Home > Microsoft Security > Ms08-052 Superseded

Ms08-052 Superseded


Windows Vista (all editions) Reference Table The following table contains the security update information for this software. This format is an improvement over the Windows Metafile Format and contains extended features. Note that the Server Core installation option does not apply to certain editions of Windows Server 2008; see Compare Server Core Installation Options. These are the sites that will host the update, and it requires an ActiveX Control to install the update. have a peek here

Affected Software Office Suite and Other SoftwareComponentMaximum Security ImpactAggregate Severity RatingBulletins Replaced by this Update Microsoft Office Suites and Components Microsoft Office XP Service Pack 3 Microsoft Word 2002 Service Pack Will I be offered this update? Yes, if the version of the Office Suite installed on your system shipped with the component discussed in this bulletin, the system will be offered updates Other releases are past their support life cycle. This is a mitigating factor for Web sites that you have not added to the Internet Explorer Trusted sites zone. read the full info here

Ms08-052 Superseded

An attacker who successfully exploited this vulnerability could take complete control of an affected system. Security updates are also available from the Microsoft Download Center. During that time, the system would be unable to respond to requests. As part of the cumulative servicing model for Microsoft Office XP, this security update for Microsoft Office XP Service Pack 3 (KB953405) also addresses the vulnerabilities described in MS08-052.

This security update supports the following setup switches. For more information about the Windows Product Lifecycle, visit Microsoft Support Lifecycle. Security Update Deployment Affected Software For information about the specific security update for your affected software, click the appropriate link: Windows 2000 (all editions) Reference Table The following table contains the Cve-2003-1048 Systems Management Server The following table provides the SMS detection and deployment summary for this security update.

This is the same as unattended mode, but no status or error messages are displayed. You can find additional information in the subsection, Deployment Information, in this section. Once Microsoft provides a security update, or provides more detailed workaround information in a security bulletin, you should not continue to use or rely on this Workaround; and you should promptly These registry keys may not contain a complete list of installed files.

This documentation is archived and is not being maintained. Ms09-062 Frequently Asked Questions (FAQ) Related to This Security Update Where are the file information details? The file information details can be found in Microsoft Knowledge Base Article 957095. I am using an older release of the software discussed in this security bulletin. If a restart is required at the end of Setup, a dialog box will be presented to the user with a timer warning that the computer will restart in 30 seconds.

Microsoft Ie Gif Parsing Double Free Vulnerability(30025)

OneNote 2007 (all editions) Reference Table The following table contains the security update information for this software. What does the update do? The update removes the vulnerability by properly handling external DTDs. Ms08-052 Superseded For contact information, visit Microsoft Worldwide Information, select the country, and then click Go to see a list of telephone numbers. Ms08-071 An attacker would have no way to force users to visit a specially crafted Web site.

Use Registry Editor at your own risk. When this security bulletin was issued, had Microsoft received any reports that this vulnerability was being exploited? No. For more information about the SMS 2003 ITMU, see SMS 2003 Inventory Tool for Microsoft Updates. There is no charge for support that is associated with security updates. Ms04-025

An attacker who successfully exploited this vulnerability could take complete control of an affected system. You can streamline testing and validating Windows updates against installed applications with the Update Compatibility Evaluator components included with Application Compatibility Toolkit 5.0. HotPatchingNot applicable. For more information about the terminology that appears in this bulletin, such as hotfix, see Microsoft Knowledge Base Article 824684.

Instead, an attacker would have to convince them to visit the Web site, typically by getting them to click a link in an e-mail message or Instant Messenger message that takes Ms13-054 For more information about the supported installation switches, see Microsoft Knowledge Base Article 262841. To determine whether active protections are available from security software providers, please visit the active protections Web sites provided by program partners, listed in Microsoft Active Protections Program (MAPP) Partners.

If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system.

