Wednesday, April 11, 2012

MC2 Post 1238 What DID the Big Patch Tuesday Really Patch







Patch Tuesday Closes Critical Windows, Office and IE Holes


From:  http://www.h-online.com



As expected, on Tuesday 10 April Microsoft released six security bulletins that address a total of 11 vulnerabilities in its products, eight of which are considered to be critical. Four of the bulletins address critical holes in all supported versions of Windows, Internet Explorer (IE), the .NET Framework, Office and SQL Server, as well as Microsoft Server and Developer tools. All of these bugs could be exploited by attackers to remotely inject and execute malicious code on a victim's system via a specially crafted file.







See also:

    Microsoft Security Bulletin Summary for April 2012, security advisory from Microsoft.

Link:  http://technet.microsoft.com/en-us/security/bulletin/ms12-apr



===================================
Adobe Fixes Critical Vulnerabilities in Reader 
and Acrobat
===================================





Adobe has released versions 10.1.3 and 9.5.1 of its Acrobat and Reader products to address high priority security vulnerabilities that could be used by an attacker to cause the application to crash and potentially take control of an affected system. These include memory corruption in the JavaScript API and JavaScript handling, an integer overflow in the True Type Font (TTF) handling and a security bypass via the Adobe Reader installer, all of which could lead to arbitrary code execution.




                                  TinyURL:  http://tinyurl.com/7un8zfl


See also:

    Security updates available for Adobe Reader and Acrobat, security advisory from Adobe.

Link:  http://www.adobe.com/support/security/bulletins/apsb12-08.html

=================================================
=================================================


=============
=============


MC2 LOGO

=============
=============

No comments: