Microsoft released six security bulletins addressing a total of 12 vulnerabilities. The updates affect Windows, Internet Explorer and Microsoft Office.
Affected products include Windows, Internet Explorer (IE) and Microsoft Office products. Additional information regarding the severity and exploitability are available in the MSRC blog, linked below.
Critical
- Microsoft Security Bulletin MS09-071
Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution (974318), http://www.microsoft.com/technet/security/bulletin/ms09-071.mspx - Microsoft Security Bulletin MS09-074
Vulnerability in Microsoft Office Project Could Allow Remote Code Execution (KB 967183), http://www.microsoft.com/technet/security/bulletin/ms09-074.mspx - Microsoft Security Bulletin MS09-072
Cumulative Security Update for Internet Explorer (976325), http://www.microsoft.com/technet/security/bulletin/ms09-072.mspx
- Microsoft Security Bulletin MS09-069
Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (974392), http://www.microsoft.com/technet/security/bulletin/ms09-069.mspx - Microsoft Security Bulletin MS09-070
Vulnerabilities in Active Directory Federation Services Could Allow Remote Code Execution (971726), http://www.microsoft.com/technet/security/bulletin/ms09-070.mspx - Microsoft Security Bulletin MS09-073
Vulnerability in WordPad and Office Text Converters Could Allow Remote Code Execution (975539), http://www.microsoft.com/technet/security/bulletin/ms09-073.mspx
- MSRC: December 2009 Security Bulletin Release
- TechNet: Microsoft Security bulletin summary for December 2009
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...
No comments:
Post a Comment