Cisco Event Response: Microsoft Security Bulletin Release for January 2009
January 13, 2009
Microsoft published its monthly security bulletin release on January 13, 2009. One bulletin was released that addresses three individual vulnerabilities. This bulletin, which Microsoft rated as Critical, addresses two vulnerabilities in Microsoft Windows that could allow attackers to execute code with the privileges of the SYSTEM account and one that could allow attackers to cause a denial of service on a vulnerable system. All the vulnerabilities can be exploited remotely and do not require user interaction to exploit.
Cisco Security Intelligence Engineering
Cisco Applied Mitigation Bulletins provide identification and mitigation techniques that administrators can deploy on Cisco network devices. When applicable, Cisco IOS access control lists, Cisco Intrusion Prevention System (IPS) signatures, Cisco IOS NetFlow, Cisco Security Monitoring, Analysis, and Response System Incidents, Cisco Security Agent Threat Prevention and Identification Interceptors, and firewall inspection are among the techniques discussed in the bulletins.
Impact Assessment of January 2009 Microsoft Security Bulletins on Cisco Contact Center and Self Service Products Impact Assessments for Cisco Contact Center and Self Service Products evaluate Microsoft security bulletins and associated software updates for potential impact to Cisco Contact Center products. For each respective Microsoft Security Bulletin, a Microsoft update is assigned one of three categorical ratings: Impacting, Deferred, or Not Applicable.
Cisco IP Telephony Operating System, SQL Server, Security Updates
This document contains information on software updates for tracking Cisco-supported operating system, SQL Server, and security files that are available for web download. These updates support all versions of Cisco Unified CallManager, Cisco Conference Connection, Cisco Personal Assistant, Cisco IP Interactive Voice Response, and Cisco IP Call Center Express, Cisco Emergency Responder, Cisco Customer Voice Portal, and Cisco MeetingPlace.This document does not support Cisco Unity or servers where Cisco Unity is installed.
Cisco Security IntelliShield Alert Manager and Cisco IPS
The following table identifies Cisco Security IntelliShield Alert Manager alerts and Cisco IPS signatures that are associated with this Microsoft release:
