McAfee Security Brief 04.07: Microsoft Vulnerabilities

Add dispatch@mcafee.com to your address book to ensure we reach your inbox.

April 2007: 8 Additional Microsoft Vulnerabilities Disclosed

What Is This About? Microsoft has released 6 security bulletins — five "critical", one "important" (MS07-017 to MS07-022) — covering 8 separate vulnerabilities affecting the Windows Operating Systems, such as XP and Vista. General risks include: Loss of personal data Remote system access by cyber criminals "Drive by" downloads of malware and other unauthorized programs How Do I Find Out More? Go here. How This Affects You McAfee customers with our latest, updated anti-virus, firewall and anti-spyware security software, such as new McAfee® VirusScan® Plus 2007, are protected from the combined threats posed by these latest vulnerabilities. "Of particular concern are CVE-2007-0938, the Microsoft Content Management Service Remote Code Execution Vulnerability of MS07-018 and MS07-021, and the MsgBox (CSRSS) Remote Code Execution Vulnerability," said David Marcus, security research and communications manager, McAfee Avert Labs. "Both of these can result in remote code execution on affected systems. Combined with the popularity of browser or Web-based attack vectors, these vulnerabilities can be particularly dangerous. Consumers and enterprises should take these vulnerabilities very seriously and employ a risk-based management approach to make sure they are properly protected." Ongoing Microsoft vulnerabilities underscore the need to 1) Regularly update your operating system with the latest patches, and 2) Maintain active virus, hacker, spyware and other identity theft protection. Fortify Your Protection McAfee customers with standalone anti-virus or anti-spyware software are advised to install 1) a firewall with inbound and outbound protection, and 2) safe surfing protection. Both are included with new McAfee VirusScan Plus or McAfee Internet Security Suite. Security Resources McAfee Threat Center Blogs, Tips & Insight from McAfee® Avert® Labs researchers. FreeScan checks for PC viruses Install the Latest Protection Current McAfee Subscribers 1. Connect to the Internet. 2. Right-click the "M" icon in your system tray, near the clock. 3. Click Updates. Note: By default, McAfee products update automatically. VirusScan 2006/10.x Retail Owners Renew your DAT subscription or upgrade to new VirusScan Plus. VirusScan 2005/9.x or prior Retail Owners Visit our Upgrade Center to order new VirusScan Plus. Internet Security Suite 2006/8.x Retail Owners Renew your anti-virus, anti-spyware and anti-spam filter content subscription or upgrade to new Internet Security Suite. Internet Security Suite 2005/7.x or prior Retail Owners Visit our Upgrade Center to order new Intenet Security Suite. New Users Order McAfee VirusScan Plus with 3-in-1 AntiVirus, Firewall and AntiSpyware protection. Or try free for 30 days.

[ You are currently subscribed as: boy.blogger@gmail.com] This message is being sent to you as a subscriber to McAfee(r) Dispatch. Please do not send a reply to this email. For support-related questions, go here. Legal Note: This software does not guarantee protection against all possible threats. Unsubscribe: If you prefer not to receive email from McAfee, opt-out here. View our privacy policy. Avert, McAfee and VirusScan are registered trademarks or trademarks of McAfee, Inc. and/or its affiliates in the US and/or other countries. All other registered and unregistered trademarks herein are the sole property of their respective owners. McAfee, Inc. 3965 Freedom Circle, Santa Clara, CA 95054, (408) 992-8599 ©2007 McAfee, Inc. All Rights Reserved.