July '11 Patch Tuesday Detailed
Article by George Norman
On 13 Jul 2011
As we reported last week, on Tuesday, the 12th of July, Microsoft rolled out four security bulletins meant to address a grand total of 22 vulnerabilities that plagued the Windows operating system and the Office productivity suite. All we knew until now was that out of the four bulletins, one is rated 'critical' and the remaining three are rated 'important'.

Redmond-based software giant has made public additional information on the security bulletins it released as part if the Patch Tuesday.
Read them below (for additional info visit Microsoft's site here).

Sponsored Links

MS11-053 - Vulnerability in Bluetooth Stack Could Allow Remote Code Execution
Rating: Critical.
Affected software: Microsoft Windows.
Description: a privately reported vulnerability in the Windows Bluetooth Stack that could allow remote code execution if an attacker sent a series of specially crafted Bluetooth packets to an affected system. On a compromised system the attacker could install programs, view/change/delete data, or create new accounts with full user right. Systems without Bluetooth capabilities are not affected.

MS11-054 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege
Rating: Important.
Affected software: Microsoft Windows.
Description: 15 privately reported vulnerabilities that affect Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logged on locally and ran a specially crafted application. To exploit these vulnerabilities, an attacker must have valid logon credentials and be able to log on locally.

MS11-056 - Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege
Rating: Important.
Affected software: Microsoft Windows.
Description: five privately reported vulnerabilities in the Microsoft Windows Client/Server Run-time Subsystem (CSRSS), vulnerabilities that could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. To exploit the vulnerabilities, an attacker must have valid logon credentials and be able to log on locally.

MS11-055 - Vulnerability in Microsoft Visio Could Allow Remote Code Execution
Rating: Important.
Affected software: Microsoft Office.
Description: a publicly disclosed vulnerability in Microsoft Visio, vulnerability that could allow remote code execution if a user opens a legitimate Visio file that is located in the same network directory as a specially crafted library file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.

The Microsoft Security Response Center (MSRC) has provided these visual representations of the July 2011 Patch Tuesday.








Tags: Microsoft, Security, Patch Tuesday
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 30 Aug 2016
Job interviews are never easy. You’re nervous, you want to make a good impression, you’re anxious to get the job, and the last thing you want is for something to go wrong.
By George Norman on 30 Aug 2016
Now that Samsung Pay is one year old, a burning question comes to mind: is it a success or a flop? Take a look at the stats & figures presented here and see for yourself.
Related News
By George Norman on 09 May 2016
The Get Windows 10 prompt is starting to get on your nerves and you'd love to get rid of it. Why can't Microsoft just understand that you don't want to switch or upgrade to Windows 10?
By George Norman on 11 Apr 2016
The Redstone update for Windows 10 has been rebranded as the Windows 10 Anniversary Update. It's the next major Windows 10 update and it will come with plenty of exciting new features.
By George Norman on 04 Apr 2016
I’ve said it before and I am going to say it again: working with Excel is tedious enough that you don’t want to unnecessarily prolong your suffering, you want to get things done as quickly as possible.
By George Norman on 29 Jul 2016
Get Windows 10 (GWX) was meant to offer a seamless way of upgrading to Windows 10. If you did, it marked the end of the story. If you didn’t, you would eventually find out just how pushy Microsoft can get.
Sponsored Links
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
July '11 Patch Tuesday Detailed
HTML Linking Code