12345

12/14/2011

Microsoft Security Bulletin Summary for December 2011

1. Introduction

Microsoft(MS)'s regular security updates were released for December 2011.
Users who use MS OS strongly recommended update to be safe from Vulnerability in Windows Kernel-Mode Drivers, Microsoft Office IME (Chinese), Microsoft Publisher, Windows Media, OLE, Microsoft PowerPoint, Active Directory, Microsoft Excel, and Windows Client/Server Run-time Subsystem.



2. Update details

[Critical]
[MS11-087] Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2639417)

Vulnerability: TrueType Font Parsing Vulnerability - CVE-2011-3402

This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted document or visits a malicious Web page that embeds TrueType font files.

Affected Softwares

- Windows XP SP3
- Windows XP Professional x64 Edition SP2
- Windows Server 2003 SP2
- Windows Server 2003 x64 Edition SP2
- Windows Server 2003 SP2 Itanium-based
- Windows Vista SP2
- Windows Vista x64 Edition SP2
- Windows Server 2008 for 32bit and Windows 2008 for 32bit SP2
- Windows Server 2008 for x64-based and Windows Server 2008 for x64-based SP2
- Windows Server 2008 for Itanium-based and Windows Server 2008 for Itanium SP2
- Windows 7 for 32-bit and Windows 7 for 32bit SP1
- Windows 7 for x64-based and Windows 7 for x64-based SP1
- Windows Server 2008 R2 for x64-based and Windows Server R2 for x64-based SP1
- Windows Server 2008 R2 for Itanium-based and Windows Server 2008 R2 for Itanium SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-087



[Important]
[MS11-088] Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege (2652016)

Vulnerability: Pinyin IME Elevation Vulnerability - CVE-2011-2010

This security update resolves a privately reported vulnerability in Microsoft Office IME (Chinese). The vulnerability could allow elevation of privilege if a logged-on user performed specific actions on a system where an affected version of the Microsoft Pinyin (MSPY) Input Method Editor (IME) for Simplified Chinese is installed. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights. Only implementations of Microsoft Pinyin IME 2010 are affected by this vulnerability. Other versions of Simplified Chinese IME and other implementations of IME are not affected.

Affected Softwares

- Microsoft Office 2010 and Microsoft Office 2010 32bit SP1
- Microsoft Office 2010 and Microsoft Office 2010 64bit SP1
- Microsoft Office Pinyin SimpleFast Style 2010 and Microsoft Office Pinyin New Experience Style 2010 32bit
- Microsoft Office Pinyin SimpleFast Style 2010 and Microsoft Office Pinyin New Experience Style 2010 64bit

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-088



[Important]
[MS11-089] Vulnerability in Microsoft Office Could Allow Remote Code Execution (2590602)

Vulnerability: Word Use After Free Vulnerability - CVE-2011-1983

This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Word file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Affected Softwares

- Microsoft Office 2007 Service Pack 2 and Microsoft Office 2007 SP3
- Microsoft Office 2010 and Microsoft Office 2010 32bit SP1
- Microsoft Office 2010 and Microsoft Office 2010 64bit SP1
- Microsoft Office for Mac 2011

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-089



[Critical]
[MS11-090] Cumulative Security Update of ActiveX Kill Bits (2618451)

Vulnerability: Microsoft Time Remote Code Execution Vulnerability - CVE-2011-3397
           Third-Party Kill Bits         
            
This security update resolves a privately reported vulnerability in Microsoft software. The vulnerability could allow remote code execution if a user views a specially crafted Web page that uses a specific binary behavior in Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This update also includes kill bits for four third-party ActiveX controls.

Affected Softwares

- Windows XP SP3
- Windows XP Professional x64 Edition SP2
- Windows Server 2003 SP2
- Windows Server 2003 x64 Edition SP2
- Windows Server 2003 SP2 Itanium-based
- Windows Vista SP2
- Windows Vista x64 Edition SP2
- Windows Server 2008 for 32bit and Windows 2008 for 32bit SP2
- Windows Server 2008 for x64-based and Windows Server 2008 for x64-based SP2
- Windows Server 2008 for Itanium-based and Windows Server 2008 for Itanium SP2
- Windows 7 for 32-bit and Windows 7 for 32bit SP1
- Windows 7 for x64-based and Windows 7 for x64-based SP1
- Windows Server 2008 R2 for x64-based and Windows Server R2 for x64-based SP1
- Windows Server 2008 R2 for Itanium-based and Windows Server 2008 R2 for Itanium SP1

- Reference site

 http://technet.microsoft.com/en-us/security/bulletin/MS11-090



[Important]
[MS11-091] Vulnerabilities in Microsoft Publisher Could Allow Remote Code Execution (2607702)

Vulnerability: Publisher Function Pointer Overwrite Vulnerability - CVE-2011-1508
           Publisher Out-of-bounds Array Index Vulnerablility - CVE-2011-3410
           Publisher Invalid Pointer Vulnerability - CVE-2011-3411
           Publisher Memory Corruption Vulnerability - CVE-2011-3412

This security update resolves one publicly disclosed vulnerability and three privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens a specially crafted Publisher file. An attacker who successfully exploited any of these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Affected Softwares

- Microsoft Office 2003 Service Pack 3
- Microsoft Office 2007 Service Pack 2
- Microsoft Office 2017 Service Pack 3

- Reference site

 http://technet.microsoft.com/en-us/security/bulletin/MS11-091



[Critical]
[MS11-092] Vulnerability in Windows Media Could Allow Remote Code Execution (2648048)

Vulnerability: Windows Media Player DVR-MS Memory Corruption Vulnerability - CVE-2011-3401

This security update resolves a privately reported vulnerability in Windows Media Player and Windows Media Center. The vulnerability could allow remote code execution if a user opens a specially crafted Microsoft Digital Video Recording (.dvr-ms) file. In all cases, a user cannot be forced to open the file; for an attack to be successful, a user must be convinced to do so.

Affected Softwares

- Windows XP Media Center Edition 2005 SP3
- Windows XP SP3
- Windows XP Professional x64 Edition SP2
- Windows Vista SP2
- Windows Vista x64 Edition SP2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems SP1
- Windows 7 for x64-based Systems and Windows 7 for x64-based Systems SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-092



[Important]
[MS11-093] Vulnerability in OLE Could Allow Remote Code Execution (2624667)

Vulnerability: OLE Property Vulnerability - CVE-2011-3400

This security update resolves a privately reported vulnerability in all supported editions of Windows XP and Windows Server 2003. This security update is rated Important for all supported editions of Windows XP and Windows Server 2003. Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 are not affected by the vulnerability. For more information, see the subsection, Affected and Non-Affected Software, in this section.
The vulnerability could allow remote code execution if a user opens a file that contains a specially crafted OLE object. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Affected Softwares

- Windows XP SP3
- Windows XP Professional x64 Edition SP2
- Windows Server 2003 SP2
- Windows Server 2003 x64 Edition SP2
- Windows Server 2003 SP2 Itanium-based

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-093



[Important]
[MS11-094] Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution (2639142)

Vulnerability: PowerPoint Insecure Library Loading Vulnerability - CVE-2011-3396
           OfficeArt Shape RCE Vulnerability - CVE-2011-3413

This security update resolves two privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user opens a specially crafted PowerPoint file. An attacker who successfully exploited either of the vulnerabilities could take complete control of an affected system. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Affected Softwares

- Microsoft Office 2007 Service Pack 2
- Microsoft Office 2010 32bit
- Microsoft Office 2010 64bit

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-094



[Important]
[MS11-095] Vulnerability in Active Directory Could Allow Remote Code Execution (2640045)

Vulnerability: Active Directory Buffer Overflow Vulnerability - CVE-2011-3406

This security update resolves a privately reported vulnerability in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS). The vulnerability could allow remote code execution if an attacker logs on to an Active Directory domain and runs a specially crafted application. To exploit this vulnerability, an attacker would first need to acquire credentials to log on to an Active Directory domain.

Affected Softwares

- Windows XP SP3
- Windows XP Professional x64 Edition SP2
- Windows Server 2003 SP2
- Windows Server 2003 x64 Edition SP2
- Windows Server 2003 SP2 Itanium-based
- Windows Vista SP2
- Windows Vista x64 Edition SP2
- Windows Server 2008 for 32bit and Windows 2008 for 32bit SP2
- Windows Server 2008 for x64-based and Windows Server 2008 for x64-based SP2
- Windows Server 2008 for Itanium-based and Windows Server 2008 for Itanium SP2
- Windows 7 for 32-bit and Windows 7 for 32bit SP1
- Windows 7 for x64-based and Windows 7 for x64-based SP1
- Windows Server 2008 R2 for x64-based and Windows Server R2 for x64-based SP1
- Windows Server 2008 R2 for Itanium-based and Windows Server 2008 R2 for Itanium SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-095



[Important]
[MS11-096] Vulnerability in Microsoft Excel Could Allow Remote Code Execution (2640241)

Vulnerability: Record Memory Corruption Vulnerability - CVE-2011-3403

This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow remote code execution if a user opens a specially crafted Excel file. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-on user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Installing and configuring Office File Validation (OFV) to prevent the opening of suspicious files blocks the attack vectors for exploiting the vulnerabilities described in CVE-2011-3403.

Affected Softwares

- Microsoft Office 2003 Service Pack 3
- Microsoft Office 2004 for Mac

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-096



[Important]
[MS11-097] Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2620712)

Vulnerability: CSRSS Local Privilege Elevation Vulnerability - CVE-2011-3408

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application designed to send a device event message to a higher-integrity process. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.

