Security Bulletins

	Microsoft Security Bulletins
	last updated: Mon, 06 Sep 2010 04:26:36 GMT

Tue, 10 Aug 2010 08:00:00 GMT MS10-060 - Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime and in Microsoft Silverlight Could Allow Remote Code Execution (2265906)

Bulletin Severity Rating:Critical - This security update resolves two privately reported vulnerabilities in Microsoft .NET Framework and Microsoft Silverlight. The vulnerabilities could allow remote code execution on a client system if a user views a specially crafted Web page using a Web browser that can run XAML Browser Applications (XBAPs) or Silverlight applications, or if an attacker succeeds in convincing a user to run a specially crafted Microsoft .NET application. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The vulnerabilities could also allow remote code execution on a server system running IIS, if that server allows processing ASP.NET pages and an attacker succeeds in uploading a specially crafted ASP.NET page to that server and executing the page, as could be the case in a Web hosting scenario.

Tue, 10 Aug 2010 08:00:00 GMT MS10-059 - Important: Vulnerabilities in the Tracing Feature for Services Could Allow Elevation of Privilege (982799)

Bulletin Severity Rating:Important - This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in the Tracing Feature for Services. The vulnerabilities could allow elevation of privilege if an attacker runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.

Tue, 10 Aug 2010 08:00:00 GMT MS10-058 - Important: Vulnerabilities in TCP/IP Could Allow Elevation of Privilege (978886)

Bulletin Severity Rating:Important - This security update resolves two privately reported vulnerabilities in Microsoft Windows. The more severe of these vulnerabilities could allow elevation of privilege due to an error in the processing of a specific input buffer. An attacker who is able to log on to the target system could exploit this vulnerability and run arbitrary code with system-level privileges. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-057 - Important: Vulnerability in Microsoft Office Excel Could Allow Remote Code Execution (2269707)

Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-056 - Critical: Vulnerabilities in Microsoft Office Word Could Allow Remote Code Execution (2269638)

Bulletin Severity Rating:Critical - This security update resolves four privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens or previews a specially crafted RTF e-mail message. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-055 - Critical: Vulnerability in Cinepak Codec Could Allow Remote Code Execution (982665)

Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Cinepak Codec. The vulnerability could allow remote code execution if a user opens a specially crafted media file or receives specially crafted streaming content from a Web site or any application that delivers Web content. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-054 - Critical: Vulnerabilities in SMB Server Could Allow Remote Code Execution (982214)

Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow remote code execution if an attacker created a specially crafted SMB packet and sent the packet to an affected system. Firewall best practices and standard default firewall configurations can help protect networks from attacks originating outside the enterprise perimeter that would attempt to exploit these vulnerabilities.

Tue, 10 Aug 2010 08:00:00 GMT MS10-053 - Critical: Cumulative Security Update for Internet Explorer (2183461)

Bulletin Severity Rating:Critical - This security update resolves six privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-052 - Critical: Vulnerability in Microsoft MPEG Layer-3 Codecs Could Allow Remote Code Execution (2115168)

Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft MPEG Layer-3 audio codecs. The vulnerability could allow remote code execution if a user opens a specially crafted media file or receives specially crafted streaming content from a Web site or any application that delivers Web content. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-051 - Critical: Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (2079403)

Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft XML Core Services. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. An attacker would have no way to force users to visit these Web sites. Instead, an attacker would have to persuade users to visit the Web site, typically by getting them to click a link in an e-mail message or Instant Messenger message that takes users to the attacker's Web site.

Tue, 10 Aug 2010 08:00:00 GMT MS10-050 - Important: Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (981997)

Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Windows Movie Maker. The vulnerability could allow remote code execution if an attacker sent a specially crafted Movie Maker project file and convinced the user to open the specially crafted file. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 10 Aug 2010 08:00:00 GMT MS10-049 - Critical: Vulnerabilities in SChannel could allow Remote Code Execution (980436)

Bulletin Severity Rating:Critical - This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in the Secure Channel (SChannel) security package in Windows. The more severe of these vulnerabilities could allow remote code execution if a user visits a specially crafted Web site that is designed to exploit these vulnerabilities through an Internet Web browser. In all cases, however, an attacker would have no way to force users to visit these Web sites. Instead, an attacker would have to convince users to visit the Web site, typically by getting them to click a link in an e-mail message or in an Instant Messenger message that takes users to the attacker's Web site.

