http://technet.microsoft.com/security/bulletinTue, 22 May 2012 08:00:00 GMTumbracoMicrosoft Security Content: Comprehensive Editionen-UShttp://technet.microsoft.com/en-us/security/bulletin/ms12-0352012-05-22T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-035 Revision Note: V2.1 (May 22, 2012): Added entry to the update FAQ to announce a detection change for KB2604092 for Microsoft .NET Framework 2.0 Service Pack 2 and KB2604110 for Microsoft .NET Framework 3.0 Service Pack 2 to correct an installation issue. This is a detection change only. There were no changes to the security update files. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves two privately reported vulnerabilities in the .NET Framework. The vulnerabilities could allow remote code execution on a client system if a user views a specially crafted webpage using a web browser that can run XAML Browser Applications (XBAPs). Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0342012-05-22T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-034 Revision Note: V1.2 (May 22, 2012): Added an entry to the Frequently Asked Questions (FAQ) Related to This Security Update section to explain this revision.
Summary: This security update resolves three publicly disclosed vulnerabilities and seven privately reported vulnerabilities in Microsoft Office, Microsoft Windows, the Microsoft .NET Framework, and Microsoft Silverlight. The most severe of these vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a malicious webpage that embeds TrueType font files. An attacker would have no way to force users to visit a malicious website. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker's website.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-may2012-05-22T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-may Summary: This bulletin summary lists security bulletins released for May 2012.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-1002012-05-22T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-100 Revision Note: V1.5 (May 22, 2012): Added entry to the update FAQ to announce a detection change for KB2656352 for Microsoft .NET Framework 2.0 Service Pack 2 to correct an installation issue. This is a detection change only. There were no changes to the security update files. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves one publicly disclosed vulnerability and three privately reported vulnerabilities in Microsoft .NET Framework. The most severe of these vulnerabilities could allow elevation of privilege if an unauthenticated attacker sends a specially crafted web request to the target site. An attacker who successfully exploited this vulnerability could take any action in the context of an existing account on the ASP.NET site, including executing arbitrary commands. In order to exploit this vulnerability, an attacker must be able to register an account on the ASP.NET site, and must know an existing user name.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0322012-05-09T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-032 Revision Note: V1.1 (May 9, 2012): Corrected mitigating factors for CVE-2012-0174 and CVE-2012-0179 in the Vulnerability Information section.
Summary: This security update resolves one publicly disclosed and one privately reported vulnerability in Microsoft Windows. The more severe of these vulnerabilities could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0302012-05-09T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-030 Revision Note: V1.1 (May 9, 2012): Removed erroneous reference to known issues from the Executive Summary and updated the title of CVE-2012-1847.
Summary: This security update resolves one publicly disclosed and five privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Office file. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0292012-05-09T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-029 Revision Note: V1.1 (May 9, 2012): Corrected update replacement information for Microsoft Office Compatibility Pack Service Pack 2. This is a bulletin change only. There were no changes to detection logic or security update files.
Summary: This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted RTF file. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/advisory/26959622012-05-08T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/advisory/2695962 Summary: Microsoft is releasing a new set of ActiveX kill bits with this advisory.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0332012-05-08T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-033 Revision Note: V1.0 (May 8, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0312012-05-08T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-031 Revision Note: V1.0 (May 8, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Visio file. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0272012-04-26T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-027 Revision Note: V2.0 (April 26, 2012): Added Service Pack 1 versions of SQL Server 2008 R2 to the Affected Software and added an entry to the update FAQ to explain which SQL Server 2000 update to use based on version ranges. These are informational changes only. There were no changes to the security update files or detection logic. For a complete list of changes, see the entry to the section, Frequently Asked Questions (FAQ) Related to This Security Update.
Summary: This security update resolves a privately disclosed vulnerability in Windows common controls. The vulnerability could allow remote code execution if a user visits a website containing specially crafted content designed to exploit the vulnerability. In all cases, however, an attacker would have no way to force users to visit such a website. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker's website. The malicious file could be sent as an email attachment as well, but the attacker would have to convince the user to open the attachment in order to exploit the vulnerability.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-apr2012-04-26T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-apr Summary: This bulletin summary lists security bulletins released for April 2012.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0282012-04-25T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-028 Revision Note: V1.1 (April 25, 2012): Added an entry to the update FAQ to explain why this update is offered to customers running Microsoft Office 2007 Service Pack 3.
