Home > Microsoft Security > Microsoft Security Bulletin October 2010

Microsoft Security Bulletin October 2010

This security update is rated Important for all supported editions of Windows Vista, Windows Server 2008, Windows 7 and Windows Server 2008 R2. Microsoft Windows Media Player Network Sharing Service Could Allow Remote Code Execution (MS10-075) Severity: Critical 4 Qualys ID: 90651 Vendor Reference: MS10-075 CVE Reference: CVE-2010-3225 CVSS Scores: Base 7.6, Temporal The vulnerability could not be exploited remotely or by anonymous users. reader comments Share this story You must login or create an account to comment. ← Previous story Next story → Related Stories Sponsored Stories Powered by Today on Ars RSS Feeds weblink

Microsoft Windows Common Control Library Remote Code Execution Vulnerability (MS10-081) Severity: Critical 4 Qualys ID: 90649 Vendor Reference: MS10-081 CVE Reference: CVE-2010-2746 CVSS Scores: Base 9, Temporal 7.1 Threat:The common The cumulative set of security patches available from Microsoft--including those marked here as Deferred--are applied to Microsoft Windows Server 2003 (current supported Service Pack) and/or the appropriate component prior to Cisco's Impact:An attacker who successfully exploits this vulnerability could take complete control of an affected system. Impact of Vulnerability: Elevation of Privilege Maximum Severity Rating: Important Maximum Exploitability Index: 1 - Consistent exploit code likely Affected Products: all supported editions of Windows XP and Windows Server 2003

Product Version Tested(Y/I*) Components Tested(All or Specific) ICM / CCE / CCH 7.0(0) SR4 7.2(7) 7.5(9) 8.0(3) Y All ICM/CCE/CCH 7.0 components tested on Windows Server 2003 SP2. Workarounds: 1) Avoid opening Office files received from untrusted sources. 2) Use the Microsoft Office Isolated Conversion Environment (MOICE) when opening files from unknown or untrusted sources because it protects Office Disabling Microsoft .NET applications and components in the Internet and local Intranet security zones may cause some Web sites to work incorrectly.Refer to the advisory to obtain detailed instructions on applying The vulnerability could not be exploited remotely or by anonymous users.MS10-079 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2293194) - This security update resolves eleven privately reported vulnerabilities

Solution:Patch: Following are links for downloading patches to fix the vulnerabilities:

Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 This month we also have a few bulletins originating from product groups that we don't see on a regular basis. It's worth noting that only six of the 49 total vulnerabilities being addressed have a critical rating. Microsoft pushes out all security patches of a month on that day to all users of their Windows operating systems and other applications like Microsoft Office.

An attacker could exploit the vulnerability by constructing a specially crafted Web page that could allow information disclosure if a user viewed the Web page. (CVE-2010-3330) Microsoft has released a security It can also determine if your PC require a restart after installing security updates.http://www.microsoft.com/downloads/en/details.aspx?FamilyID=02be8aee-a3b6-4d94-b1c9-4b1989e0900c Discussion is locked Flag Permalink You are posting a reply to: Microsoft Security Bulletins for Oct. 2010 These updates support all versions of Cisco Unified CallManager, Cisco Conference Connection, Cisco Personal Assistant, Cisco IP Interactive Voice Response, and Cisco IP Call Center Express, Cisco Emergency Responder, Cisco Customer This security update is rated Moderate for all supported editions of Windows Server 2008 R2.

Cisco IOS access control lists, Cisco Intrusion Prevention System (IPS) signatures, Cisco Security Monitoring, Analysis, and Response System Incidents, Cisco ACE Application Control Engine, and firewall inspection, normalization, and access control The last record was just two months ago: 14 bulletins and 34 vulnerabilities. The vulnerabilities could allow information disclosure if an attacker submits specially crafted script to a target site using SafeHTML. Truett Theological SeminaryVirtual TourVisit CampusAthleticsConstituent EngagementGovernance, Risk and ComplianceHuman ResourcesInformation Technology & University LibrariesMarketing and CommunicationsOffice of the Executive Vice President and ProvostOffice of General CounselOffice of the PresidentOperations, Finance &

Impact of the workaround: If File Block policy is configured without special "exempt directory" configuration (see KB922848), Office 2003 files or earlier versions will not open in Office 2003 or 2007 For example, SharePoint, the Microsoft Foundation Class (MFC) Library (which is an application framework for programming in Windows), and the .NET Framework. This security update is rated Important for all supported releases of Microsoft Windows. The vulnerability could not be exploited remotely or by anonymous users.

