This cumulative security update resolves seven privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer. The more severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. This security update is rated Critical for all supported releases of Internet Explorer.

Affected Software

**Server Core installation not affected. The vulnerabilities addressed by this update do not affect supported editions of Windows Server 2008 or Windows Server 2008 R2 as indicated, when installed using the Server Core installation option. For more information on this installation option, see the MSDN articles, Server Core and Server Core for Windows Server 2008 R2. Note that the Server Core installation option does not apply to certain editions of Windows Server 2008 and Windows Server 2008 R2; see Compare Server Core Installation Options.

. There have been a very limited number of targeted attacks against a small number of corporations.
. Attacks seen to date are only effective against Internet Explorer 6.
. Attacks are NOT widespread.
. Thus far we are NOT seeing attacks focused on consumers.

In the following sections I will list some of the new functionality that we have added into TMG and will cover some of our infrastructure investments.

Secure Web Gateway
Forefront TMG is a Secure Web Gateway (SWG) that improves security enforcement by integrating multiple detection technologies such as URL filtering, Anti Malware, and intrusion prevention into a single, easy-to-manage solution. We have seen a lot of interest in the features that comprise this solution, so here is some information on what they do and how:

URL Filtering: URL Filtering allows controlling end-user access to Web sites, protecting the organization by denying access to known malicious sites and to sites displaying inappropriate or nonproductive materials, based on URL categories. TMG features over 80 URL categories including security-oriented categories, productivity-oriented and liability-oriented categories. Forefront TMG uses Microsoft Reputation Services (MRS), a cloud-based categorization system hosted in Microsoft data center. To ensure the best bandwidth utilization and low latency, Forefront TMG has implemented a local URL cache.

Anti Malware: Stopping malware on the edge significantly decreases the possibility that a virus will hit a computer with anti-virus signatures that are not up-to-date or a test computer without an anti-virus to protect it. TMG has integrated the Microsoft Anti Malware engine to provide world class scanning and blocking capability on the edge.

Network Inspection System (NIS): NIS is a generic application protocol decode-based traffic inspection system that uses signatures of known vulnerabilities, to detect and potentially block attacks on network resources. NIS provides comprehensive protection for Microsoft network vulnerabilities, researched and developed by the Microsoft Malware Protection Center – NIS Response Team, as well as an operational signature distribution channel which enables dynamic signature snapshot distribution. NIS closes the vulnerability window between vulnerability disclosures and patch deployment from weeks to few hours.

In addition, we have introduced HTTPS scanning to enable inspection of encrypted sessions, eased the deployment and management with a set of easy to use wizards and significantly improved logging and reporting to provide full visibility into how your organization is accessing the web and whether it’s compliant with your organization’s policy.

VPN, Firewall, Email Protection and Infrastructure.
We have also made significant investments to ensure that we keep delivering top notch VPN and Firewall functionality. We made quality improvements in Web Caching and made sure it works well with the new Windows 7 BranchCache feature. We have added several new features, among them: Email Protection, ISP redundancy, NAP integration with VPN role, SSTP, VoIP traversal (SIP support), Enhanced NAT, SQL logging and Updated TMG Client (previously known as the Firewall Client). In addition TMG was built as a native 64bit product that supports Windows Server 2008 R2, and Windows Server 2008 SP2, allowing better scalability and increased reliability.

These improvements are in direct response to your requests and protection needs. We firmly believe that listening to your voice makes our product better! We are looking forward to hearing what you think about TMG 2010 as you test and deploy in your own environment.

So go ahead and download it today to try it out!

Speakers :

Cem Erdal Ozkaya , MVP/MCT

Edvaldo Alessandro Cardoso, MVP/ MCT

Submit your SME profile now!

Do you consider yourself a whiz in Windows Server 2008 R2 Server Virtualization? Do you want to participate in the development of the next round of Virtualization exams? Well you can! Microsoft are looking for volunteers to participate in blueprinting for Exam 70-659, TS: Windows Server 2008 R2, Server Virtualization.

Microsoft will be using the new MSL SME database to find participants for blueprinting as well as other phases of development for this exam. For your best chance of participating, create a SME profile by filling out the survey on the MSL SME site on Microsoft Connect. (See this post for more information.) If you have already created your SME profile, make sure that you update it to reflect your experience with R2 Virtualization experience.

More info : http://borntolearn.mslearn.net/2009/08/calling-all-windows-server-virtualization-expertssubmit-your-sme-profile-now/trackback

Best luck!

