Microsoft Teams & Staff

Exchange Server 2003 Intelligent Message Filter update

2009-01-06T13:55:00Z

This is just a quick note that the regularly scheduled Exchange Server 2003 Intelligent Message Filter update that was set to be released on 1/7/2009 will not be happening. The next release for this update will be on 1/14/2009. For those that might not know, this update is released on the first and third Wednesday of every month except for the month of December. December will see only a release during the first week of the month. Thanks, - Scott Roberts Share this post :...(read more)

Troubleshooting Outlook Web Access Logon Failures in Exchange Server 2007

2008-12-31T20:26:00Z

Despite our attempts at documenting various break/fix scenarios, it can often be frustrating when trying to locate the information you need to resolve an issue as quickly as you would like. I decided to share this information in an attempt to help you resolve the majority of issues that can prevent your users from successfully logging on to Outlook Web Access. It won't resolve 100% of the issues and it's not intended to. It's also not intended as a "complete" with step-by-step...(read more)

Information on Microsoft Security Advisory 961509

2008-12-30T18:08:00Z

Hi everyone. This is Maarten Van Horenbeeck. I just joined the Microsoft Security Response Center a few months ago, and am the program manager working on the issue described in Microsoft Security Advisory (961509) , which we just released. Earlier today, two researchers presented at a security conference on a novel way of implementing collision attacks on digital certificates signed using the MD5 algorithm. Attacks on MD5 have been known for some time, but were never considered to be very practical...(read more)

I am not in the office at the moment...

2008-12-30T16:07:34Z

Mike, one of our readers, sent us the link of a funny story how an out of office reply got printed on a bi-lingual traffic sign. Thought that it was pretty funny: http://news.bbc.co.uk/1/hi/wales/7702913.stm That got me thinking of some of funny OOF messages that I have seen over time. After performing a quick search , I ran into few places that had a few funny OOF replies written up and posted. Some randomly picked examples here , here and here . Did you want to share some of the funny OOF replies...(read more)

Questions about Vulnerability Claim in Windows Media Player

2008-12-29T20:02:00Z

Happy holidays to everyone. While it’s been a snowy holiday season for us in the Pacific Northwest (some of us are still snowed in), the MSRC never closes and we are always working to help keep customers safe. In that vein, we’ve received some questions about a vulnerability report that was initially posted late on Christmas eve. When we saw it we set our teams to work over the holidays to investigate it. They’ve wrapped up their investigation and since we’ve gotten questions on it, I wanted to pass...(read more)

Tuesday 12/23 Update: Microsoft Security Advisory 961040

2008-12-24T00:51:00Z

Hello, Bill here, I want to provide you with a quick update regarding our recently released security advisory . In the advisory we provide a workaround to help customers protect themselves from attackers trying to exploit this vulnerability. Customers have told us that it ’ s helpful when we provide information and guidance on how to automate the deployment of workarounds, so we have taken this a step further and worked with the SQL Engineering Team to providing Enterprise and Business Users a script...(read more)

Microsoft Security Advisory 961040

2008-12-22T23:34:00Z

Hello, Bill here, I wanted to let you know that we have just posted Microsoft Security Advisory (961040) . This advisory contains information regarding public reports of a vulnerability in SQL Server that could allow for remote code execution. We are aware that exploit code has been published on the Internet; however, we are not aware of any attacks attempting to use the reported vulnerability. To successfully exploit this vulnerability an attacker must be local, or remote, authenticated user on...(read more)

Where did all the posts go?

2008-12-18T23:49:02Z

Many of us are beginning to pack things up and head out for the holidays so I just wanted to give everyone a heads up that I'm doing the same. I'm going to be out until January 5th so if the posts start to dry up then that's probably why, although you might see a straggler here and there in my absence. I hope you all enjoy the holidays and I'll see you again next year....(read more)

Here is your citation, Wikipedia

2008-12-18T21:14:16Z

We noticed the following in the Wikipedia article about ESE : Well, here's your citation for you - and we added a few names: Developers who have contributed towards the success of JET Blue include Cheen Liao, Stephen Hecht, Matthew Bellew, Ian Jose, Edward "Eddie" Gilbert, Kenneth Kin Lum, Balasubramanian Sriram, Jonathan Liem, Andrew Goodsell, Laurion Burchall, Andrei Marinescu, Adam Foxman, Ivan Trindev, Spencer Low and Brett Shirley. - KC Share this post :...(read more)

MS08-078 Released

2008-12-17T19:28:00Z

Hello, Mike here, Today we released security update MS08-078 , protecting customers from active attacks against Internet Explorer. This update will be applied automatically to hundreds of millions of customers through automatic updates over the next few days. And, for our enterprise customers - with multiple systems within their networks – this update can be deployed through all standard security update management systems including, SCCM, SMS, WSUS, and Windows Update as of 10AM PST today. As with...(read more)

Tips for installing clients to Windows SteadyState PCs

2008-12-17T14:34:07Z

The post below was something I submitted to my SMSandMOM blog but I thought you might also like to see it since it'll help you make any kind of update you wanted to make permanent on a SteadyState PC. ----- We've received a couple calls on this so I thought a quick post might help just in case you're using Windows SteadyState in your environment. Anjana Kaku Tyagi wrote up the example below, and while the example is for the SMS client you should be able to use the same procedure...(read more)

Microsoft Security Bulletin Advance Notification for December 2008

2008-12-16T23:07:25Z

Just an FYI that we're releasing an out-of-band security bulletin to address 961051 tomorrow at 10:00am PST: ======== Microsoft Security Bulletin Advance Notification issued: December 16, 2008 Microsoft Security Bulletins to be issued: December 17, 2008 This is an advance notification of an out-of-band security bulletin that Microsoft is intending to release on December 17, 2008. This bulletin advance notification will be replaced with the revised December bulletin summary on December 17, 2008...(read more)

Advance Notification for December 2008 Out-of-Band Release

2008-12-16T20:28:00Z

Hi this is Christopher Budd, We’ve just published our Advance Notification for an out-of-band security bulletin release. We plan to release the security update tomorrow, Dec. 17, 2008 to address the vulnerability we’ve discussed in Microsoft Security Advisory 961051 . Our target time, as always, is 10:00 a.m. Pacific Time. We’ll be holding two special webcasts to give you details and take your questions. · December 17, 2008 1:00 PM Pacific Time · December 18,2008 11:00 AM Pacific Time A reminder...(read more)

Microsoft Certified Master (MCM) Program Now Offers 30% Limited Time Discount to Get Trained and Certified

2008-12-16T18:03:23Z

I got a lot of great feedback for the recent post I wrote about the Microsoft Certified Master Program, and not unsurprisingly there were some comments posted about the price. Given the state of the world's economy, and knowing that costs for things like training are often one of the first things that get cut, we have listened to the feedback given, sharpened our pencils and have decided to offer a discount to fill the remaining seats we have in March (March 16th to April 4th) and May (May 4th...(read more)

SUSFP detects that MS08-062 patches are needed even though IIS is not installed on target machine

2008-12-16T14:37:59Z

Here's another issue you may want to be aware of if you're still using the old SUSFP scan engine to detect updates. This one is from Clifton Hughes in our Las Colinas, Texas office: ======== Issue: In SMS 2003, if you are using SUSFP you may experience issues with the MS08-062 patch related to IIS and Internet Printing. The SUSFP for SMS 2003 seems to detect that this update is "applicable" on all computers when in reality it is only applicable where IIS is installed...(read more)