Microsoft released seven (7) bulletins, of which three (3) bulletins ares identified as Critical and four (4) as Important.
The bulletins address twenty-six (26) vulnerabilities in Microsoft Windows, Internet Explorer, Visual Basic for Applications, Dynamics AX, and the .NET Framework.
In addition to the security bulletins identified below, an automatic updater feature for Windows Vista and Windows 7 untrusted certificates is being released. As described in the MSRC Blog:
"This new automatic updater feature provides a mechanism that allows Windows to specifically flag certificates as untrusted. With this new feature, Windows will check daily for updated information about certificates that are no longer trustworthy. In the past, movement of certificates to the untrusted store required a manual update. This new automatic update mechanism, which relies on a list of untrusted certificates known as a Disallowed Certificate Trust List (CTL), is detailed on the PKI blog. We encourage all customers to install this new feature immediately."
If you have had difficulties with .NET Framework in the past, it is strongly advised that the MS12-038 .NET update be installed separately, including a shutdown/restart.
Security Bulletins
- MS12-036 -- Vulnerability in Remote Desktop Could Allow Remote Code Execution (2685939)
- MS12-037 -- Cumulative Security Update for Internet Explorer (2699988)
- MS12-038 -- Vulnerability in .NET Framework Could Allow Remote Code Execution (2706726)
- MS12-039 -- Vulnerabilities in Lync Could Allow Remote Code Execution (2707956)
- MS12-040 -- Vulnerability in Microsoft Dynamics AX Enterprise Portal Could Allow Elevation of Privilege (2709100)
- MS12-041 -- Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2709162)
- MS12-042 -- Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2711167)
Support
The following additional information is provided in the Security Bulletin:- The affected software listed have been tested to determine which versions are affected. Other versions are past their support life cycle. To determine the support life cycle for your software version, visit Microsoft Support Lifecycle.
- Security solutions for IT professionals: TechNet Security Troubleshooting and Support
- Help protect your computer that is running Windows from viruses and malware: Virus Solution and Security Center
- Local support according to your country: International Support
References
- MSRC: Certificate Trust List update and the June 2012 bulletins
- TechNet: Microsoft Security Bulletin Summary for June 2012
- Security and Safety Center: Microsoft security updates for June 2012
Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...
Nice post... These additions will definitely enhance Windows functionality to a much higher level.. Specially the Security part will definitely make Windows more secure than before..
ReplyDeleteMicrosoft Tech Support