Fixlet Site - EnterpriseSecurity Current Version: 907 Published: Wed, 10 Oct 2007 17:47:42 GMT *************************************************************** Title: MS07-055: CORRUPT PATCH - Windows 2000 SP4 Severity: Critical Fixlet ID: 705502 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-055.mspx *************************************************************** Title: MS07-055: CORRUPT PATCH - Windows XP SP2 Severity: Critical Fixlet ID: 705504 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-055.mspx *************************************************************** Title: MS07-055: CORRUPT PATCH - Windows Server 2003 SP1/SP2 Severity: Critical Fixlet ID: 705506 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-055.mspx *************************************************************** Title: MS07-056: CORRUPT PATCH - Outlook Express 6 - Windows XP (x64) Severity: Critical Fixlet ID: 705608 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-056.mspx *************************************************************** Title: MS07-056: CORRUPT PATCH - Outlook Express 6 - Windows Server 2003 (x64) Severity: Critical Fixlet ID: 705612 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-056.mspx *************************************************************** Title: MS07-057: CORRUPT PATCH - IE 6 - Windows XP (x64) Severity: Critical Fixlet ID: 705708 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx *************************************************************** Title: MS07-057: CORRUPT PATCH - IE 6 - Windows Server 2003 (x64) Severity: Moderate Fixlet ID: 705712 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx *************************************************************** Title: MS07-057: CORRUPT PATCH - IE 7 - Windows XP (x64) Severity: Critical Fixlet ID: 705716 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx *************************************************************** Title: MS07-057: CORRUPT PATCH - IE 7 - Windows Server 2003 (x64) Severity: Moderate Fixlet ID: 705720 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-057.mspx *************************************************************** Title: MS07-058: CORRUPT PATCH - Windows XP (x64) Severity: Important Fixlet ID: 705806 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-058.mspx *************************************************************** Title: MS07-058: CORRUPT PATCH - Windows Server 2003 (x64) Severity: Important Fixlet ID: 705810 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-058.mspx *************************************************************** Title: MS07-059: Vulnerability in Windows SharePoint Services 3.0 Could Result in Elevation of Privilege Within the SharePoint Site - Windows Server 2003 SP1/SP2 Severity: Important Fixlet ID: 705903 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-059.mspx Fixlet Description: Microsoft has released a security update that resolves a publicly reported vulnerability in Microsoft Windows SharePoint Services 3.0. The vulnerability could allow an attacker to run arbitrary script that could result in elevation of privilege within the SharePoint site, as opposed to elevation of privilege within the workstation or server environment. The vulnerability could also allow an attacker to run arbitrary script to modify a user's cache, resulting in information disclosure at the workstation After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability. Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information. *************************************************************** Title: MS07-059: Vulnerability in Office SharePoint Server 2007 Could Result in Elevation of Privilege Within the SharePoint Site - Windows Server 2003 SP1/SP2 (x64) Severity: Important Fixlet ID: 705909 Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS07-059.mspx Fixlet Description: Microsoft has released a security update that resolves a publicly reported vulnerability in Microsoft Office SharePoint Server 2007. The vulnerability could allow an attacker to run arbitrary script that could result in elevation of privilege within the SharePoint site, as opposed to elevation of privilege within the workstation or server environment. The vulnerability could also allow an attacker to run arbitrary script to modify a user's cache, resulting in information disclosure at the workstation. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability. Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information. *************************************************************** Title: 933360: Aug. 2007 Time Zone Update - Windows Vista Severity: Fixlet ID: 93336005 Fixlet Link: http://support.microsoft.com/kb/933360 Fixlet Description: Starting in the spring of 2007, daylight saving time (DST) start and end dates for the United States will transition to comply with the Energy Policy Act of 2005. DST dates in the United States will start three weeks earlier (2:00 A.M. on the second Sunday in March) and will end one week later (2:00 A.M. on the first Sunday in November). This patch will change affected computers' time zone data to account for the 2007 US DST change. This update will also include changes for other related DST changes, time zone behavior, and settings. Important Note: Microsoft recommends running the Outlook Time Zone Update tool or its Exchange counterpart as soon as possible after applying the Windows operating system time zone updates. See the Microsoft web page on the 2007 DST changes here for more information. *************************************************************** Title: 933360: Aug. 2007 Time Zone Update - Windows Vista (x64) Severity: Fixlet ID: 93336009 Fixlet Link: http://support.microsoft.com/kb/933360 Fixlet Description: Starting in the spring of 2007, daylight saving time (DST) start and end dates for the United States will transition to comply with the Energy Policy Act of 2005. DST dates in the United States will start three weeks earlier (2:00 A.M. on the second Sunday in March) and will end one week later (2:00 A.M. on the first Sunday in November). This patch will change affected computers' time zone data to account for the 2007 US DST change. This update will also include changes for other related DST changes, time zone behavior, and settings. Important Note: Microsoft recommends running the Outlook Time Zone Update tool or its Exchange counterpart as soon as possible after applying the Windows operating system time zone updates. See the Microsoft web page on the 2007 DST changes here for more information.