Cisco Event Response: Microsoft Security Bulletin Release for September 2008

September 9, 2008

Microsoft published its monthly security bulletin release on September 9, 2008. Four bulletins were released that address eight individual vulnerabilities. Microsoft has rated all four bulletins as Critical. The advisories address vulnerabilities in Office, Windows, Windows Media Encoder, and Windows Media Player. Each vulnerability could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the user.

Cisco Security Intelligence Engineering

Cisco Applied Mitigation Bulletins provide identification and mitigation techniques that administrators can deploy on Cisco network devices. When applicable, Cisco IOS access control lists, Cisco Intrusion Prevention System (IPS) signatures, Cisco IOS NetFlow, and firewall inspection are among the techniques discussed in the bulletins.

Cisco Applied Mitigation Bulletin: Microsoft Security Bulletin for September 2008

Cisco Contact Center and Self Service Products Impact Assessment

Impact Assessments for Cisco Contact Center and Self Service Products evaluate Microsoft security bulletins and associated software updates for potential impact to Cisco Contact Center products. For each respective Microsoft Security Bulletin, a Microsoft update is assigned one of three categorical ratings: Impacting, Deferred, or Not Applicable.

Impact Assessment of September 2008 Microsoft Security Bulletins on Cisco Contact Center and Self Service Products

Cisco Security IntelliShield Alert Manager and Cisco IPS

The following table identifies Cisco Security IntelliShield Alert Manager alerts and Cisco IPS signatures that are associated with this Microsoft release:

Microsoft Security Bulletin	Affected Product	Cisco IntelliShield Alert	CVE ID	Cisco IPS Signature	CVSS Base Score
Microsoft Security Bulletin MS08-052 Vulnerabilities in GDI+ Could Allow Remote Code Execution	Microsoft Windows XP Microsoft Windows Server Microsoft Windows Vista Microsoft Internet Explorer Microsoft .NET Framework Microsoft Office Microsoft Visio Microsoft Office Microsoft PowerPoint Viewer Microsoft Works Microsoft Digital Image Suite Microsoft SQL Server Microsoft Report Viewer Microsoft Visual FoxPro Microsoft Platform SDK Microsoft Visual Studio .NET Microsoft Visual Studio Microsoft Forefront Client Security 1.0	Microsoft GDI VML Gradient Buffer Overflow Vulnerability	CVE-2007-5348	7271/0	9.3
		Microsoft GDI EMF Image Parsing Memory Corruption Vulnerability	CVE-2008-3012	6995/0	9.3
		Microsoft GDI+ GIF Image Parsing Memory Corruption Vulnerability	CVE-2008-3013	5986/0	9.3
		Microsoft GDI WMF Image Parsing Memory Corruption Vulnerability	CVE-2008-3014	6998/0	9.3
		Microsoft GDI BMP Parsing Integer Overflow Vulnerability	CVE-2008-3015	6996/0	9.3
Microsoft Security Bulletin MS08-053 Vulnerability in Windows Media Encoder 9 Could Allow Remote Code Execution	Microsoft Windows Media Encoder	Microsoft Windows Media Encoder ActiveX Control Arbitrary Code Execution Vulnerability	CVE-2008-3008	7231/0 7231/1 7231/2	9.3
Microsoft Security Bulletin MS08-054 Vulnerability in Windows Media Player Could Allow Remote Code Execution	Microsoft Windows Media Player	Microsoft Windows Media Player Sampling Rate Handling Vulnerability	CVE-2008-2253	–	9.3
Microsoft Security Bulletin MS08-055 Vulnerability in Microsoft Office Could Allow Remote Code Execution	Microsoft Office Microsoft Office OneNote	Microsoft Office OneNote Protocol Handler Code Execution Vulnerability	CVE-2008-3007	6997/0	7.6

Return to Cisco Security Center