Microsoft Time Of The Month

Yes, its Microsoft’s time of the month again with its batch of security updates. There are a number of updates this month. Note than Windows 7 is only affected by the first critical vulnerability. This is more evidence of the robustness of Windows 7 compared to previous Windows versions. However, the much discussed WebDav exploit is not included in the automatic updates, and must be done manually, see below for details

Critical updates

Vulnerability in Print Spooler Service Could Allow Remote Code Execution (2347290)
Vulnerability in MPEG-4 Codec Could Allow Remote Code Execution (975558)
Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2320113)
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2315011)

Important updates (less severe than critical)

Vulnerabilities in Microsoft Internet Information Services (IIS) Could Allow Remote Code Execution (2267960)
Vulnerability in Remote Procedure Call Could Allow Remote Code Execution (982802)
Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2259922)
Vulnerability in Local Security Authority Subsystem Service Could Allow Elevation of Privilege (983539)
Vulnerability in Windows Client/Server Runtime Subsystem Could Allow Elevation of Privilege (2121546)

WebDav vulnerability
This allows code to run from a malicious web page for certain programmes eg Photoshop, instead of running from the PCs hard drive. The following article explains a fix for this.
http://support.microsoft.com/kb/2264107

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: