eEye Digital Security
Patch Tuesday: June 9th, 2009
The eEye Digital Security Research Team is dedicated to finding and educating the public about new and existing security vulnerabilities. Below is a list of resources to help you understand the scope of the vulnerabilities behind this month's patches and how to make informed decisions about best ways to proceed with patch installation.
Patch Tuesday Email Bulletin
Immediately following each Patch Tuesday's releases from Microsoft, eEye provides an email bulletin detailing the specifics of each patch's underlying vulnerability, along with information to help administrators plan for patch deployment. The email is available to subscribers of eEye's "Alert" mailing list only. Subscribers also receive timely bulletins when important network security events are unfolding, such as worms and zero-day exploits.
Subscribe Now!
Free Webinar: Vulnerability Expert Forum
As a service to the network security community, eEye's Research Team conducts a Vulnerability Expert Forum web seminar during the second week of every month. This Vulnerability Expert Forum enables participants to stay current on the potential risks and remediation requirements, such as those announced Tuesday, by exploring the effect that high-risk vulnerabilities and exploits have on network environments and infrastructures.
Register Now!
Trial Downloads
Each of eEye's vulnerability management products is designed to help you better prepare your network for remediation activities resulting from Patch Tuesday.
Retina® Network Security Scanner
Retina proactively identifies known vulnerabilities, allowing security teams to remediate them before they are exploited.
Blink® Endpoint Vulnerability Prevention
For organizations where patching isn't an immediate option, Blink offers host-based intrusion prevention for total protection of systems, without the need for patching.
Iris® Network Traffic Analyzer
Iris captures network traffic and allows for the sessions to be played back in its native format, allowing security admins to identify and track certains types of traffic associated with today's flaws.
eEye Research's Zero-Day Tracker
eEye tracks a running list of archived and active zero-day vulnerabilities that have been publicly disclosed and/or used in attacks, and do not have any published vendor-supplied patch.
Zero-Day Tracker
Retina Audits
MS09-018
[8041] Microsoft Active Directory Remote Code Execution (971055) - 2000 - AD
[8042] Microsoft Active Directory Remote Code Execution (971055) - XP - ADAM
[8043] Microsoft Active Directory Remote Code Execution (971055) - 2003 - AD
[8044] Microsoft Active Directory Remote Code Execution (971055) - 2003 - ADAM
MS09-019
[8033] Microsoft Internet Explorer Cumulative Security Update (969897) - 2000
[8034] Microsoft Internet Explorer Cumulative Security Update (969897) - XP
[8035] Microsoft Internet Explorer Cumulative Security Update (969897) - 2003
[8036] Microsoft Internet Explorer Cumulative Security Update (969897) - XP/2003 x64
[8037] Microsoft Internet Explorer Cumulative Security Update (969897) - Vista/2008
[8038] Microsoft Internet Explorer Cumulative Security Update (969897) - Vista/2008 x64
MS09-020
[8068] Microsoft IIS WebDav Authentication Bypass (970483)
MS09-021
[8057] Microsoft Office Excel Remote Code Execution (969462) - Excel 2000
[8058] Microsoft Office Excel Remote Code Execution (969462) - Excel 2002
[8059] Microsoft Office Excel Remote Code Execution (969462) - Excel 2003
[8060] Microsoft Office Excel Remote Code Execution (969462) - Excel Viewer 2003
[8061] Microsoft Office Excel Remote Code Execution (969462) - Excel 2007
[8062] Microsoft Office Excel Remote Code Execution (969462) - Excel Viewer 2007
[8063] Microsoft Office Excel Remote Code Execution (969462) - 2007 Compatibility Pack
[8064] Microsoft Office Excel Remote Code Execution (969462) - SharePoint Server 2007
[8065] Microsoft Office Excel Remote Code Execution (969462) - Office 2004 for Mac
[8066] Microsoft Office Excel Remote Code Execution (969462) - Office 2008 for Mac
[8067] Microsoft Office Excel Remote Code Execution (969462) - Open XML Converter Mac
MS09-022
[8040] Microsoft Windows Print Spooler Remote Code Execution (961501)
MS09-023
[8039] Microsoft Windows Search Information Disclosure (963093)
MS09-024
[8069] Microsoft Works Converter Remote Code Execution (957632) - Works/ Word 2000/2002
[8070] Microsoft Works Converter Remote Code Execution (957632) - Word 2003
[8071] Microsoft Works Converter Remote Code Execution (957632) - Word 2007
MS09-025
[8046] Microsoft Windows Kernel Privilege Escalation (968537)
MS09-026
[8045] Microsoft Windows RPC Privilege Escalation (970238)
MS09-027
[8048] Microsoft Office Word Remote Code Execution (969514) - Word 2000
[8049] Microsoft Office Word Remote Code Execution (969514) - Word 2002
[8050] Microsoft Office Word Remote Code Execution (969514) - Word 2003
[8051] Microsoft Office Word Remote Code Execution (969514) - Word Viewer 2003
[8052] Microsoft Office Word Remote Code Execution (969514) - Word 2007
[8053] Microsoft Office Word Remote Code Execution (969514) - 2007 Compatibility Pack
[8054] Microsoft Office Word Remote Code Execution (969514) - Office 2004 Mac
[8055] Microsoft Office Word Remote Code Execution (969514) - Office 2008 Mac
[8056] Microsoft Office Word Remote Code Execution (969514) - Open XML Converter Mac