When will I get Windows 7 RTM?

When you can get RTM depends on who you are….

For Partners & OEMs:

ISV (Independent software vendor) and IHV (Independent hardware vendor) Partners will be able to download Windows 7 RTM from Microsoft Connect or MSDN on August 6th. There is already a lot of momentum from ISVs and IHVs in the ecosystem today for Windows 7 as Mike Nash blogged last week. If you are a partner who has been working on Windows 7 for a while, now is the time to complete your testing with final version of Windows 7. For partners that haven’t gotten started yet with Windows 7, now is the time to get involved. You can also visit www.readyset7.com to learn more about getting ready for Windows 7.

Microsoft Partner Program Gold/Certified Members will be able to download Windows 7 RTM in English through the Microsoft Partner Network (MPN) Portal on August 16th. By October 1st, the remaining languages will become available to download.

Microsoft Action Pack Subscribers will be about to download Windows 7 RTM in English starting August 23rd. By October 1st, the remaining languages will become available to download.

OEMs will receive Windows 7 RTM software images beginning approximately 2 days after we officially RTM, as a little time is required to release and distribute these images. This will allow them to begin preparing images for new PCs to ship with Windows 7 on them. We know our OEMs are excited for Windows 7 and we can’t wait to hand them the final RTM bits!

For Business Customers:

If you are a Volume License (VL) customer with an existing Software Assurance (SA) license you will be able to download Windows 7 RTM in English starting August 7th via the Volume License Service Center (VLSC). The rest of the languages for Windows 7 RTM should be available within a couple of weeks after that.

Volume License customers without a SA license will be able to purchase Windows 7 through Volume Licensing on September 1st as we announced last week at WPC09. Mark these dates on your calendar and start making your deployment plans!

For IT Professionals:

There are a few ways you can get Windows 7 RTM. IT Professionals with TechNet Subscriptions will be able to download Windows 7 RTM in English on August 6th and remaining languages by October 1st.

IT Professionals at companies with Volume Licensing see above on how you can get Windows 7 RTM.

We have quite a bit of resources for IT Professionals to use to become experts on Windows 7 and to aid in their deployments. Those resources can be found at the Springboard Series.

For Developers:

Developers with MSDN Subscriptions will be able to download Windows 7 RTM in English on August 6th and remaining languages by October 1st.

To help developers who are developing applications for Windows 7 or updating existing applications to take advantage of new Windows 7 features, check out the Windows 7 for Developers Blog. Also, be sure to check out the Windows 7 Developers Guide on MSDN. Oh and there are also some fantastic videos on Channel 9 too!

For Beta Testers & Enthusiasts:

A special thank you to our beta testers is needed for their time and effort in helping make Windows 7 a solid release. The special pre-order offer we did offering Windows 7 Home Premium and Windows 7 Professional at almost 50% discount was done with our beta testers in mind. And many of you jumped at the chance to take advantage of this deal – thank you!

I know there have been some rumors going around about a “family pack” for Windows 7. We have heard a lot of feedback from beta testers and enthusiasts over the last 3 years that we need a better solution for homes with multiple PCs. I’m happy to confirm that we will indeed be offering a family pack of Windows 7 Home Premium (in select markets) which will allow installation on up to 3 PCs. As I’ve said before, stay tuned to our blog for more information on this and any other potential offers.

Beta testers will not automatically receive a free copy of Windows 7. Many beta testers are already subscribers to TechNet; those of you who fit that description will be able to download Windows 7 RTM shortly after RTM happens for free as part of your subscription.

However, if you don’t have TechNet and are waiting for GA (to either purchase Windows 7 or wait for your pre-order to arrive) you can continue to use the RC. In fact, you can continue to use it until it expires on June 1st, 2010 (expiration actually starts March 1, 2010, this is when the reboots start).

While our special pre-order offer with the near 50% has ended, Windows 7 can still be pre-ordered today from the various online retailers (including the Microsoft Store).

We are also going to release an evaluation of Windows 7 Professional for IT Professionals via the Springboard Series shortly after RTM. Over 40% of beta testers are IT Professionals and this will allow them to quickly access the RTM code and plan for deployments.

For Consumers:

Windows 7 will be in retail stores and shipping on new PCs starting October 22nd. If you pre-ordered Windows 7, it should be delivered sometime around the October 22nd timeframe (depends on the retailer).