Summary: This security update resolves a privately reported vulnerability in Microsoft Office and Microsoft Works. The vulnerability could allow remote code execution if a user opens a specially crafted Works file. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0262012-04-18T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-026 Revision Note: V1.1 (April 18, 2012): Corrected the bulletin replacement information for Microsoft Forefront Unified Access Gateway 2010 Service Pack 1. This is a bulletin change only. There were no changes to the detection or security update files.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Forefront Unified Access Gateway (UAG). The more severe of the vulnerabilities could allow information disclosure if an attacker sends a specially crafted query to the UAG server.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0172012-04-18T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-017 Revision Note: V1.1 (April 18, 2012): Added a link to Microsoft Knowledge Base Article 2647170 under Known Issues in the Executive Summary and corrected the bulletin replacement information for Windows Server 2003 Service Pack 2, Windows Server 2003 x64 Edition Service Pack 2, and Windows Server 2003 with SP2 for Itanium-based Systems. This is a bulletin change only. There were no changes to the detection.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a remote unauthenticated attacker sends a specially crafted DNS query to the target DNS server.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0252012-04-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-025 Revision Note: V1.1 (April 13, 2012): Added a link to Microsoft Knowledge Base Article 2671605 under Known Issues
Summary: This security update resolves one privately reported vulnerability in Microsoft .NET Framework. The vulnerability could allow remote code execution on a client system if a user views a specially crafted webpage using a web browser that can run XAML Browser Applications (XBAPs). Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The vulnerability could also allow remote code execution on a server system running IIS, if that server allows processing ASP.NET pages and an attacker succeeds in uploading a specially crafted ASP.NET page to that server and then executes the page, as could be the case in a web hosting scenario. This vulnerability could also be used by Windows .NET applications to bypass Code Access Security (CAS) restrictions. In a web browsing attack scenario, an attacker could host a website that contains a webpage that is used to exploit this vulnerability. In addition, compromised websites and websites that accept or host user-provided content or advertisements could contain specially crafted content that could exploit this vulnerability. In all cases, however, an attacker would have no way to force users to visit these websites. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes users to the attacker's website.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0242012-04-10T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-024 Revision Note: V1.0 (April 10, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user or application runs or installs a specially crafted, signed portable executable (PE) file on an affected system.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0232012-04-10T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-023 Revision Note: V1.0 (April 10, 2012): Bulletin published.
Summary: This security update resolves five privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0222012-03-14T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-022 Revision Note: V1.1 (March 14, 2012): Removed erroneous installation switch option descriptions from the Security Update Deployment tables for all supported releases. This is an informational change only. There were no changes to the detection logic or the update files.
Summary: This security update resolves one privately reported vulnerability in Microsoft Expression Design. The vulnerability could allow remote code execution if a user opens a legitimate file (such as an .xpr or .DESIGN file) that is located in the same network directory as a specially crafted dynamic link library (DLL) file. Then, while opening the legitimate file, Microsoft Expression Design could attempt to load the DLL file and execute any code it contained. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a legitimate file (such as an .xpr or .DESIGN file) from this location that is then loaded by a vulnerable application.]]>http://technet.microsoft.com/en-us/security/advisory/26475182012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/advisory/2647518 Summary: Microsoft is releasing a new set of ActiveX kill bits with this advisory.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0212012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-021 Revision Note: V1.0 (March 13, 2012): Bulletin published.
Summary: This security update resolves one privately reported vulnerability in Visual Studio. The vulnerability could allow elevation of privilege if an attacker places a specially crafted add-in in the path used by Visual Studio and convinces a user with higher privileges to start Visual Studio. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0202012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-020 Revision Note: V1.0 (March 13, 2012): Bulletin published.
Summary: This security update resolves two privately reported vulnerabilities in the Remote Desktop Protocol. The more severe of these vulnerabilities could allow remote code execution if an attacker sends a sequence of specially crafted RDP packets to an affected system. By default, the Remote Desktop Protocol (RDP) is not enabled on any Windows operating system. Systems that do not have RDP enabled are not at risk.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0192012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-019 Revision Note: V1.0 (March 13, 2012): Bulletin published.
