http://blogs.msdn.com/opal/archive/tags/Security/default.aspxTags: Securityen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/opal/archive/2008/10/24/important-check-ms08-067-and-apply-the-update.aspxThu, 23 Oct 2008 21:47:00 GMT91d46819-8472-40ad-a661-2c78acb4018c:9013507Jie Li0http://blogs.msdn.com/opal/comments/9013507.aspxhttp://blogs.msdn.com/opal/commentrss.aspx?PostID=9013507<P>This vulnerability is marked as “Critical”, and nearly all windows product are affected.</P> <P>Although it was reported privately to Microsoft and no expolit code leaked now, it is always safer to take action immediately. If you don’t do that, later hackers and worms might be able to attack your machines through RPC service from Internet, and take full control of your machine. </P> <P>If automatic update is turned on, you will receive the update now. Apply it, make a restart.</P> <P>For IT Pros, you need to check this for details:</P> <P><A title=http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx href="http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx" mce_href="http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx">http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx</A></P> <P>In case you need to download the files manually:</P> <P> <TABLE id=ENC class=dataTable cellSpacing=0 cellPadding=0 width="85%" class="dataTable"> <THEAD> <TR class=stdHeader vAlign=top> <TD id=colEQC width="38%">Operating System</TD> <TD id=colEUC width="21%">Maximum Security Impact</TD> <TD id=colEYC width="19%">Aggregate Severity Rating</TD> <TD style="BORDER-RIGHT: #cccccc 1px solid" id=colE3C width="21%">Bulletins Replaced by this Update</TD></TR></THEAD> <TBODY> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=E22EB3AE-1295-4FE2-9775-6F43C5C2AED3">Microsoft Windows 2000 Service Pack 4</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell><A href="http://go.microsoft.com/fwlink/?LinkId=70299">MS06-040</A></P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=0D5F9B6E-9265-44B9-A376-2067B73D6A03">Windows XP Service Pack 2</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell><A href="http://go.microsoft.com/fwlink/?LinkId=70299">MS06-040</A></P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=0D5F9B6E-9265-44B9-A376-2067B73D6A03">Windows XP Service Pack 3</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=4C16A372-7BF8-4571-B982-DAC6B2992B25">Windows XP Professional x64 Edition</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell><A href="http://go.microsoft.com/fwlink/?LinkId=70299">MS06-040</A></P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=4C16A372-7BF8-4571-B982-DAC6B2992B25">Windows XP Professional x64 Edition Service Pack 2</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=F26D395D-2459-4E40-8C92-3DE1C52C390D">Windows Server 2003 Service Pack 1</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell><A href="http://go.microsoft.com/fwlink/?LinkId=70299">MS06-040</A></P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=F26D395D-2459-4E40-8C92-3DE1C52C390D">Windows Server 2003 Service Pack 2</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=C04D2AFB-F9D0-4E42-9E1F-4B944A2DE400">Windows Server 2003 x64 Edition</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell><A href="http://go.microsoft.com/fwlink/?LinkId=70299">MS06-040</A></P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=C04D2AFB-F9D0-4E42-9E1F-4B944A2DE400">Windows Server 2003 x64 Edition Service Pack 2</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=AB590756-F11F-43C9-9DCC-A85A43077ACF">Windows Server 2003 with SP1 for Itanium-based Systems</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell><A href="http://go.microsoft.com/fwlink/?LinkId=70299">MS06-040</A></P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=AB590756-F11F-43C9-9DCC-A85A43077ACF">Windows Server 2003 with SP2 for Itanium-based Systems</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Critical</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=18FDFF67-C723-42BD-AC5C-CAC7D8713B21">Windows Vista and Windows Vista Service Pack 1</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Important</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=A976999D-264F-4E6A-9BD6-3AD9D214A4BD">Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Important</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=25C17B07-1EFE-43D7-9B01-3DFDF1CE0BD7">Windows Server 2008 for 32-bit Systems</A>*</P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Important</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=record vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=7B12018E-0CC1-4136-A68C-BE4E1633C8DF">Windows Server 2008 for x64-based Systems</A>*</P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Important</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR> <TR class=evenRecord vAlign=top> <TD> <P class=lastInCell><A href="http://www.microsoft.com/downloads/details.aspx?familyid=2BCF89EF-6446-406C-9C53-222E0F0BAF7A">Windows Server 2008 for Itanium-based Systems</A></P></TD> <TD> <P class=lastInCell>Remote Code Execution</P></TD> <TD> <P class=lastInCell>Important</P></TD> <TD style="BORDER-RIGHT: #cccccc 1px solid"> <P class=lastInCell>None</P></TD></TR></TBODY></TABLE></P> <P mce_keep="true">&nbsp;</P> <P>Although this is only a security fix for the OS, as a SharePoint Developer/Administrator, you will always be responsibile for the security issues. So let’s prevent things from happen at the beginning.</P><img src="http://blogs.msdn.com/aggbug.aspx?PostID=9013507" width="1" height="1">HotfixSecurity