Handling Affected Signed Microsoft Binaries using DesktopCentral

Microsoft released a Security Advisory explaining an issue involving specific digital certificates that were generated by Microsoft without proper timestamp attributes. These digital certificates were later used to sign some Microsoft core components and software binaries. This could cause compatibility issues between affected binaries and Microsoft Windows.

And Microsoft stated that it is not an security issue,

however this issue could impact the ability to properly install and uninstall affected Microsoft components and security updates.

The above scenario can be handled through Desktopcentral by

  • Installing the re-released updates* along with
  • Microsoft update KB2749655 to solve this issue immediately.

The Re-released patch details are given below.

*Re-released Bulletins

  • MS12-053 – Vulnerability in Remote Desktop Could Allow Remote Code Execution (2723135)
  • MS12-054 – Vulnerabilities in Windows Networking Components Could Allow Remote Code Execution (2733594)
  • MS12-055 – Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2731847)
  • MS12-058 – Vulnerabilities in Microsoft Exchange Server WebReady Document Viewing Could Allow Remote Code Execution (2740358) ( Not supported by DesktopCentral)
  • Microsoft Security Advisory: Update for minimum certificate key length(KB2661254)

For any assistance on patching feel free to contact desktopcentral-support@manageengine.com

thanks,

Anand Raj

 

 

 

 

 

 

List of available rereleases

In some cases, to best meet customer needs, Microsoft is addressing this issue by rereleasing affected updates.

  • On October 9, 2012, Microsoft rereleased the KB723135 update for Windows XP. For more information, see MS12-053.
  • On October 9, 2012, Microsoft rereleased the KB2705219 update for Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. For more information, see MS12-054.
  • On October 9, 2012, Microsoft rereleased the KB2731847 update for Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. For more information, see MS12-055.
  • On October 9, 2012, Microsoft rereleased the updates for Microsoft Exchange Server 2007 Service Pack 3 (KB2756496), Microsoft Exchange Server 2010 Service Pack 1 (KB2756497), and Microsoft Exchange Server 2010 Service Pack 2 (KB2756485). For more information, see MS12-058.
  • On October 9, 2012, Microsoft rereleased the KB2661254 update for Windows XP. For more information, see Microsoft Security Advisory 2661254.

 

The post Handling Affected Signed Microsoft Binaries using DesktopCentral appeared first on ManageEngine Blogs.

You Can Learn More About the ManageEngine Product Line By Going to www.ManageEngine.ca

The original article/video can be found at Handling Affected Signed Microsoft Binaries using DesktopCentral

About the Author: Shannon Lewis

Leave a Reply Cancel reply