Fixlet Site - PatchesforWindows(Japanese)
Current Version: 267	Published: Fri, 20 Feb 2009 23:26:04  GMT

New Fixlets:
============

***************************************************************
Title: MS09-003: Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution - Exchange Server MAPI Client and Collaboration Data Objects 1.2.1 (Japanese)
Severity: Critical
Fixlet ID: 900309
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS09-003.mspx

Fixlet Description: Microsoft has released a security update that resolves two privately reported vulnerabilities in Microsoft Exchange Server. The first vulnerability could allow remote code execution if a specially crafted TNEF message is sent to a Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could take complete control of the affected system with Exchange Server service account privileges. The second vulnerability could allow denial of service if a specially crafted MAPI command is sent to a Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could cause the Microsoft Exchange System Attendant service and other services that use the EMSMDB32 provider to stop responding. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities. 

Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.

Important Note: The deployment action for this Fixlet message functions by uninstalling and reinstalling Exchange Server MAPI Client and Collaboration Data Objects 1.2.1. If you have configured any settings regarding this product, please be aware that they may be lost in the update process.

Important Note: This update requires manual download caching. Please complete the following steps before deploying the action:  Download the file "ExchangeMapiCdo.exe" from here. Run it and follow the instructions to extract the file "ExchangeMapiCdo.msi." Rename "ExchangeMapiCdo.msi" to "47443f742de9efeb4d5b4ec6dbdabece440f9e33" and place it in the BES Server download cache.For more information about manually caching file downloads on the BES Server, please see BigFix KB #390.