********************************************************************
Title: Microsoft Security Bulletin Major Revisions
Issued: January 13, 2009
********************************************************************

Summary
=======
The following bulletins have undergone a major revision increment.
Please see the appropriate bulletin for more details.

* MS08-076 - Important
* MS08-072 - Critical

Bulletin Information:
=====================

* MS08-076 - Important

- http://www.microsoft.com/technet/security/bulletin/ms08-076.mspx
- Reason for Revision: V3.0 (January 13, 2009): Added entry to the
Frequently Asked Questions (FAQ) Related to This Security
Update section explaining that Microsoft has re-released the
update packages for Windows Media Format Runtime 9.5 on
Windows XP Service Pack 2 (KB952069) and on Windows XP
Service Pack 3 (KB952069). Customers running all other
supported and affected versions of Windows Media components
who have already applied the original security update
packages do not need to take any further action. Also, listed
Windows Media Player 6.4 and Windows Media Services 4.1 as
affected on all editions of Microsoft Windows 2000 Service
Pack 4; customers who were offered but have not applied this
update, KB954600 for Windows Media Player 6.4, or KB952068
for Windows Media Services 4.1, need to do so.
- Originally posted: December 9, 2008
- Updated: January 13, 2009
- Bulletin Severity Rating: Important
- Version: 3.0

* MS08-072 - Critical

- http://www.microsoft.com/technet/security/bulletin/ms08-072.mspx
- Reason for Revision: V2.0 (January 13, 2009): Added Microsoft
Office Word Viewer to Affected Software table. Also, added an
entry to the section, Frequently Asked Questions (FAQ)
Related to This Security Update, explaining Microsoft Office
Word Viewer. There were no changes to the security update
binaries or detection. Customers with Microsoft Office Word
Viewer who have successfully installed security update
KB956366 do not need to reinstall.
- Originally posted: December 9, 2008
- Updated: January 13, 2009
- Bulletin Severity Rating: Critical
- Version: 2.0


Other Information
=================

Recognize and avoid fraudulent e-mail to Microsoft customers:
=============================================================
If you receive an e-mail message that claims to be distributing
a Microsoft security update, it is a hoax that may contain
malware or pointers to malicious Web sites. Microsoft does
not distribute security updates via e-mail.

The Microsoft Security Response Center (MSRC) uses PGP to digitally
sign all security notifications. However, it is not required to read
security notifications, security bulletins, security advisories, or
install security updates. You can obtain the MSRC public PGP key at
https://www.microsoft.com/technet/security/bulletin/pgp.mspx.

To receive automatic notifications whenever Microsoft Security
Bulletins and Microsoft Security Advisories are issued or revised,
subscribe to Microsoft Technical Security Notifications on
http://www.microsoft.com/technet/security/bulletin/notify.mspx.


********************************************************************
THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS
PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT
DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING
THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE.
IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE
LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT,
INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL
DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN
ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY
FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING
LIMITATION MAY NOT APPLY.
********************************************************************