**Please note this only applies to Community Connect 3 and RM Smart-Tools 3 networks.**

Any references to Community Connect 3 in this document apply equally to RM Smart-Tools 3.

Microsoft� has released significant Security Updates for Windows�. HFXCC3192 contains these Updates in a format easily applied to Community Connect 3 networks.

We recommend that you apply this Security Update without delay. Important: This Security Update can be installed on to Community Connect 3 networks with HFXCC3110B or equivalent, ie RM AppAgent version 1.37.3.0 or greater.

Before installing any Software Update, please refer to TEC90813 and DWN59018 in the Other Useful Articles section below. These articles detail RM's recommendations regarding Software Update installation and support.

At the time of writing there are no known issues related to HFXCC3192.

• HFXCC3192 should be installed on Community Connect 3 networks with Service Release 4 (SR4) or above and HFXCC3110B or equivalent.
• This Security Update should be installed on to all Community Connect 3 servers.

Note: All servers and workstations will need to be restarted in order to install this Security Update completely. You should therefore plan to install the Security Update out-of-hours to minimise disruption to your network.

HFXCC3192 contains the following Microsoft Security Updates:

1. MS07-023 Vulnerabilities in Microsoft� Excel� Could Allow Remote Code Execution (934233)
2. MS07-024 Vulnerabilities in Microsoft� Word� Could Allow Remote Code Execution (934232)
3. MS07-025 Vulnerability in Microsoft� Office� Could Allow Remote Code Execution (934873)
4. MS07-027 Cumulative Security Update for Internet Explorer� (931768)
5. MS07-029 Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution (935966)

More information on the issues resolved by these Updates is available from the Microsoft Web site: (http://www.microsoft.com/)

Note: HFXCC3192 may not contain all the Security Updates released by Microsoft in May 2007. Please read the More Information section below for further details. 

Note: MS07-026 Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832) is available in a separate download - DWN943090 Critical Security Update for Microsoft Exchange (MS07-026) - May 2007. Please refer to the Other Useful Articles section below

The Updates provided in HFXCC3192 supersedes a previously-released Microsoft Security Update; as such, the following Community Connect 3 workstation package will be removed from networks (if it is present) during this Security Update's installation:

• Windows XP SP2 Security Update KB928090
• Microsoft Excel 2000 SP3 Security Update KB927198
• Microsoft Excel 2003 SP2 Security Update KB927198
• Microsoft Excel 2002 SP2 Security Update KB927198
• Microsoft Office 2000 SP3 Security Update KB929434
• Microsoft Office 2003 SP2 Security Update KB929434
• Microsoft Office XP SP3 Security Update KB929434
• Microsoft Word Viewer 2003 Security Update KB929434
• Microsoft Office 2000 SP3 Security Update KB932554
• Microsoft Office 2003 SP2 Security Update KB932554
• Microsoft Office XP SP3 Security Update KB932554

If you are running a Community Connect 3 network, you should apply this Security Update without delay.

HFXCC3192 should be applied to all Community Connect 3 servers including all domain controllers and all Member Servers (such as DAMMS and MIS servers, or servers running Microsoft Exchange). It does not need to be applied to Community Connect 3 workstations directly, but all servers and workstations will need to be restarted for the Microsoft Security Updates to be applied fully.

1. Click the HFXCC3192.exe file link below to download the Security Update.
2. Choose to Save the file, browse to the temporary location you wish to save it to (for example D:\temp) and click Save.
3. When it has downloaded, follow the Installation Instructions below to install the Security Update.

Important: During the installation of HFXCC3192, the Station Manager HealthCheck and the allocation of new Microsoft Security Update packages must be done manually. Please ensure that you fully complete all steps in the Installation Instructions. If you previously started to install the Security Update but cancelled the operation, follow the installation instructions in the 'Installing after cancelling a previous install' section below.

1. Download HFXCC3192.exe.
2. Log on to your first Community Connect 3 domain controller as Administrator (not SystemAdmin) and copy the Security Update to a temporary location (for example D:\temp).
3. Run the Security Update by double-clicking the self-extracting executable file (HFXCC3192.exe). The Security Update will extract files automatically and run the RM Installation Assistant to begin the installation.
4. When prompted, click Continue.
5. The installation will proceed automatically. When prompted that the RM Installation Assistant has finished, click Finish.

