M100905: Deploying patches from Microsoft Security Bulletin MS08-039

Summary

This article describes manual packaging steps that must be performed on packages that ManageSoft Security Patch Manager (SPM) automatically creates for patches in Microsoft Security Bulletin MS08-039 (Vulnerabilities in Outlook Web Access for Exchange Server Could Allow Elevation of Privilege - 953747). These special steps need to be performed on ManageSoft Security Patch Manager version 7.9.5 only.

The steps, detailed below, include:

  • Validating and possibly correcting command-line options used to install and uninstall the patches.

If these packaging steps are not performed, MS08-039 patch packages are likely to fail to install once deployed.

Validation of command-line options

SPM may use incorrect command-line options on the install and uninstall command lines for the installers for patches in the MS08-039 bulletin.

If packages for the MS08-039 patches have NOT yet been created:

  1. Open the properties of the MS08-039 bulletin, and view the Command-line options section of the properties.
  2. Delete any install options that are specified for the following patches:
    • MS08-039 - Update Rollup 3 for Exchange Server 2007 Service P...
    • MS08-039 - Update Rollup 7 for Exchange Server 2007

If packages for the MS08-039 patches have already been created:

  1. Open the package for each of the following patches in turn:
    • MS08-039 - Update Rollup 3 for Exchange Server 2007 Service P...
    • MS08-039 - Update Rollup 7 for Exchange Server 2007
  2. Under the Packaging > Project > External Installers > All External Installers node, delete the following command line options if they appear on the installation command line:
    /u /m /f /n /o /z /q /l

MS08-039

Comments

Powered by Zendesk