While the vulnerability is located in MFC and is present on affected operating systems, it can only be exploited if a remote attacker can influence the window title of any window http://blackplanetsupport.com/microsoft-security/microsoft-security-bulletin-notification.html The vulnerability could allow remote code execution if an attacker sent a specially crafted RTSP packet to an affected system. Microsoft Office Excel Remote Code Execution Vulnerabilities (MS10-080) Severity: Critical 4 Qualys ID: 110136 Vendor Reference: MS10-080 CVE Reference: CVE-2010-3230,CVE-2010-3231,CVE-2010-3232,CVE-2010-3233,CVE-2010-3234,CVE-2010-3235,CVE-2010-3236,CVE-2010-3237,CVE-2010-3238,CVE-2010-3239,CVE-2010-3240,CVE-2010-3241,CVE-2010-3242 CVSS Scores: Base 7.5, Temporal 5.5 Threat:Microsoft Excel is a This security update is rated Critical for all supported releases of Microsoft Windows.

Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.MS10-083 - Vulnerability in COM Validation in An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. http://blackplanetsupport.com/microsoft-security/microsoft-security-bulletin-ms02-065.html For additional information on the security measures to be considered in an ICM environment, refer to the Security Best Practices for Cisco Intelligent Contact Management Software Guide.

An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Compared to last month's record Patch Tuesday, this one is massive. Thank you for helping us maintain CNET's great community.

Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Moderate Affected Products: Windows XP SP3, Windows XP Professional x64 SP2, Windows Server 2003 SP2 including x64 and Itanium editions, Windows Vista

Microsoft released a security update that addresses the vulnerability by adding additional checks to requests for Window title changes. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user. Documents protected with passwords and Digital Rights Management cannot be converted. 3) Microsoft Office File Block policy should be used to block the opening of Office 2003 and earlier documents from Cisco reserves the right to change or update this document at any time.

Impact of workaround #1: Some Microsoft .NET applications will not run. 2) Disable XAML browser applications in Internet Explorer Impact of workaround #2: Microsoft .NET code will not run in Internet Impact of workaround #1 and #2: On visiting Web sites on the Internet or Intranet that use ActiveX or Active Scripting to provide additional functionality, you will be prompted frequently when Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.MS10-084 - Vulnerability in Windows Local Procedure this content Truett Theological SeminaryGraduate SchoolHankamer School of BusinessHonors CollegeLaw SchoolLouise Herrington School of NursingResearch at Baylor UniversityRobbins College of Health and Human SciencesSchool of EducationSchool of Engineering & Computer ScienceSchool of MusicMore

CVE reference: CVE-2010-3214, CVE-2010-3216, CVE-2010-2747, CVE-2010-2748, CVE-2010-2750, CVE-2010-3215, CVE-2010-3217, CVE-2010-3218, CVE-2010-3219, CVE-2010-3220, CVE-2010-3221 http://www.microsoft.com/technet/security/bulletin/ms10-079.mspx MS10-80 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2293211) Details: This security update resolves Solution:Patch: Following are links for downloading patches to fix the vulnerabilities:

Windows Vista Service Pack 1 and Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 1 and A remote code execution vulnerability exists in the way that Microsoft Word handles bookmarks when parsing a specially crafted Word file. Microsoft .NET Framework Remote Code Execution Vulnerability (MS10-077) Severity: Urgent 5 Qualys ID: 90652 Vendor Reference: MS10-077 CVE Reference: CVE-2010-3228 CVSS Scores: Base 9.3, Temporal 6.9 Threat:The Microsoft .NET Framework

We will issue further information on the impact of this months updates once they have been released for testing early next week. Only highly critical vulnerabilities receive out of band security patches.This month's patch day is huge. Impact:An attacker who successfully exploited this vulnerability could arbitrarily add, change, delete, or read data on an affected file system. Microsoft Windows OpenType Font Format Driver Could Allow Elevation of Privilege (MS10-078) Severity: Critical 4 Qualys ID: 90654 Vendor Reference: MS10-078 CVE Reference: CVE-2010-2740,CVE-2010-2741 CVSS Scores: Base 7.3, Temporal 5.7

Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.MS10-086 - Vulnerability in Windows Shared Cluster Cisco recommends that Contact Center customers separately assess all security patches released by Microsoft and install those deemed appropriate for their environments. Microsoft SafeHTML SharePoint Information Disclosure Vulnerability (MS10-072) Severity: Critical 4 Qualys ID: 90647 Vendor Reference: MS10-072 CVE Reference: CVE-2010-3324,CVE-2010-3243 CVSS Scores: Base 4.3, Temporal 3.4 Threat:Microsoft SharePoint and Windows SharePoint