January 2009 Microsoft Security Bulletin

When I received an advanced notice of the January security advisory earlier in the month, I was a bit surprised to see that there is only one security bulletin, which shows that even guys from MSRC are occasionally allowed a holiday. Much deserved after a very interesting December with high profile vulnerabilities that needed to be patched as soon as possible, especially MS08-078 which is still used by many malicious web pages and malicious web toolkits.

The only bulletin released this month, MS09-001 concerns a vulnerability in the kernel driver part of the Server service in Windows, processing SMB packets. The attacker might be able to exploit the vulnerability and take control over the targeted system though I personally cannot see this being used in malware. As always, Sophoslabs have published the analysis of the latest bulletin in our Support knowledge base.