Update Rollup 10 for Exchange Server 2007 SP1, Update Rollup 4 for Exchange 2007 SP2 and Update Rollup 3 for Exchange 2010 releasedAs published on Tuesday last patch round there was also a “important”security issue fixed for Exchange, while it does not have a security impact for Exchange 2007 and Exchange 2010, the issue is addressed for these versions. Normally security fixes have a single patch file, now Microsoft used a rollup package as vehicle for 2007 and 2010, so also other (non-security_ issues are fixed) So I thought to run a dedicated article besides the previously posted security bulletins list last Tuesday. Microsoft Security Bulletin MS10-024 - Important Vulnerabilities in Microsoft Exchange and Windows Note that this bulletin also contains fixes for SMTP in Windows itself, so install both. Security Update for Exchange 2000 Server Service Pack 3 Download details Security Update for Exchange 2000 Server (KB976703) MS10-024 Description of the security update for Exchange 2000 Server April 13, 2010 Security Update for Exchange Server 2003 Service Pack 2 Download details Security Update for Exchange Server 2003 Service Pack 2 (KB976702) MS10-024 Description of the security update for Exchange Server 2003 Service Pack 2 April 13, 20 Update Rollup 10 for Exchange Server 2007 Service Pack 1 Download details Update Rollup 10 for Exchange Server 2007 Service Pack 1 (KB981407) Description of Update Rollup 10 for Microsoft Exchange Server 2007 Service Pack 1 Update Rollup 4 for Exchange Server 2007 Service Pack 2 Download details Update Rollup 4 for Exchange Server 2007 Service Pack 2 (KB981383) Description of Update Rollup 4 for Microsoft Exchange Server 2007 Service Pack 2 Update Rollup 3 for Exchange Server 2010 Download details Update Rollup 3 for Exchange Server 2010 (KB981401) Description of Update Rollup 3 for Microsoft Exchange Server 2010 Release to Manufacturing Exchange Version Maximum Security Impact Aggregate Severity Rating Microsoft Exchange Server 2000 Service Pack 3 (KB976703) Information Disclosure Moderate Microsoft Exchange Server 2003 Service Pack 2 (KB976702) Denial of Service Important Microsoft Exchange Server 2007 Service Pack 1 for x64-based Systems (KB981407) None None[1] Microsoft Exchange Server 2007 Service Pack 2 for x64-based Systems (KB981383) None None[1] Microsoft Exchange Server 2010 for x64-based Systems (KB981401) None None[1] [1]Severity ratings do not apply to this update because the vulnerabilities discussed in this bulletin do not affect this software. However, Microsoft recommends that customers of this software apply this update, which includes a defense-in-depth measure that adds additional source port entropy to DNS transactions initiated by the SMTP service.
Send via e-mail | Submit to Digg | Add to Live Favorites
http://feeds.bink.nu/~r/binkdotnu/~3/2HCyg1KdJoI/update-rollup-10-for-exchange-server-2007-sp1-update-rollup-4-for-exchange-2007-sp2-and-update-rollup-3-for-exchange-2010-released.aspx
