Two (2) new Microsoft security bulletins have been released, both identified as Critical, and described as follows.
Security Bulletin MS10-030
- Bulletin Title: Vulnerability in Outlook Express and Windows Mail Could Allow Remote Code Execution (978542)
- Maximum Severity Rating: Critical
- Vulnerability Impact: Remote Code Execution
- Restart Requirement: Requires Restart
- Affected Software: Microsoft Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2.
Security Bulletin MS10-031
The following additional items of Note are included in the MSRC blog post by Jerry Bryant, Group Manager, Response Communications:
- Bulletin Title: Vulnerability in Microsoft Visual Basic for Applications Could Allow Remote Code Execution (978213)
- Maximum Severity Rating: Critical
- Vulnerability Impact: Remote Code Execution
- Restart Requirement: May Require Restart
- Affected Software: Microsoft Office XP, Office 2003, 2007 Office System, and Visual Basic for Applications SDK.
References:"Security Advisory 983438 is available and includes workarounds for customers regarding a cross-site scripting (XSS) vulnerability in SharePoint Server. We are not aware of any active attacks at this time and we will continue to monitor the threat landscape and post an updated security advisory should it be needed.
Microsoft is also asking that customers on platforms nearing end-of-support update to the latest supported service packs or to the latest operating systems in order to continue receiving security updates.
- Windows XP Service Pack 2 will no longer be supported after July 13, 2010. Many customers are still on this version, and are encouraged to upgrade to Service Pack 3 or to Windows 7 as soon as possible.
- Extended support for Windows 2000 will also be retired as of July 13, 2010. After that time, Microsoft will no longer provide security or any other updates for Windows 2000."
Clubhouse Tags: Clubhouse, Microsoft, Windows, Security, Updates, Vulnerabilities, Information,
No comments:
Post a Comment