July '11 Patch Tuesday Detailed
As we reported last week, on Tuesday, the 12th of July, Microsoft rolled out four security bulletins meant to address a grand total of 22 vulnerabilities that plagued the Windows operating system and the Office productivity suite. All we knew until now was that out of the four bulletins, one is rated 'critical' and the remaining three are rated 'important'.
Redmond-based software giant has made public additional information on the security bulletins it released as part if the Patch Tuesday.
Read them below (for additional info visit Microsoft's site here).
MS11-053 - Vulnerability in Bluetooth Stack Could Allow Remote Code Execution
Rating: Critical.
Affected software: Microsoft Windows.
Description: a privately reported vulnerability in the Windows Bluetooth Stack that could allow remote code execution if an attacker sent a series of specially crafted Bluetooth packets to an affected system. On a compromised system the attacker could install programs, view/change/delete data, or create new accounts with full user right. Systems without Bluetooth capabilities are not affected.
MS11-054 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege
Rating: Important.
Affected software: Microsoft Windows.
Description: 15 privately reported vulnerabilities that affect Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logged on locally and ran a specially crafted application. To exploit these vulnerabilities, an attacker must have valid logon credentials and be able to log on locally.
MS11-056 - Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege
Rating: Important.
Affected software: Microsoft Windows.
Description: five privately reported vulnerabilities in the Microsoft Windows Client/Server Run-time Subsystem (CSRSS), vulnerabilities that could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. To exploit the vulnerabilities, an attacker must have valid logon credentials and be able to log on locally.
MS11-055 - Vulnerability in Microsoft Visio Could Allow Remote Code Execution
Rating: Important.
Affected software: Microsoft Office.
Description: a publicly disclosed vulnerability in Microsoft Visio, vulnerability that could allow remote code execution if a user opens a legitimate Visio file that is located in the same network directory as a specially crafted library file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.
The Microsoft Security Response Center (MSRC) has provided these visual representations of the July 2011 Patch Tuesday.
Tags: Microsoft, Security, Patch Tuesday
Redmond-based software giant has made public additional information on the security bulletins it released as part if the Patch Tuesday.
Read them below (for additional info visit Microsoft's site here).
Advertising
MS11-053 - Vulnerability in Bluetooth Stack Could Allow Remote Code Execution
Rating: Critical.
Affected software: Microsoft Windows.
Description: a privately reported vulnerability in the Windows Bluetooth Stack that could allow remote code execution if an attacker sent a series of specially crafted Bluetooth packets to an affected system. On a compromised system the attacker could install programs, view/change/delete data, or create new accounts with full user right. Systems without Bluetooth capabilities are not affected.
MS11-054 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege
Rating: Important.
Affected software: Microsoft Windows.
Description: 15 privately reported vulnerabilities that affect Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logged on locally and ran a specially crafted application. To exploit these vulnerabilities, an attacker must have valid logon credentials and be able to log on locally.
MS11-056 - Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege
Rating: Important.
Affected software: Microsoft Windows.
Description: five privately reported vulnerabilities in the Microsoft Windows Client/Server Run-time Subsystem (CSRSS), vulnerabilities that could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. To exploit the vulnerabilities, an attacker must have valid logon credentials and be able to log on locally.
MS11-055 - Vulnerability in Microsoft Visio Could Allow Remote Code Execution
Rating: Important.
Affected software: Microsoft Office.
Description: a publicly disclosed vulnerability in Microsoft Visio, vulnerability that could allow remote code execution if a user opens a legitimate Visio file that is located in the same network directory as a specially crafted library file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user.
The Microsoft Security Response Center (MSRC) has provided these visual representations of the July 2011 Patch Tuesday.
Tags: Microsoft, Security, Patch Tuesday
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 17 May 2013
This week the Linux Mint team announced that they pushed out the Release Candidate (RC) of Linux Mint 15 codename Olivia. This is the most ambitious release since the start of the Linux Mint project.
By George Norman on 16 May 2013
Bromium, nexB and ownCloud are the newest members of The Linux Foundation. Pushed by the fact that the use of Linux in enterprise keeps growing, these companies decided to embrace collaborative development.Related News
By George Norman on 25 Mar 2013
It just goes to show you that no security solution is infallible. Kaspersky Lab announced that it uncovered malware on many PCs that already had a security solution in place – even on PCs protected by reputable security products.
By George Norman on 20 Nov 2012
The recently released OPSWAT Security Score application analyzes your PC and gives it a security score. How much will you get? Get the tool and evaluate your PC’s security status.
By George Norman on 05 Dec 2012
avast! Antivirus is giving you the chance to win a Windows 8-powered Surface tablet or a license for avast! Internet Security by doing nothing more than playing a game on Facebook.
By George Norman on 07 Jan 2013
Great news for all the users out there who have a device powered by Microsoft’s Windows 8 operating system: the Dropbox app for Windows 8 has been released and is available for download in the Windows Store.Advertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
July '11 Patch Tuesday Detailed
HTML Linking Code
HTML Linking Code