It’s the second Tuesday of the month and for us in information technology that always means the same thing… It’s Microsoft Patch Tuesday. This month Microsoft has published 4 patches (3 for the Microsoft Windows operating systems, and one for Active Directory)
Here is a list of the four security patches in order of severity:
Bulletin ID: MS11-083
Vulnerability in TCP/IP Could Allow Remote Code Execution
This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends a continuous flow of specially crafted UDP packets to a closed port on a target system.
Bulletin ID: MS11-085
Vulnerability in Windows Mail and Windows Meeting Space Could Allow Remote Code Execution
This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a legitimate file (such as an .eml or .wcinv file) that is located in the same network directory as a specially crafted dynamic link library (DLL) file. Then, while opening the legitimate file, Windows Mail or Windows Meeting Space could attempt to load the DLL file and execute any code it contained. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a legitimate file (such as an .eml or .wcinv file) from this location that is then loaded by a vulnerable application.
Bulletin ID: MS11-086
Vulnerability in Active Directory Could Allow Elevation of Privilege (2630837)
This security update resolves a privately reported vulnerability in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS). The vulnerability could allow elevation of privilege if Active Directory is configured to use LDAP over SSL (LDAPS) and an attacker acquires a revoked certificate that is associated with a valid domain account and then uses that revoked certificate to authenticate to the Active Directory domain. By default, Active Directory is not configured to use LDAP over SSL.
Bulletin ID: MS11-084
Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service
This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a user opens a specially crafted TrueType font file as an e-mail attachment or navigates to a network share or WebDAV location containing a specially crafted TrueType font file. For an attack to be successful, a user must visit the untrusted remote file system location or WebDAV share containing the specially crafted TrueType font file, or open the file as an e-mail attachment. In all cases, however, an attacker would have no way to force users to perform these actions. Instead, an attacker would have to persuade users to do so, typically by getting them to click a link in an e-mail message or Instant Messenger message.
About Advanced Network Consulting:
For Southern California businesses in Los Angeles and Orange County in need of network support, Advanced Network Consulting offers same day service, scheduled maintenance appointments, and emergency calls.
As an Advanced Network Consulting client, your company’s network security and reliability is our top priority. ANC performs routine maintenance, software updates, hardware installation and upgrades as well as system upgrades as part of your network security. ANC specializes in Microsoft Windows based solutions, Windows 2008 R2 servers, Active Directory, Microsoft Exchange Servers, SQL, Terminal Server as well as Windows 7 desktops to leverage the tight integration and security built into the platform.
Advanced Network Consulting has been servicing clients throughout Southern California for nearly 20 years. The Advanced Network Consulting office, strategically located in La Mirada to serve Southeast LA County and North Orange County allows ANC to provide same day appointments, scheduled maintenance and remote access appointments, phone support, and emergency calls are available 7 days a week.
For a complimentary one hour evaluation, one of our techs will meet at your office to assess your security and network needs.