Terima kasih atas kunjungan berharga anda. Jadikan ia berharga dengan bermain di column kempen saya (saya akan balas jasa anda).
Blog ini di'maintain'oleh blogger yang masih ayam dalam teknik editing. So kalo berat sgt nak load page tu, sila inform. Owner akan cuba buangkan any load yang tak perlu. Kalo ada sebarang cadangan lagi bagus. Send dekat pakcoh@gmail.com

Thursday, October 14, 2010

Microsoft Released October 2010 Black Tuesday Summary

Glitter Text - http://www.sparklee.com



On 12th of Oct, Microsoft had released 49 patches to address issues on it Windows platforms including ranging from Microsoft office, Internet Explorer, .NET framework, and including two that fixes the bugs a targeted by the Stuxnet worms. Internet Explorer recorded the most patches which is up to 10 patches followed by Microsoft Word and Excel. Please be noted that eight of the bugs were publicly disclosed before. Microsoft also had released Malicious Software Removal Tool (MSRT) (http://www.microsoft.com/security/malwareremove/default.aspx) to hunt and remove the infamous widely spreading botnet, the Zeus or Zbot (http://blogs.technet.com/b/mmpc/archive/2010/10/12/msrt-on-zbot-the-botnet-in-a-box.aspx).

All the patches can be carried out if auto-update is enabled for your Microsoft Windows. As usual, you may want to follow your patching procedures before deploying it to the production environment. Four (4) of the vulnerabilities are rated as Critical, Ten(10) are rated as important affecting the OS and Microsoft Office and Two (2) are rated as moderate affecting the OS :

MS10-071 - Cumulative Security Update for Internet Explorer (2360131)
MS10-075 - Vulnerability in Media Player Network Sharing Service Could Allow Remote
                     Code Execution (2281679)
MS10-076 - Vulnerability in the Embedded OpenType Font Engine Could Allow Remote
                     Code Execution (982132)
MS10-077 - Vulnerability in .NET Framework Could Allow Remote Code Execution
                     (2160841)
MS10-072 - Vulnerabilities in SafeHTML Could Allow Information Disclosure (2412048)
MS10-073 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of
                     Privilege (981957)
MS10-078 - Vulnerabilities in the OpenType Font (OTF) Format Driver Could Allow
                     Elevation of Privilege (2279986)
MS10-079 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution
                     (2293194)
MS10-080 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution
                     (2293211)
MS10-081 - Vulnerability in Windows Common Control Library Could Allow Remote Code
                     Execution (2296011)
MS10-082 - Vulnerability in Windows Media Player Could Allow Remote Code Execution
                     (2378111)
MS10-083 - Vulnerability in COM Validation in Windows Shell and WordPad Could Allow
                     Remote Code Execution (2405882)
MS10-084 - Vulnerability in Windows Local Procedure Call Could Cause Elevation of
                     Privilege (2360937)
MS10-085 - Vulnerability in SChannel Could Allow Denial of Service (2207566)
MS10-074 - Vulnerability in Microsoft Foundation Classes Could Allow Remote Code
                     Execution (2387149)
MS10-086 - Vulnerability in Windows Shared Cluster Disks Could Allow Tampering
                     (2294255)


For more information on these security updates, please refer to the link below:

https://www.microsoft.com/technet/security/bulletin/ms10-oct.mspx
Posted by Pakcoh at 11:01 AM
Labels: , ,

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
Related Posts Plugin for WordPress, Blogger...