Summary: This security update resolves a publicly disclosed vulnerability in Windows DirectWrite. In an Instant Messenger-based attack scenario, the vulnerability could allow denial of service if an attacker sends a specially crafted sequence of Unicode characters directly to an Instant Messenger client. The target application could become unresponsive when DirectWrite renders the specially crafted sequence of Unicode characters.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0182012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-018 Revision Note: V1.0 (March 13, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-mar2012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-mar Summary: This bulletin summary lists security bulletins released for March 2012.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0672012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-067 Revision Note: V1.1 (March 13, 2012): Added an entry to the update FAQ to announce a detection change for KB2548826 to correct an installation issue. This is a detection change only. There were no changes to the security update files. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves a privately reported vulnerability in Microsoft Report Viewer. The vulnerability could allow information disclosure if a user views a specially crafted Web page. In all cases, however, an attacker would have no way to force a user to visit the Web site. Instead, an attacker would have to persuade a user to visit the Web site, typically by getting them to click a link in an e-mail message or Instant Messenger message that takes the user to the vulnerable Web site.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0302012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-030 Revision Note: V1.1 (March 13, 2012): Added a link to Microsoft Knowledge Base Article 2509553 under Known Issues in the Executive Summary.
Summary: This security update resolves a privately reported vulnerability in Windows DNS resolution. The vulnerability could allow remote code execution if an attacker gained access to the network and then created a custom program to send specially crafted LLMNR broadcast queries to the target systems. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter. Best practices recommend that systems that are connected to the Internet have a minimal number of ports exposed. In this case, the LLMNR ports should be blocked from the Internet.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0252012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-025 Revision Note: V4.3 (March 13, 2012): Added an entry to the update FAQ to announce a detection change for KB2565063 and KB2565057 to correct an installation issue. This is a detection change only. There were no changes to the security update files. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves a publicly disclosed vulnerability in certain applications built using the Microsoft Foundation Class (MFC) Library. The vulnerability could allow remote code execution if a user opens a legitimate file associated with such an affected application, and the file is located in the same network folder as a specially crafted library file. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a document from this location that is then loaded by the affected application.]]>http://technet.microsoft.com/en-us/security/advisory/22696372012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/advisory/2269637 Summary: Microsoft is aware that research has been published detailing a remote attack vector for a class of vulnerabilities that affects how applications load external libraries.]]>http://technet.microsoft.com/en-us/security/bulletin/ms10-0582012-03-13T07:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms10-058 Revision Note: V2.0 (March 13, 2012): Revised bulletin to announce a detection change that removes MS10-029 as the replaced bulletin for all supported editions of Windows Vista and Windows Server 2008. For more information, see the related entry in the update FAQ.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The more severe of these vulnerabilities could allow elevation of privilege due to an error in the processing of a specific input buffer. An attacker who is able to log on to the target system could exploit this vulnerability and run arbitrary code with system-level privileges. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0142012-02-22T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-014 Revision Note: V1.1 (February 22, 2012): Added a link to Microsoft Knowledge Base Article 2661637 under Known Issues in the Executive Summary.
Summary: This security update resolves one publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a legitimate file (such as an .avi file) that is located in the same directory as a specially crafted dynamic link library (DLL) file. An attacker who successfully exploited this vulnerability could run arbitrary code as the logged-on user. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. If a user is logged on with administrative user rights, an attacker could take complete control of the affected system. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0012012-02-22T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-001 Revision Note: V1.1 (February 22, 2012): Added a link to Microsoft Knowledge Base Article 2644615 under Known Issues in the Executive Summary.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow an attacker to bypass the SafeSEH security feature in a software application. An attacker could then use other vulnerabilities to leverage the structured exception handler to run arbitrary code. Only software applications that were compiled using Microsoft Visual C++ .NET 2003 can be used to exploit this vulnerability.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0892012-02-22T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-089 Revision Note: V1.2 (February 22, 2012): Revised the bulletin to identify the update package KB numbers for the following non-affected software that this update applies to: Microsoft Visio (KB2553374), Microsoft Visio Viewer (KB2553353), Microsoft Office Web Application Companions (WAC) (KB2553153), and Microsoft SharePoint Server 2010 (KB2553132). See the update FAQ for details.
Summary: This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Word file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0882012-02-22T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-088 Revision Note: V1.2 (February 22, 2012): Clarified product support status for Microsoft Office Pinyin SimpleFast Style 2010 and Microsoft Office Pinyin New Experience Style 2010. These versions of Microsoft Office Pinyin are no longer supported. Microsoft recommends that all customers of these versions upgrade to the latest version of Microsoft Pinyin IME 2010 available through Microsoft Office 2010. See update FAQ for details.
Summary: This security update resolves a privately reported vulnerability in Microsoft Office IME (Chinese). The vulnerability could allow elevation of privilege if a logged-on user performed specific actions on a system where an affected version of the Microsoft Pinyin (MSPY) Input Method Editor (IME) for Simplified Chinese is installed. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights. Only implementations of Microsoft Pinyin IME 2010 are affected by this vulnerability. Other versions of Simplified Chinese IME and other implementations of IME are not affected.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-dec2012-02-22T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-dec Summary: This bulletin summary lists security bulletins released for December 2011.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0162012-02-15T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-016 Revision Note: V1.2 (February 15, 2012): Removed erroneous reference to known issues from the Executive Summary.
Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Microsoft .NET Framework and Microsoft Silverlight. The vulnerabilities could allow remote code execution on a client system if a user views a specially crafted web page using a web browser that can run XAML Browser Applications (XBAPs) or Silverlight applications. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0492012-02-15T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-049 Revision Note: V2.4 (February 15, 2012): Corrected the SQL Server Version Range for SQL Server 2008 R2 in the update FAQ.
Summary: This security update resolves a privately reported vulnerability in Microsoft XML Editor. The vulnerability could allow information disclosure if a user opened a specially crafted Web Service Discovery (.disco) file with one of the affected software listed in this bulletin. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to produce information that could be used to try to further compromise the affected system.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0152012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-015 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves five privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted Visio file. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0132012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-013 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted media file that is hosted on a website or sent as an email attachment. An attacker who successfully exploited the vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0122012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-012 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves one publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a legitimate file (such as an .icm or .icc file) that is located in the same directory as a specially crafted dynamic link library (DLL) file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0112012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-011 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves three privately reported vulnerabilities in Microsoft SharePoint and Microsoft SharePoint Foundation. These vulnerabilities could allow elevation of privilege or information disclosure if a user clicked a specially crafted URL.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0102012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-010 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves four privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted web page using Internet Explorer. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0092012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-009 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit the vulnerabilities.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0082012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-008 Revision Note: V1.0 (February 14, 2012): Bulletin published.
Summary: This security update resolves a privately reported vulnerability and a publicly disclosed vulnerability in Microsoft Windows. The more severe of these vulnerabilities could allow remote code execution if a user visits a website containing specially crafted content or if a specially crafted application is run locally. An attacker would have no way to force users to visit a malicious website. Instead, an attacker would have to convince users to visit the website, typically by getting them to click a link in an email message or Instant Messenger message that takes them to the attacker's website.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-feb2012-02-14T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-feb Summary: This bulletin summary lists security bulletins released for February 2012.]]>http://technet.microsoft.com/en-us/security/bulletin/ms11-0982012-02-01T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms11-098 Revision Note: V1.1 (February 1, 2012): Added a link to Microsoft Knowledge Base Article 2633171 under Known Issues in the Executive Summary.
Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application designed to exploit the vulnerability. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0042012-01-27T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-004 Revision Note: V1.2 (January 27, 2012): Corrected the aggregate severity rating for the KB2631813 update package in the Affected Software table for all supported editions of Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008. This is a bulletin change only. There were no changes to the security update files or detection logic. Customers should apply all update packages offered for the software installed on their systems. See the update FAQ for details.
Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow remote code execution if a user opens a specially crafted media file. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-jan2012-01-27T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-jan Summary: This bulletin summary lists security bulletins released for January 2012.]]>http://technet.microsoft.com/en-us/security/advisory/26416902012-01-19T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/advisory/2641690 Summary: Microsoft is aware that DigiCert Sdn. Bhd, a Malaysian subordinate certification authority (CA) under Entrust and GTE CyberTrust, has issued 22 certificates with weak 512 bit keys. These weak encryption keys, when broken, could allow an attacker to use the certificates fraudulently to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer. While this is not a vulnerability in a Microsoft product, this issue affects all supported releases of Microsoft Windows.]]>http://technet.microsoft.com/en-us/security/bulletin/ms12-0062012-01-18T08:00:00.0000000Zhttp://technet.microsoft.com/en-us/security/bulletin/ms12-006 Revision Note: V1.1 (January 18, 2012): Added MS10-085 as a bulletin replaced by the KB2585542 update for Windows 7 for 32-bit Systems, Windows 7 for x64-based Systems, Windows Server 2008 R2 for x64-based Systems, and Windows Server 2008 R2 for Itanium-based Systems. This is an informational change only. There were no changes to the detection logic or the update files.
Summary: This security update resolves a publicly disclosed vulnerability in SSL 3.0 and TLS 1.0. This vulnerability affects the protocol itself and is not specific to the Windows operating system. The vulnerability could allow information disclosure if an attacker intercepts encrypted web traffic served from an affected system. TLS 1.1, TLS 1.2, and all cipher suites that do not use CBC mode are not affected.]]>