Cisco Event Response: Microsoft Security Bulletin Release for October 2007

October 9, 2007

Microsoft released the October Security Update on October 9, 2007. Six bulletins were released that address nine individual vulnerabilities. Microsoft rated four bulletins, which address Microsoft Windows, Microsoft Office, Outlook Express and Windows Mail, as Critical. These vulnerabilities could allow a remote attacker to execute arbitrary code, but an exploit requires some form of user interaction. Two Critical vulnerabilities were among four issues that were corrected in a Cumulative Security Update for Internet Explorer; these vulnerabilities also require user interaction to exploit. The Cumulative Update also corrected two additional spoofing vulnerabilities, which are rated as Moderate and Low impact. Additionally, Microsoft released two Important bulletins to correct vulnerabilities in Microsoft Windows and Microsoft Office that may allow attackers to cause a denial of service or gain elevated privileges.


Cisco Applied Mitigation Bulletin

Cisco Applied Mitigation Bulletins provide identification and mitigation techniques that administrators can deploy on Cisco network devices. When applicable, Cisco IOS access control lists, Cisco Intrusion Prevention System (IPS) signatures, Control Plane Policing, and firewall rules are among the techniques discussed in the bulletins.

Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin for October 2007


Cisco Security IntelliShield Alert Manager and Cisco IPS

The following table identifies Cisco Security IntelliShield Alert Manager alerts and Cisco IPS signatures associated with this Microsoft update:

Microsoft Security Bulletin Affected Product Cisco IntelliShield Alert CVE ID
Search CVEs		 Cisco IPS Signature CVSS
Base Score
CVSS Q&A

Microsoft Security Bulletin MS07-055

Vulnerability in Kodak Image Viewer Could Allow Remote Code Execution

Microsoft Windows

Microsoft Windows XP

Microsoft Windows Server 2003

 Microsoft Windows Kodak Image Viewer Image Vulnerability CVE-2007-2217
9.3

Microsoft Security Bulletin MS07-056

Security Update for Outlook Express and Windows Mail

Microsoft Outlook Express

Microsoft Windows Mail in Windows Vista

 Microsoft Windows Mail and Outlook Express NNTP Memory Corruption Vulnerability CVE-2007-3897

5908-0
5908-1
5908-2

 9.3

Microsoft Security Bulletin MS07-057

Cumulative Security Update for Internet Explorer

Microsoft Internet Explorer Microsoft Internet Explorer Address Bar Spoofing Vulnerability CVE-2007-3892
4.3
Microsoft Internet Explorer Script Error Handling Memory Corruption Vulnerability CVE-2007-3893
5477-2
 		 9.3
Microsoft Internet Explorer JavaScript Event Processing Vulnerability

CVE-2007-3826

CVE-2007-1091

5905-0
5905-1
 4.3

Microsoft Security Bulletin MS07-058

Vulnerability in RPC Could Allow Denial of Service

Microsoft Windows

Microsoft Windows XP

Microsoft Windows Server

Microsoft Windows Vista

 Microsoft Windows RPC Authentication Message Processing Denial of Service Vulnerability CVE-2007-2228
5809-0
5809-1
5809-2
5809-3
 7.8

Microsoft Security Bulletin MS07-059

Vulnerability in Windows SharePoint Services 3.0 and Office SharePoint Server 2007 Could Result in Elevation of Privilege Within the SharePoint Site

Microsoft Windows SharePoint Services

Microsoft Windows SharePoint Service

Microsoft Office SharePoint Server

 Microsoft SharePoint Server Cross-Site Scripting Vulnerability CVE-2007-2581
5903-0
5903-1
5903-2
 4.3

Microsoft Security Bulletin MS07-060

Vulnerability in Microsoft Word Could Allow Remote Code Execution

Microsoft Word

Microsoft Office 2004 for Mac

 Microsoft Word Memory Corruption Vulnerability CVE-2007-3899
5906-0
 9.3

 

Return to Cisco Security Center