability exists in the way that Microsoft DirectShow parses QuickTime media files. This vulnerability could allow code execution if a user opened a specially crafted QuickTime file. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • DirectX Pointer Validation Vulnerability - CVE-2009-1538
    A remote code execution vulnerability exists in the way that Microsoft DirectShow validates certain values when updating a pointer. This vulnerability could allow code execution if a user opened a specially crafted QuickTime file. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • DirectX Size Validation Vulnerability - CVE-2009-1539
    A remote code execution vulnerability exists in the way that Microsoft DirectShow validates certain fields in QuickTime media files. This vulnerability could allow code execution if a user opened a specially crafted QuickTime file. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS09-029

Vulnerabilities in the Embedded Open Type Font Engine Could Allow Remote Code Execution (961371)

Severity: Critical
Vulnerabilities:
  • Embedded OpenType Font Heap Overflow Vulnerability - CVE-2009-0231
    A remote code execution vulnerability exists in the way that Microsoft Windows Embedded OpenType (EOT) font technology parses data records in specially crafted embedded fonts. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • Embedded OpenType Font Integer Overflow Vulnerability - CVE-2009-0232
    A remote code execution vulnerability exists in the way Microsoft Windows Embedded OpenType (EOT) font technology parses name tables in specially crafted embedded fonts. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS09-030

Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (969516)

Severity: Important
Vulnerabilities:
  • Pointer Dereference Vulnerability - CVE-2009-0566
    A remote code execution vulnerability exists in the way Microsoft Office Publisher opens, imports, and converts legacy file formats. An attacker could exploit the vulnerability by sending a specially crafted Publisher file which could be included as an e-mail attachment, or hosted on a specially crafted or compromised Web site. If a user were logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less affected than users who operate with administrative user rights.

Microsoft Security Bulletin MS09-031

Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953)

Severity: Important
Vulnerabilities:
  • Radius OTP Bypass Vulnerability - CVE-2009-1135
    An elevation of privilege vulnerability exists in ISA Server 2006 authentication when configured with Radius OTP that may allow an unauthenticated user access to any web published resource. With knowledge of administrator account usernames, an attacker who successfully exploited this vulnerability could take complete control of systems relying on the ISA Server 2006 web publishing rules for authentication. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Microsoft Security Bulletin MS09-032

Cumulative Security Update of ActiveX Kill Bits (973346)

Severity: Critical
Vulnerabilities:
  • Microsoft Video ActiveX Control Vulnerability - CVE-2008-0015
    A remote code execution vulnerability exists in the Microsoft Video ActiveX Control, msvidctl.dll. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.

Microsoft Security Bulletin MS09-033

Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856)

Severity: Important
Vulnerabilities:
  • Virtual PC and Virtual Server Privileged Instruction Decoding Vulnerability - CVE- 2009-1542
    An elevation of privilege vulnerability exists in the way that Microsoft Virtual PC and Microsoft Virtual Server incorrectly validate privilege levels when executing specific instructions in the Virtual Machine Monitor. This vulnerability could allow an attacker to run code with elevated privileges inside the hosted guest operating system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.