Australia's Leading Computer Emergency Response Team

Reminder - Windows Vista SP1 released
Date: 27 March 2008
Original URL: http://www.auscert.org.au/render.html?cid=7066&it=9035


For all those Vista users out there, if you were not already aware, Service Pack 1 is available for download. It contains a large number of fixes, the most important of which are:

MS07-016: Cumulative security update for Internet Explorer
MS07-017: Vulnerability in GDI could allow remote code execution
MS07-021: Vulnerability in Windows CSRSS could allow remote code execution
MS07-027: Cumulative Security Update for Internet Explorer
MS07-032: Vulnerability in Windows Vista could allow information disclosure
MS07-033: Cumulative Security Update for Internet Explorer
MS07-034: Cumulative security update for Outlook Express and for Windows Mail
MS07-038: Vulnerability in Windows Vista Firewall could allow information disclosure
MS07-042: Security update for Microsoft XML Core Services 6.0
MS07-045: Cumulative Security Update for Internet Explorer
MS07-047: Vulnerability in Windows Media Player could allow remote code execution
MS07-048: Vulnerability in Windows Gadgets could allow remote code execution
MS07-050: Vulnerability in Vector Markup Language could allow remote code execution
MS07-053: Vulnerability in Windows Services for UNIX could allow elevation of privilege
MS07-056: Security Update for Outlook Express and Windows Mail
MS07-057: Cumulative security update for Internet Explorer
MS07-058: Vulnerabilities in RPC could allow denial of service
MS07-063: Vulnerability in Server Message Block volume 2 (SMBv2) could allow remote code execution
MS07-064: Vulnerabilities in DirectX could allow remote code execution
MS07-066: Vulnerability in the Windows kernel could allow elevation of privilege
MS07-068: Vulnerability in Windows Media file format could allow remote code execution
MS07-069: Cumulative security update for Internet Explorer
MS08-001: Vulnerability in TCP/IP could allow remote code execution

As always before installing a Service Pack, it is best to ensure that your data is backed up to an external source. We would also recommend setting a restore point in case something goes wrong in the upgrade.

Better safe than sorry :)

Paul