Exchange 2007 SP1 RU7 Released
Microsoft has released RU7 for Exchange 2007 SP1. MS KB 960384 outlines about 50 issues that this cumulative update fixes on an Exchange 2007 server with SP1 already installed. RU7 for Exchange 2007 SP1 can be downloaded here.
Exchange 2007 SP1 RU6 Released with Critical Patch
The critical issue is described in MS KB 959239. Actually, that doesn't explain anything at all, except provide the (impressive) list of files that are updated to resolve this issue. The equivalent article for Exchange 2000 and Exchange 2003 is MS KB 959897. The issue is described in the security bulletin MS09-003. Memory Corruption Vulnerability through malicious OLE objects in TNEF attachments. (Die winmail.dat, die!)
If you are using the 32bit trial and testing version of Exchange 2007, there is still a patch for that as well as the production 64bit version.
Critical Exchange Server Patch Coming Next Tuesday
According to their February 2009 Advanced Notification Bulletin, Microsoft will release several critical patches this coming Tuesday, February 10, 2009, including a long anticipated and rather embarassing one for SQL Server.
Of note is a critical patch for Exchange Server covering Exchange 2000, 2003 and 2007. The bulletin does mention that the Exchange Server will not need to be restarted. That might accelerate the adoption of the patch.
DKIM for Exchange Server
I stumbled upon this commercial application implementing DKIM for IIS SMTP and Exchange 2000/2003/2007 from AdminSystem Software. I have not used it, but I will test their free trial. I do sometimes hear people ask how and if it is possible to deploy DKIM on Exchange.
The price is $299 US per server, but applies to all SMTP domains for that server. Product documentation is also available online.