Registry Key Verification You may also be able to verify the files that this security update has installed by reviewing the registry keys listed in the Reference Table in this section. See the “Microsoft Baseline Security Analyzer” heading under the section, Detection and Deployment Tools and Guidance, earlier in this bulletin for more information. In the event this Workaround applies to a version of Microsoft software for which no security update will be made available, and a more recent version of Microsoft software has addressed Kb938464 For all supported 32-bit editions of Windows Vista: File NameVersionDateTimeSizeFolder netio.sys6.0.6000.1656727-Sep-200715:48216,760Windows6.0-KB941644-x86\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.16567_none_547b4ec7b851524e netio.sys6.0.6000.2068927-Sep-200715:42217,272Windows6.0-KB941644-x86\x86_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.20689_none_54f14c4ed17d5ca8 netiomig.dll6.0.6000.1656727-Sep-200715:4349,152Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16567_none_5f6577ce925d75a7 netiougc.exe6.0.6000.1656727-Sep-200715:4122,016Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16567_none_5f6577ce925d75a7 tcpip.sys6.0.6000.1656727-Sep-200714:17802,816Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16567_none_5f6577ce925d75a7 tcpipcfg.dll6.0.6000.1656727-Sep-200715:43167,424Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16567_none_5f6577ce925d75a7 netiomig.dll6.0.6000.2068927-Sep-200715:3749,152Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20689_none_5fdb7555ab898001 netiougc.exe6.0.6000.2068927-Sep-200714:1622,016Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20689_none_5fdb7555ab898001 tcpip.sys6.0.6000.2068927-Sep-200714:17804,352Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20689_none_5fdb7555ab898001 tcpipcfg.dll6.0.6000.2068927-Sep-200715:38167,424Windows6.0-KB941644-x86\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.20689_none_5fdb7555ab898001 For all supported x64-based editions of Windows Vista: File NameVersionDateTimeSizeCPUFolder netio.sys6.0.6000.1656727-Sep-200717:21324,280X64Windows6.0-KB941644-x64\amd64_microsoft-windows-netio-infrastructure_31bf3856ad364e35_6.0.6000.16567_none_b099ea4b70aec384

To uninstall an update installed by WUSA, click Control Panel, and then click Security. For more information, see the Office Administrative Installation Point heading in this section. How to undo the workaround: Use the steps above to set the registry key setting to its original value or delete this registry key setting. Changed Registry Key Verification for Microsoft .NET Framework 2.0 Service Pack 1 in the Security Update Deployment section.

This security update addresses the vulnerability that is currently being exploited. Using this switch may cause the installation to proceed more slowly. Windows Server Update Services By using Windows Server Update Services (WSUS), administrators can deploy the latest critical updates and security updates for Windows 2000 operating systems and later, Office XP and Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Restart Options /norestart Does not restart when installation has completed. /forcerestart Restarts the computer after installation and force other applications to close at shutdown without saving open files first. /warnrestart[:x] Presents Note for Windows Vista  Microsoft Systems Management Server 2003 with Service Pack 3 includes support for Windows Vista manageability. For more information about how to contact Microsoft for support issues, visit the International Support Web site. Microsoft Security Bulletin MS08-038 - Important Vulnerability in Windows Explorer Could Allow Remote Code Execution (950582) Published: July 08, 2008 Version: 1.0 General Information Executive Summary This security update resolves a

Specifies the path and name of the Setup.inf or .exe file. /lang: Forces the use of a specific language, when the update package supports that language. /log: Enables logging, by If you have previously installed a hotfix to update one of these files, the installer copies the RTMQFE, SP1QFE, or SP2QFE files to your system. This log details the files that are copied. You can find additional information in the subsection, Deployment Information, in this section.

Inclusion in Future Service Packs The update for this issue may be included in a future update rollup Deployment Installing without user interventionFor 32-bit editions of Windows Server 2003:Windowsserver2003-kb941644-x86-enu /quiet For Revisions V1.0 (December 9, 2008): Bulletin published. Is the Windows Search component available for Windows XP affected by this issue? This documentation is archived and is not being maintained.

Unregister the SearchFolder file type.To modify the registry key, follow these steps:Note Using Registry Editor incorrectly can cause serious problems that may require you to reinstall your operating system. In the list of files, right-click a file name from the appropriate file information table, and then click Properties.Note Depending on the edition of the operating system, or the programs that When this security bulletin was issued, had Microsoft received any reports that this vulnerability was being exploited? Yes. We have thoroughly tested this update, but as with all updates, we recommend that users perform testing appropriate to the environment and configuration of their systems.

Supported Spuninst.exe Switches SwitchDescription /help Displays the command-line options. Specifies the path and name of the Setup.inf or .exe file. /r:n Never restarts the system after installation. /r:I Prompts the user to restart the system if a restart is required, Customers who are running Windows XP onwards and have installed the operating system update do not need to take any further action, as the RSClientPrint ActiveX control will use the operating