Severity Rating: Critical - Revision Note: V1.1 (February 16, 2009): Added a link to Microsoft Knowledge Base Article 961260 under Known Issues in the Executive Summary.Summary: This security update resolves two privately reported vulnerabilities. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Severity Rating: Critical - Revision Note: V2.0 (February 16, 2009): Added the Microsoft Exchange Server MAPI Client as affected software.

How is this related to Windows Update? Have you contacted Symantec Support? Unexplained computer behavior may be caused by deceptive software [link]

How is this related to Windows Update? Have you contacted Symantec Support?

I am running a Dell box with Win XP 64 5.2.3790 Service Pack 2 Build 3790 and IE 7.0.5730.13. When trying to run Microsoft update or Windows update i get: “Thank you for your interest in obtaining updates from our site.

Severity Rating: Critical - Revision Note: V2.0 (January 13, 2009): Added Microsoft Office Word Viewer to Affected Software table. Also, added an entry to the section, Frequently Asked Questions (FAQ) Related to This Security Update, explaining Microsoft Office Word Viewer. There were no changes to the security update binaries or detection.

Severity Rating: Important - Revision Note: V2.3 (January 13, 2009): Added a new entry to the Frequently Asked Questions (FAQ) Related to This Security Update section to communicate the fix to a detection and deployment issue with Windows XP Service Pack 3. There were no changes to the binaries or packages for this update. Customers who have successfully updated their systems do not need to reinstall this update.Summary: This security update resolves two privately reported vulnerabilities in the Windows Domain Name System (DNS) that could allow spoofing.

Severity Rating: Critical - Revision Note: V3.0 (December 9, 2008): Added Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats Service Pack 1, Microsoft Expression Web and Microsoft Expression Web 2, and Microsoft Office Groove 2007 and Microsoft Office Groove 2007 Service Pack 1 as Affected Software. Also detailed a detection change for Microsoft SQL Server 2005 Service Pack 2 in the “Why was this bulletin revised on December 9, 2008?” entry in the Frequently Asked Questions (FAQ) Related to this Security Update section.Summary: This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content.

Severity Rating: Critical - Revision Note: V1.1 (December 9, 2008): Bulletin updated to add an entry in the section, Frequently Asked Questions (FAQ) Related to This Security Update, about a minor revision of the Windows Server 2003 package. Customers who have already successfully applied the previous update need not take any action.Summary: This update resolves several newly discovered, publicly disclosed and privately reported vulnerabilities as well as additional issues discovered through internal investigations.

Posted by Memisyazici Aras on Nov 25
<RANT>
<snip:: taken from MSRC Blog: http://blogs.technet.com/msrc/archive/2008/11/11/ms08-068-and-smbrelay.aspx>
What we released today with MS08-068 is that security update. It addresses the SMBRelay issue (discovered in 2001) does so in a …

Posted by n3td3v on Nov 8
There is no evidence of 0day in the wild for the upcoming patches and
Microsoft have released no information to suggest so.
On Fri, Nov 7, 2008 at 4:18 PM, <Valdis.Kletnieks_at_vt.edu> …

Posted by Juha-Matti Laurio on Nov 3
Kaspersky detect the new wave as
Exploit.Win32.MS08-067.g
and Microsoft as
Exploit:Win32/MS08067.gen!A
Sophos uses name Mal/Generic-A.
One of the reported file size is 16,384 bytes:
http://www.threatexpert.com/report.aspx?uid=919a973d-9fe1-4196-b202-731ebaaffa5d
Windows RPC vulnerability…

Read the rest of the …