Home > news > Number reached another all-time high in 2010 December Microsoft patch patch has broken the 100 mark

Number reached another all-time high in 2010 December Microsoft patch patch has broken the 100 mark

September 17th, 2011 Leave a comment Go to comments

Early this morning, Microsoft World published a December security update, launch 17 patch that fixes a Windows operating system, IE browser, 40 existing Office software and other security vulnerabilities, including Stuxnet “Super factory” viruses exploit a vulnerability of last has not been fixed. This means, “Super factory” dangers of viruses on a global scale is diminishing day by day.

According to Microsoft security bulletin, 17 patches this month, has 2 as a “high risk” level, respectively, for repairing Windows OpenType font driver remote code execution vulnerability, as well as CSS 0day IE browser vulnerability exposure in early November. Among them, IE browser CSS 0day vulnerability has been partly hanging horse pages use, affect IE6, IE7, IE8, and so the mainstream version. 360 Safety Center monitoring data indicate that a malicious Web page: online active last week nearly 30,000 to exploit this vulnerability to spread Trojans hung horse Web page, Internet users should lay the patch immune vulnerability to hazards. In addition, Microsoft also released a 14 “important” patch levels, as well as 1 “medium” level of patch.

Special concern is that the Microsoft fix “Windows scheduled task local privilege escalation vulnerability” (notice number: MS10-092), is being “Super factory” viruses exploit the last Windows 0day vulnerability. Security experts say, “Super factory” is a typical industrial espionage program, attack Iran nuclear power plant in the world is known. It used a total of 5 Microsoft vulnerability, of which 4 have been before this Microsoft fix, as the 5th vulnerability fix, wreak havoc worldwide for over half a year Stuxnet “Super factory” hazards of viruses will be solved.

It is reported that Microsoft announced a total of 106 security patches for the year 2010, the number of peak high made history. Even more amazing is that August, October and December of this year, Microsoft’s monthly patch release number one record, which is rarely seen in the security industry. In the last 10 years, the service pack number second only to the year 2010 for the years 2006 and 2008, only 78 patch.

Special concern is that the Microsoft fix “Windows scheduled task local privilege escalation vulnerability” (notice number: MS10-092), is being “Super factory” viruses exploit the last Windows 0day vulnerability. Security experts say, “Super factory” is a typical industrial espionage program, attack Iran nuclear power plant in the world is known. It used a total of 5 Microsoft vulnerability, of which 4 have been before this Microsoft fix, as the 5th vulnerability fix, wreak havoc worldwide for over half a year Stuxnet “Super factory” hazards of viruses will be solved.

It is reported that Microsoft announced a total of 106 security patches for the year 2010, the number of peak high made history. Even more amazing is that August, October and December of this year, Microsoft’s monthly patch release number one record, which is rarely seen in the security industry. In the last 10 years, the service pack number second only to the year 2010 for the years 2006 and 2008, only 78 patch.

Domestic has machine volume maximum of security software manufacturer 360 company Shi Xiaohong Dr describes said: “2010 Microsoft notice of security vulnerability number over in previous years, is never appears shock wave, and shocks wave worm mass outbreak of situation, this description playing patch service is protection Internet security of Foundation work; while, domestic security software also in constantly perfect active defense, and more layer protection system and cloud security function, can in Microsoft official patch publishing Qian effective to prevention 0day vulnerability attack, Large area to contain a Trojan virus outbreak spreading. ”

Accessed: December 2010 Microsoft Security Bulletin (including downloads)

Report: Microsoft’s December patch information

Cumulative security update 1, Microsoft Internet Explorer browser (IE browser CSS 0day vulnerability)
MS10-090 level: high risk
Description: 7 security vulnerability Microsoft Internet Explorer browser, most of which may lead the user to browse the attacker carefully constructed a malicious Web page, the attacker’s malicious code is executed, to run a malicious program or stealing users ‘ privacy. This security bulletin fixes online exploit: CVE-2010-3962.
Effect systems: Windows XP/2003/Vista/2008/Windows 7

2, drive Windows OpenType font remote code execution vulnerability
MS10-091 level: high risk
Description: Windows OpenType font drivers 3 remote code execution vulnerability is present, when a user browses the attacker carefully constructed when the network share containing the malicious font file, an attacker can run malicious code on the user’s system, and take control of the entire system, or to install malicious programs steal user data.
Effect systems: Windows XP/2003/Vista/2008/Windows 7

3, Windows scheduled task local privilege escalation vulnerability
MS10-092 level: important
Description: a privilege escalation vulnerability Windows scheduled tasks service, an attacker can run malicious code system has its own permissions from low privilege escalation to system privileges that lead to complete control system.
Effect systems: Windows Vista/2008/Windows 7
Note: this vulnerability as “Super factory” viruses exploit a vulnerability of last has not been fixed. At this point, the “Super factory” power of the virus will gradually decline.

4, