12345

1/28/2013

Microsoft Security Bulletin Summary for October 2012

1. Introduction

Microsoft(MS)'s regular security updates were released for October 2012.
Users who use MS OS strongly recommended update to be safe from Vulnerabilities in Microsoft Word Could Allow Remote Code Execution, Vulnerability in Microsoft Works Could Allow Remote Code Execution, Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege, Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution, Vulnerability in Windows Kernel Could Allow Elevation of Privilege, Vulnerability in Kerberos Could Allow Denial of Service, and Vulnerability in SQL Server Could Allow Elevation of Privilege.



2. Update details

[Important]
[MS12-064] Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319)

Vulnerability: Word PAPX Section Corruption Vulnerability - CVE-2012-0182
RTF File listid Use-After-Free Vulnerability - CVE-2012-2528

This security update resolves two privately reported vulnerabilities in Microsoft Office. The more severe vulnerability could allow remote code execution if a user opens or previews a specially crafted RTF file. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Affected Softwares

- Microsoft Office 2003 SP3
- Microsoft Office 2007 SP2
- Microsoft Office 2007 SP3
- Microsoft Office 2010 SP1 (32bit)
- Microsoft Office 2010 SP1 (64bit)
- Microsoft Word Viewer 
- Microsoft Office Compatibility Pack SP2
- Microsoft Office Compatibility Pack SP3
- Microsoft SharePoint Server 2010 SP1
- Microsoft Office Web Apps 2010 SP1

- Reference site



[Important]
[MS12-065] Vulnerability in Microsoft Works Could Allow Remote Code Execution (2754670)

Vulnerability: Works Heap Vulnerability - CVE-2012-2550

This security update resolves a privately reported vulnerability in Microsoft Works. The vulnerability could allow remote code execution if a user opens a specially crafted Microsoft Word file using Microsoft Works. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Affected Softwares

- Microsoft Works 9

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS12-065


[Important]
[MS12-066] Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2741517)

Vulnerability: HTML Sanitization Vulnerability - CVE-2012-2520

This security update resolves a publicly disclosed vulnerability in Microsoft Office, Microsoft Communications Platforms, Microsoft Server software, and Microsoft Office Web Apps. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user.

Affected Softwares

- Microsoft InfoPath 2007 SP2
- Microsoft InfoPath 2007 SP3
- Microsoft InfoPath 2010 SP1 (32-bit editions)
- Microsoft InfoPath 2010 SP1 (64-bit editions)
- Microsoft Communicator 2007 R2
- Microsoft Lync 2010 (32-bit)
- Microsoft Lync 2010 (64-bit)
- Microsoft Lync 2010 Attendee
- Microsoft SharePoint Server 2007 SP2 (32-bit editions)
- Microsoft SharePoint Server 2007 SP3 (32-bit editions)
- Microsoft SharePoint Server 2007 SP2 (64-bit editions)
- Microsoft SharePoint Server 2007 SP3 (64-bit editions)
- Microsoft SharePoint Server 2010 SP1
- Microsoft Groove Server 2010 SP1
- Microsoft Windows SharePoint Services 3.0 SP2 (32-bit version)
- Microsoft Windows SharePoint Services 3.0 SP2 (64-bit version)
- Microsoft SharePoint Foundation 2010 SP1
- Microsoft Office Web Apps 2010 SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS12-066



[Important]
[MS12-067] Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2742321)

Vulnerability: Oracle Outside In contains multiple exploitable vulnerabilities

This security update resolves publicly disclosed vulnerabilities in Microsoft FAST Search Server 2010 for SharePoint. The vulnerabilities could allow remote code execution in the security context of a user account with a restricted token. FAST Search Server for SharePoint is only affected by this issue when Advanced Filter Pack is enabled. By default, Advanced Filter Pack is disabled.

Affected Softwares

- Microsoft FAST Search Server 2010 for SharePoint SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS12-067



[Important]
[MS12-068] Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2724197)

Vulnerability: Oracle Outside In contains multiple exploitable vulnerabilities

This security update resolves a privately reported vulnerability in all supported releases of Microsoft Windows except Windows 8 and Windows Server 2012. This security update is rated Important for all supported editions of Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. For more information, see the subsection, Affected and Non-Affected Software, in this section.

Affected Softwares

- Windows XP SP3 
- Windows XP Professional x64 Edition SP2 
- Windows Server 2003 SP2 
- Windows Server 2003 x64 Edition SP2 
- Windows Server 2003 with SP2 for Itanium-based Systems 
- Windows Vista SP2 
- Windows Vista x64 Edition SP2 
- Windows Server 2008 for 32-bit Systems SP2 
- Windows Server 2008 for x64-based Systems SP2 
- Windows Server 2008 for Itanium-based Systems SP2 
- Windows 7 for 32-bit Systems
- Windows 7 for 32-bit Systems SP1 
- Windows 7 for x64-based Systems 
- Windows 7 for x64-based Systems SP1 
- Windows Server 2008 R2 for x64-based Systems 
- Windows Server 2008 R2 for x64-based Systems SP1 
- Windows Server 2008 R2 for Itanium-based Systems 
- Windows Server 2008 R2 for Itanium-based Systems SP1 

- Reference site



[Important]
[MS12-069] Vulnerability in Kerberos Could Allow Denial of Service (2743555)

Vulnerability: Kerberos NULL Dereference Vulnerability - CVE-2012-2551

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a remote attacker sends a specially crafted session request to the Kerberos server. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter. Best practices recommend that systems that are connected to the Internet have a minimal number of ports exposed.

Affected Softwares

- Windows 7 for 32-bit Systems 
- Windows 7 for 32-bit Systems SP1
- Windows 7 for x64-based Systems
- Windows 7 for x64-based Systems SP1
- Windows Server 2008 R2 for x64-based Systems
- Windows Server 2008 R2 for x64-based Systems SP1
- Windows Server 2008 R2 for Itanium-based Systems
- Windows Server 2008 R2 for Itanium-based Systems SP1 

- Reference site



[Important]
[MS12-070] Vulnerability in SQL Server Could Allow Elevation of Privilege (2754849)

Vulnerability: KReflected XSS Vulnerability - CVE-2012-2552

This security update resolves a privately reported vulnerability in Microsoft SQL Server on systems running SQL Server Reporting Services (SSRS). The vulnerability is a cross-site-scripting (XSS) vulnerability that could allow elevation of privilege, enabling an attacker to execute arbitrary commands on the SSRS site in the context of the targeted user. An attacker could exploit this vulnerability by sending a specially crafted link to the user and convincing the user to click the link. An attacker could also host a website that contains a webpage designed to exploit the vulnerability. In addition, compromised websites and websites that accept or host user-provided content or advertisements could contain specially crafted content that could exploit this vulnerability.

Affected Softwares

- Microsoft SQL Server 2005 Express Edition with Advanced Services Service Pack 4
- Microsoft SQL Server 2005 for 32-bit Systems SP4
- Microsoft SQL Server 2005 for x64-based Systems SP4
- Microsoft SQL Server 2005 for Itanium-based Systems SP4
- Microsoft SQL Server 2008 for 32-bit Systems SP2
- Microsoft SQL Server 2008 for 32-bit Systems SP3
- Microsoft SQL Server 2008 for x64-based Systems SP2
- Microsoft SQL Server 2008 for x64-based Systems SP3
- Microsoft SQL Server 2008 for Itanium-based Systems SP2
- Microsoft SQL Server 2008 for Itanium-based Systems SP3
- Microsoft SQL Server 2008 R2 for 32-bit Systems SP1
- Microsoft SQL Server 2008 R2 for x64-based Systems SP1
- Microsoft SQL Server 2008 R2 for Itanium-based Systems SP1
- Microsoft SQL Server 2012 for 32-bit Systems
- Microsoft SQL Server 2012 for x64-based Systems

- Reference site