Alert (TA10-222A)
Microsoft Updates for Multiple Vulnerabilities
Systems Affected
- Microsoft Windows
- Microsoft Office
- Internet Explorer
- Microsoft .NET Framework
- Microsoft Silverlight
Overview
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer, Microsoft .NET Framework, and Microsoft Silverlight.
Description
The Microsoft Security Bulletin Summary for August 2010 describes multiple vulnerabilities in Microsoft Windows, Microsoft Office, Internet Explorer, Microsoft .NET framework, and Microsoft Silverlight. Microsoft has released updates to address the vulnerabilities.
One of the bulletins released, MS10-046, addresses a previously identified vulnerability in the Windows Shell that is actively being exploited. This vulnerability was also described in US-CERT Vulnerability Note VU#940193.
Impact
A remote, unauthenticated attacker could execute arbitrary code or cause a vulnerable system or application to crash.
Solution
Apply updates
Microsoft has provided updates
for these vulnerabilities in the Microsoft
Security Bulletin Summary for August 2010. The security bulletin describes
any known issues related to the updates. Administrators are encouraged to note
these issues and test for any potentially adverse effects. Administrators should
consider using an automated update distribution system such as Windows
Server Update Services (WSUS).
References
- Microsoft Security Bulletin Summary for August 2010 - http://www.microsoft.com/technet/security/bulletin/ms10-aug.mspx
- Microsoft Security Bulletin MS10-046 - http://www.microsoft.com/technet/security/bulletin/MS10-046.mspx
- US-CERT Vulnerability Note VU#940193 - http://www.kb.cert.org/vuls/id/940193
- Microsoft Windows Server Update Services - http://technet.microsoft.com/en-us/wsus/default.aspx
Revision History
- August 10, 2010: Initial release
This product is provided subject to this Notification and this Privacy & Use policy.