Affected Softwares

- Windows XP SP3
- Windows XP Professional x64 Edition SP2
- Windows Server 2003 SP2
- Windows Server 2003 x64 Edition SP2
- Windows Server 2003 SP2 Itanium-based
- Windows Vista SP2
- Windows Vista x64 Edition SP2
- Windows Server 2008 for 32bit and Windows 2008 for 32bit SP2
- Windows Server 2008 for x64-based and Windows Server 2008 for x64-based SP2
- Windows Server 2008 for Itanium-based and Windows Server 2008 for Itanium SP2
- Windows 7 for 32-bit and Windows 7 for 32bit SP1
- Windows 7 for x64-based and Windows 7 for x64-based SP1
- Windows Server 2008 R2 for x64-based and Windows Server R2 for x64-based SP1
- Windows Server 2008 R2 for Itanium-based and Windows Server 2008 R2 for Itanium SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-097



[Important]
[MS11-098] Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2633171)

Vulnerability: Windows Kernel Exception Handler Vulnerability - CVE-2011-2018

This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application designed to exploit the vulnerability. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.

Affected Softwares

- Windows XP SP3
- Windows Server 2003 SP2
- Windows Vista SP2
- Windows Server 2008 for 32-bit Systems SP2
- Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-098



[Important]
[MS11-099] Cumulative Security Update for Internet Explorer (2618444)

Vulnerability: XSS Filter Information Disclosure Vulnerability - CVE-2011-1992
           Internet Explorer Insecure Library Loading Vulnerability - CVE-2011-2019
           Content-Disposition Information Disclosure Vulnerability - CVE-2011-3404

This security update resolves three privately reported vulnerabilities in Internet Explorer. The most severe vulnerability could allow remote code execution if a user opens a legitimate HyperText Markup Language (HTML) file that is located in the same directory as a specially crafted dynamic link library (DLL) file.

Affected Softwares

- Internet Explorer 6 with Windows XP Service Pack 3
- Internet Explorer 6 with Windows XP Professional x64 Edition SP2
- Internet Explorer 6 with Windows Server 2003 SP2
- Internet Explorer 6 with Windows Server 2003 x64 Edition SP2
- Internet Explorer 6 with Windows Server 2003 with SP2 for Itanium-based Systems
- Internet Explorer 7 with Windows XP SP3
- Internet Explorer 7 with Windows XP Professional x64 Edition SP2
- Internet Explorer 7 with Windows Server 2003 SP2
- Internet Explorer 7 with Windows Server 2003 x64 Edition SP2
- Internet Explorer 7 with Windows Server 2003 with SP2 for Itanium-based Systems
- Internet Explorer 7 whit Windows Vista SP2
- Internet Explorer 7 with Windows Vista x64 Edition SP2
- Internet Explorer 7 with Windows Server 2008 for 32-bit Systems SP2
- Internet Explorer 7 with Windows Server 2008 for x64-based Systems SP2
- Internet Explorer 7 with Windows Server 2008 for Itanium-based Systems SP2
- Internet Explorer 8 with Windows XP SP3
- Internet Explorer 8 with Windows XP Professional x64 Edition SP2
- Internet Explorer 8 with Windows Server 2003 SP2
- Internet Explorer 8 with Windows Server 2003 x64 Edition SP2
- Internet Explorer 8 with Windows 7 for 32-bit and Windows 7 for 32-bit SP1
- Internet Explorer 8 with Windows 7 for x64-based and Windows 7 for x64-based SP1
- Internet Explorer 8 with Windows Vista SP2
- Internet Explorer 8 with Windows Vista x64 Edition SP2
- Internet Explorer 8 with Windows Server 2008 for 32-bit Systems SP2
- Internet Explorer 8 with Windows Server 2008 for 64-bit Systems SP2
- Internet Explorer 8 with Windows 2008 R2 for x64-based Systems SP1
- Internet Explorer 8 with Windows 2008 R2 for Itanium-based Systems SP1
- Internet Explorer 9 with Windows Vista SP2
- Internet Explorer 9 with Windows Vista x64 Edition SP2
- Internet Explorer 9 with Windows Server 2008 for 32-bit SP2
- Internet Explorer 9 with Windows Server 2008 for 64-bit SP2
- Internet Explorer 9 with Windows 7 for 32-bit and Windows 7 for 32-bit SP1
- Internet Explorer 9 with Windows 7 for x64-based and Windows 7 for x64-based SP1
- Internet Explorer 9 with Windows Server 2008 R2 for 64-bit and Windows Server 2008 R2 for 64-bit SP1

- Reference site

http://technet.microsoft.com/en-us/security/bulletin/MS11-099

No comments:

Post a Comment