Note: After installation at a server, the server will need to be rebooted for the Microsoft Security Updates to be applied fully. Ensure the server has rebooted successfully before continuing.

6. Repeat steps 2-5 at all your other Community Connect 3 domain controllers.
7. Repeat steps 2-5 at any Member Servers (eg DAMMS or MIS servers) on the network.

Note: After installation at a server, the server will need to be rebooted for the Microsoft Security Updates to be applied fully. It is recommended that you ensure each domain controller has rebooted successfully before applying the Software Update to the next server.

8. When all Community Connect 3 domain controllers have had HFXCC3192 applied, log in to the first Community Connect 3 domain controller server in each site as the Administrator user (not SystemAdmin). Run Windows Explorer and browse to D:\RMNetwork\RMManage\Station Manager. Double-click on the file Healthcheck.exe, and select OK to start the health check, and OK again when it has completed.
9. HFXCC3192 provides new workstation packages but does not automatically allocate them. You should allocate these new packages to all your workstations at your earliest convenience. Note: If you choose to allocate the packages at a later time, you must still complete all of steps 1 to 8 above now, including running the Station Manager HealthCheck.

Note: The Application Packages Security Update listed below need to be installed only when the associated packages are installed on the network.

The new Security Packages are listed as available packages as follows in the RM Management Console:

Application packages

• Microsoft Word Viewer 2003 Security Update KB934232
• Microsoft  Word 2003 Security Update KB934232
• Microsoft Word 2002 Security Update KB934232
• Microsoft Word 2000 Security Update KB934232
• Microsoft Excel 2007 Security Update KB934233
• Microsoft Excel 2003 Viewer Security Update KB934233
• Microsoft Excel 2003 Security Update KB934233
• Microsoft Excel 2002 Security Update KB934233
• Microsoft Excel 2000 Security Update KB934233
• Microsoft Office XP SP3 Security Update KB934873
• Microsoft Office 2007 Security Update KB934873
• Microsoft Office 2003 SP2 Security Update KB934873
• Microsoft Office 2000 SP3 Security Update KB934873

System packages

• IE7 XP SP2 Cumulative Security Update KB931768
• IE6 XP SP2 Cumulative Security Update KB931768

Once you have allocated the packages to workstations, restart the workstations for the Microsoft Security Update to be installed.

1. Browse to D:\RMNetwork\RMManage\RM Hotfixes\HFXCC3192_extracted and double-click the file RM Installation Assistant.exe. Note: If this folder or its contents does not exist, re-run the HFXCC3192.exe file downloaded from the RM Support Web site as in step 1 of the Installation Instructions section above.
2. Follow the procedures from step 4 in the Installation Instructions section above.

The components of HFXCC3192 will be included in a future Community Connect 3 Service Release or Microsoft Service Pack validated by RM.

The Security Update can be installed on to networks running Community Connect 3 with Service Release 4 or above and HFXCC3110B or equivalent.

HFXCC3192 is not included in Service Release 4 or 5. It will not need to be re-applied if originally installed before Service Release 5 is installed.

Note: The application Software Updates will need to be re-applied if the related Microsoft application is installed or re-installed after the Software Updates were applied.

See the Description section for a full list. HFXCC3192 contains new relevant workstation and server Microsoft Security Updates. 

This month's Microsoft Security Update excludes the Updates for Microsoft Windows 2003 SP2, MS07-027 (KB931768) and Update MS07-029 (KB935966) as these require Microsoft Windows 2003 Server Service Pack 2 to be installed. This Service Pack is included in RM Service Release 6 which is due to commence rollout. These fixes will be included in a future Microsoft Security Update.

Also excluded in this month's Updates is MS07-028 Vulnerability in CAPICOM Could Allow Remote Code Execution (931906) as this is required for networks with CAPICOM, Platform SDK Redistributable: CAPICOM, BizTalk Server 2004 software.

MS07-026 Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832) is available in a separate download - DWN943090. Please refer to the Other Useful Articles section below.