On Tuesday, January 10, 2012, Microsoft is planning to release seven (7) Security Bulletins, of which one bulletin is identified as Critical with the remaining as Important.
The bulletins address vulnerabilities in Microsoft Windows and Microsoft Developer Tools And Software. Most updates will require a restart to complete the installation.
Note from the Advance Notification that Bulletin 2, identified as Important addresses a "Security Feature Bypass" in Microsoft Windows. As indicated by the MSRC Blog, Security Feature Bypass (SFB) class issues cannot be leveraged by an attacker. It is explained that a would-be attacker would use such issues to facilitate use of another exploit. Further information is expected to be available in the SRD blog following the release of the update.
References
- MSRC Blog: January 2012 ANS is released
- TechNet: Microsoft Security Bulletin Advance Notification for January 2012
No comments:
Post a Comment