• IDP Daily Update #1312
  posted: 11/18/08
  
• NSM Daily Update #1312
  posted: 11/18/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1312
  posted: 11/18/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1300
  posted: 11/18/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 11/17/08

Text Size:        

• See Also
• Current Updates

• Microsoft Security Resources
• Security Incidents
• Security Resources

• Juniper Networks Product Solutions for Microsoft
• Get detailed information about Juniper solutions that protect your Microsoft environment:
• SSL VPNs
• Intrusion Prevention
• Firewall / VPN Central Management34 KB
• VPN Resiliency594 KB
• Denial of Service and Attack Prevention754 KB
• Antivirus Protection55 KB

November 2007

---

Prior Updates:

---

Login to learn more about how Juniper Networks products can protect you from these vulnerabilities. (If you don't already have a login, see Requesting Support.)

November 2007

Microsoft Security Bulletin MS07-061

Vulnerability in Windows URI Handling could allow RCE (943460)

Severity: Critical
Vulnerabilities:

• Windows URI Handling Vulnerability - CVE-2007-3896
  A remote code execution vulnerability exists in the way that the Windows shell handles specifically crafted URIs that are passed to it. An attacker could exploit this vulnerability by including a specifically crafted URI in an application or attachment, which could potentially allow remote code execution.

Microsoft Security Bulletin MS07-062

Vulnerability in DNS Could Allow Spoofing (941672)

Severity: Important
Vulnerabilities:

• DNS Spoofing Attack Vulnerability – CVE-2007-3898
  A spoofing vulnerability exists in Windows DNS Servers. The vulnerability could allow non-privileged users to send malicious responses to DNS requests, thereby "spoofing" or redirecting Internet traffic from legitimate locations.