Tue, 10 Aug 2010 08:00:00 GMT MS10-048 - Important: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2160329)

Bulletin Severity Rating:Important - This security update resolves one publicly disclosed and four privately reported vulnerabilities in the Windows kernel-mode drivers. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.

Tue, 10 Aug 2010 08:00:00 GMT MS10-047 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (981852)

Bulletin Severity Rating:Important - This security update resolves several privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logged on locally and ran a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit these vulnerabilities. The vulnerabilities could not be exploited remotely or by anonymous users.

Mon, 02 Aug 2010 08:00:00 GMT MS10-046 - Critical: Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198)

Bulletin Severity Rating:Critical - This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon of a specially crafted shortcut is displayed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 13 Jul 2010 08:00:00 GMT MS10-045 - Important: Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)

Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability. The vulnerability could allow remote code execution if a user opened an attachment in a specially crafted e-mail message using an affected version of Microsoft Office Outlook. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 13 Jul 2010 08:00:00 GMT MS10-044 - Critical: Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution (982335)

Bulletin Severity Rating:Critical - This security update resolves two privately reported vulnerabilities in Microsoft Office Access ActiveX Controls. The vulnerabilities could allow remote code execution if a user opened a specially crafted Office file or viewed a Web page that instantiated Access ActiveX controls. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 13 Jul 2010 08:00:00 GMT MS10-043 - Critical: Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276)

Bulletin Severity Rating:Critical - This security update resolves a publicly disclosed vulnerability in the Canonical Display Driver (cdd.dll). Although it is possible that the vulnerability could allow code execution, successful code execution is unlikely due to memory randomization. In most scenarios, it is much more likely that an attacker who successfully exploited this vulnerability could cause the affected system to stop responding and automatically restart.

Tue, 13 Jul 2010 08:00:00 GMT MS10-042 - Critical: Vulnerability in Help and Support Center Could Allow Remote Code Execution (2229593)

Bulletin Severity Rating:Critical - This security update resolves a publicly disclosed vulnerability in the Windows Help and Support Center feature that is delivered with supported editions of Windows XP and Windows Server 2003. This vulnerability could allow remote code execution if a user views a specially crafted Web page using a Web browser or clicks a specially crafted link in an e-mail message. The vulnerability cannot be exploited automatically through e-mail. For an attack to be successful, a user must click a link listed within an e-mail message.

Tue, 08 Jun 2010 08:00:00 GMT MS10-041 - Important: Vulnerability in Microsoft .NET Framework Could Allow Tampering (981343)

Bulletin Severity Rating:Important - This security update resolves a publicly disclosed vulnerability in Microsoft .NET Framework. The vulnerability could allow data tampering of signed XML content without being detected. In custom applications, the security impact depends on how the signed content is used in the specific application. Scenarios in which signed XML messages are transmitted over a secure channel (such as SSL) are not affected by this vulnerability.

Tue, 08 Jun 2010 08:00:00 GMT MS10-040 - Important: Vulnerability in Internet Information Services Could Allow Remote Code Execution (982666)

Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Internet Information Services (IIS). The vulnerability could allow remote code execution if a user received a specially crafted HTTP request. An attacker who successfully exploited this vulnerability could take complete control of an affected system.

Tue, 08 Jun 2010 08:00:00 GMT MS10-039 - Important: Vulnerabilities in Microsoft SharePoint Could Allow Elevation of Privilege (2028554)

Bulletin Severity Rating:Important - This security update resolves one publicly disclosed and two privately reported vulnerabilities in Microsoft SharePoint. The most severe vulnerability could allow elevation of privilege if an attacker convinced a user of a targeted SharePoint site to click on a specially crafted link.

