Skip to content

J-Security Center

Latest Attack Object Updates
  • IDP Daily Update #1234
    posted: 08/07/08
  • NSM Daily Update #1234
    posted: 08/07/08
  • Deep Inspection 5.3r5 and above, 5.4, 6.0 #1234
    posted: 08/07/08
  • Deep Inspection 5.1, 5.2, 5.3r4 and below #1227
    posted: 08/07/08
  • Deep Inspection 5.0 #1132
    posted: 04/01/08
  • Antivirus
    posted: 08/06/08
Microsoft Security Bulletins

December 2007

Prior Updates:

2008 |July |June |May |April |March |February |January
2007 |December |November |October |September |August |July |June |May |April |March |February |January
2006 |December |November |October |September |August |July |June |May |April |March |February |January
2005 |December |November |October |September |August |July |June |May |April |March |February |January
2004 |December |November |October |September |August |July |June |May |April |March |February |January
2003 |December |November |October

lock icon Login to learn more about how Juniper Networks products can protect you from these vulnerabilities. (If you don't already have a login, see Requesting Support.)

December 2007

Microsoft Security Bulletin MS07-063

Vulnerability in SMBv2 Could Allow Remote Code Execution (942624)

Severity: Important
Vulnerabilities:
  • SMBv2 Signing Vulnerability - CVE-2007-5351
    A remote code execution vulnerability exists in the SMBv2 feature that could allow a remote anonymous attacker to run code with the privileges of the logged on user.

Microsoft Security Bulletin MS07-064

Vulnerabilities in DirectX Could Allow Remote Code Execution (941568)

Severity: Critical
Vulnerabilities:
  • Microsoft DirectX Code Execution Vulnerability Parsing SAMI Files - CVE-2007-3901
    A remote code execution vulnerability exists in the way DirectX handles supported format files. This vulnerability could allow code execution if a user opened a specially crafted file. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
  • Microsoft DirectX Code Execution Vulnerability Parsing WAV and AVI Files - CVE-2007-3895
    A remote code execution vulnerability exists in the way DirectX handles WAV and AVI format files. This vulnerability could allow code execution if a user opened a specially crafted file. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Microsoft Security Bulletin MS07-065

Vulnerability in Message Queuing Could Allow Remote Code Execution (937894)

Severity: Important
Vulnerabilities:
  • Message Queuing Service Remote Code Execution Vulnerability - CVE-2007-3039
    A remote code execution vulnerability exists in the Message Queuing Service when it incorrectly validates input strings before passing the strings to a buffer. An attacker could exploit the vulnerability by constructing a specially crafted MSMQ message that could allow remote code execution in a remote attack scenario on Windows 2000 Server and a local elevation of privilege in a local scenario on Windows XP. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Microsoft Security Bulletin MS07-066

Vulnerability in Windows Kernel Could Allow Elevation of Privilege (943078)

Severity: Important
Vulnerabilities:
  • Windows Kernel Vulnerability - CVE-2007-5350
    An elevation of privilege vulnerability exists in the way that the Windows kernel processes certain access requests. This vulnerability could allow an attacker to run code and to take complete control of the system.

Microsoft Security Bulletin MS07-067

Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653)

Severity: Important
Vulnerabilities:
  • Macrovision Driver Vulnerability - CVE-2007-5587
    A local elevation of privilege vulnerability exists in the way that the Macrovision driver incorrectly handles configuration parameters. An attacker who successfully exploited this vulnerability could execute arbitrary code in the context of the logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Microsoft Security Bulletin MS07-068

Vulnerability in Windows Media File Format Could Allow Remote Code Execution (941569 and 944275)

Severity: Critical
Vulnerabilities:
  • Windows Media Format Remote Code Execution Vulnerability Parsing ASF - CVE-2007-0064
    A remote code execution vulnerability exists in Windows Media Format Runtime due to the way it handles Advanced Systems Format (ASF) files. An attacker could exploit the vulnerability by constructing specially crafted Windows Media Format Runtime content that could potentially allow remote code execution if a user visits a specially crafted Web site or opens an e-mail message with specially crafted content. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Microsoft Security Bulletin MS07-069

Cumulative Security Update for Internet Explorer (942615)

Severity: Critical
Vulnerabilities:
  • Uninitialized Memory Corruption Vulnerability - CVE-2007-3902
    A remote code execution vulnerability exists in the way Internet Explorer accesses an object that has not been correctly initialized or that has been deleted. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
  • Uninitialized Memory Corruption Vulnerability - CVE-2007-3903
    A remote code execution vulnerability exists in the way Internet Explorer accesses an object that has not been correctly initialized or that has been deleted. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
  • Uninitialized Memory Corruption Vulnerability - CVE-2007-5344
    A remote code execution vulnerability exists in the way Internet Explorer accesses an object that has not been correctly initialized or that has been deleted. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.
  • DHTML Object Memory Corruption Vulnerability - CVE-2007-5347
    A remote code execution vulnerability exists in the way Internet Explorer displays a Web page that contains certain unexpected method calls to HTML objects. As a result, system memory may be corrupted in such a way that an attacker could execute arbitrary code if a user visited a specially crafted Web site. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.