SQLServerCentral / SQL Server 2008 / Security (SS2K8) / Vulnerability in Windows Common Controls Could Allow Remote Code Execution / Latest Posts

SQLServerCentral / SQL Server 2008 / Security (SS2K8) / Vulnerability in Windows Common Controls Could Allow Remote Code Execution / Latest PostsInstantForum.NET v2.9.0SQLServerCentralhttp://www.sqlservercentral.com/Forums/notifications@sqlservercentral.comSat, 25 May 2013 01:44:27 GMT20RE: Vulnerability in Windows Common Controls Could Allow Remote Code Executionhttp://www.sqlservercentral.com/Forums/Topic1392431-1526-1.aspxyou can start sql service using low priviledge user ,also you can remove rights of user which having access on sql server installation foldercheck cmdshell is not enable.Tue, 11 Dec 2012 09:20:30 GMTHemant.RVulnerability in Windows Common Controls Could Allow Remote Code Executionhttp://www.sqlservercentral.com/Forums/Topic1392431-1526-1.aspxMS12-060, KB2687441. http://technet.microsoft.com/en-us/security/bulletin/ms12-060 http://support.microsoft.com/kb/2687441#AppliesToProductsI am researching applying this patch and wanted to see if others have installed this. When reading the Microsoft Article, it indicates that the affected Office 2007 components are installed with SQL 2005/08 by default. Some other sites stated that this patch only needs to be applied if Office is installed on the SQL Server. Please let me know if you have installed this and your experience with it. Thanks!Tue, 04 Dec 2012 06:34:25 GMTwdolby