Tue, 08 Jun 2010 08:00:00 GMT MS10-038 - Important: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (2027452)

Bulletin Severity Rating:Important - This security update resolves fourteen privately reported vulnerabilities in Microsoft Office. The more severe vulnerabilities could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Tue, 08 Jun 2010 08:00:00 GMT MS10-037 - Important: Vulnerability in the OpenType Compact Font Format (CFF) Driver Could Allow Elevation of Privilege (980218)

Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in the Windows OpenType Compact Font Format (CFF) driver. The vulnerability could allow elevation of privilege if a user views content rendered in a specially crafted CFF font. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.

Tue, 08 Jun 2010 08:00:00 GMT MS10-036 - Important: Vulnerability in COM Validation in Microsoft Office Could Allow Remote Code Execution (983235)

Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in COM validation in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Excel, Word, Visio, Publisher, or PowerPoint file with an affected version of Microsoft Office. The vulnerability cannot be exploited automatically through e-mail. For an attack to be successful a user must open an attachment that is sent in an e-mail message.

	US-CERT Technical Alerts and Bulletins
	last updated: Mon, 06 Sep 2010 04:26:37 GMT

SB10-242: Vulnerability Summary for the Week of August 23, 2010

Vulnerability Summary for the Week of August 23, 2010

TA10-238A: Microsoft Windows Insecurely Loads Dynamic Libraries

Microsoft Windows Insecurely Loads Dynamic Libraries

SB10-235: Vulnerability Summary for the Week of August 16, 2010

Vulnerability Summary for the Week of August 16, 2010

TA10-231A: Adobe Reader and Acrobat Vulnerabilities

Adobe Reader and Acrobat Vulnerabilities

SB10-228: Vulnerability Summary for the Week of August 9, 2010

Vulnerability Summary for the Week of August 9, 2010

	SecurityFocus Vulnerabilities
	last updated: Mon, 06 Sep 2010 04:26:37 GMT

2010-09-03 Vuln: KSP '.m3u' File Buffer Overflow Vulnerability

KSP '.m3u' File Buffer Overflow Vulnerability

2010-09-03 Vuln: Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability

Icarus 'PGN' File Remote Stack Buffer Overflow Vulnerability

2010-09-03 Vuln: HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

HP-UX Software Distributor Unspecified Local Privilege Escalation Vulnerability

2010-09-03 Vuln: Trend Micro Internet Security Pro ActiveX Control Remote Code Execution Vulnerability

Trend Micro Internet Security Pro ActiveX Control Remote Code Execution Vulnerability

Bugtraq: Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation?

Re: Re: IIS5.1 Directory Authentication Bypass by using ?:$I30:$Index_Allocation?

	Yahoo! News: Security News
	last updated: Mon, 06 Sep 2010 04:26:39 GMT

Fri, 03 Sep 2010 19:30:12 GMT Facebook Glitch Let Spammer Post to Walls (PC World)

PC World - A clever spammer found a glitch in Facebook's photo upload system and used it to post thousands of unwanted Wall messages this week.

Fri, 03 Sep 2010 17:10:08 GMT Spammers Take Over Apple's New Ping Social Network (NewsFactor)

NewsFactor - Apple launched iTunes 10 with Ping, a new music-oriented social network, on Wednesday. Within hours, the site fell victim to spammers looking to make a quick buck from Apple's unsuspecting 160 million music lovers exploring the new way to discover what music their friends are listening to.

Fri, 03 Sep 2010 15:10:11 GMT Germany to Launch Antibotnet Program for Consumers (PC World)

PC World - Germany will soon launch a service to help consumers remove malicious software from their computers in an attempt to stem the spread of spam-sending botnets.

Fri, 03 Sep 2010 13:47:40 GMT Apple's Ping Inundated with Spam Comments (PC Magazine)

PC Magazine - Days after its release, Apple's new Ping social network within iTunes is being inundated with spam comments.

