<HTML>
<HEAD>
<TITLE>Microsoft Security Advisory 972890: Vulnerability in Microsoft Video ActiveX Control</TITLE>
</HEAD>
<BODY>
<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Microsoft has released Security Advisory 972890 to warn customers of a publicly known and actively exploited vulnerability in Microsoft Video ActiveX Control. This vulnerability could potentially allow an attacker to inherit the same user rights as the local user on a Windows XP or Windows Server 2003 computer.<BR>
<BR>
BigFix has released content in the “Patches for Windows” Fixlet sites that will allow users to set a “kill bit” for the affected ActiveX control, disabling the vulnerable functionality as detailed in the Microsoft advisory. Once a patch is available for this vulnerability, BigFix will make this available as well.<BR>
<BR>
Additional information on this vulnerability is available from Microsoft at:<BR>
</SPAN></FONT><UL><LI><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'><a href="http://www.microsoft.com/technet/security/advisory/972890.mspx">http://www.microsoft.com/technet/security/advisory/972890.mspx</a>
</SPAN></FONT><LI><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'><a href="http://blogs.technet.com/msrc/archive/2009/07/06/microsoft-security-advisory-972890-released.aspx">http://blogs.technet.com/msrc/archive/2009/07/06/microsoft-security-advisory-972890-released.aspx</a><BR>
</SPAN></FONT></UL><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'><BR>
The following Fixlet messages are now available:<BR>
</SPAN></FONT><UL><LI><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>ID 97289001: “Security Advisory 972890: Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution - Windows Server 2003 SP2”
</SPAN></FONT><LI><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>ID 97289003: “Security Advisory 972890: Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution - Windows XP SP2/SP3”
</SPAN></FONT><LI><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>ID 97289005: “Security Advisory 972890: Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution - Windows Server 2003 SP2 (x64)”
</SPAN></FONT><LI><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>ID 97289007: “Security Advisory 972890: Vulnerability in Microsoft Video ActiveX Control Could Allow Remote Code Execution - Windows XP SP2 (x64)”<BR>
</SPAN></FONT></UL><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'><BR>
</SPAN></FONT><FONT SIZE="2"><FONT FACE="Arial"><SPAN STYLE='font-size:10pt'><B>BigFix Product Team<BR>
</B></SPAN></FONT></FONT><FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'><I>Check out the BigFix User Forum at <a href="http://forum.bigfix.com">http://forum.bigfix.com</a></I> </SPAN></FONT>
</BODY>
</HTML>