Fri, 03 Sep 2010 12:57:00 GMT Apple's Ping a Scammer's Haven? Security Experts Say Watch Out (PC World)

PC World - Apple's music-focused social network, Ping is only a few days old, and already the iTunes-based feature is "drowning in scams and spams," security researchers say. The scams are nothing too advanced at the moment, and there are no reports of clickjacking worms or other forms of aggressive malware, experts say. But if you're looking for links to bogus surveys promising free iPhones, iPads, and other assorted iDevices, then Ping in iTunes 10 is the social network for you.

	Cisco Security Notices
	last updated: Mon, 06 Sep 2010 04:26:40 GMT

Thu, 09 Nov 2006 07:00:00 PST Cisco IPSec VPN Implementation Group Name Enumeration Vulnerability

This Cisco Security Notice is being released in response to the Cisco VPN Concentrator Group Name Enumeration Vulnerability advisory published on June 20, 2005 by NTA Monitor at http://www.nta-monitor.com/news/vpn-flaws/cisco/VPN-Concentrator/index.htm.

Fri, 21 Apr 2006 13:40:00 PST Crafted DNS Packet Can Cause Denial Of Service

Thu, 26 Jan 2006 14:30:00 PST Cisco IPsec VPN Implementation Group Password Usage Vulnerability

Mon, 07 Nov 2005 10:00:00 PST Response to BugTraq - Cisco Clean Access Agent (Perfigo) Bypass

This document is provided to simplify access to Cisco responses to possible product security vulnerability issues posted in public forums for Cisco customers. This does not imply that Cisco perceives each of these issues as an actual product security vulnerability. This notice is provided on an "as is" basis and does not imply any kind of guarantee or warranty. Your use of the information on the page or materials linked from this page are at your own risk. Cisco reserves the right to change or update this page without notice at any time.

Thu, 08 Sep 2005 07:00:00 PST CSS SSL Authentication Bypass

The Cisco CSS 11500 Series Content Services Switches (CSS) running Secure Socket Layer (SSL) has a vulnerability that may allow a user to bypass SSL authentication and access protected content. Cisco has made free software available to address this vulnerability.

	Cisco Security Advisories
	last updated: Mon, 06 Sep 2010 04:26:41 GMT

Thu, 02 Sep 2010 06:30:00 PST Cisco IOS XR Software Border Gateway Protocol Vulnerability

Cisco IOS XR Software contains a vulnerability in the Border Gateway Protocol (BGP) feature. The vulnerability manifests itself when a BGP peer announces a prefix with a specific, valid but unrecognized transitive attribute. On receipt of this prefix, the Cisco IOS XR device will corrupt the attribute before sending it to the neighboring devices. Neighboring devices that receive this corrupted update may reset the BGP peering session.

Wed, 25 Aug 2010 07:40:00 PST Cisco Unified Communications Manager Denial of Service Vulnerabilities

Cisco Unified Communications Manager contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages. Exploitation of these vulnerabilities could cause an interruption of voice services.

Wed, 25 Aug 2010 07:30:00 PST Cisco Unified Presence Denial of Service Vulnerabilities

Cisco Unified Presence contains two denial of service (DoS) vulnerabilities that affect the processing of Session Initiation Protocol (SIP) messages. Exploitation of these vulnerabilities could cause an interruption of presence services.

Thu, 12 Aug 2010 13:30:00 PST Cisco IOS Software TCP Denial of Service Vulnerability

Cisco IOS Software Release, 15.1(2)T is affected by a denial of service (DoS) vulnerability during the TCP establishment phase. The vulnerability could cause embryonic TCP connections to remain in a SYNRCVD or SYNSENT state. Enough embryonic TCP connections in these states could consume system resources and prevent an affected device from accepting or initiating new TCP connections, including any TCP-based remote management access to the device.

Wed, 11 Aug 2010 08:00:00 PST Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine

The Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine contain the following DoS vulnerabilities: Real-Time Streaming Protocol (RTSP) inspection DoS vulnerability HTTP, RTSP, and Session Initiation Protocol (SIP) inspection DoS vulnerability Secure Socket Layer (SSL) DoS vulnerability SIP inspection DoS vulnerability

Reload this page to check for the most recent news updates.

Please read our legal disclaimer for the use of this information.

Top «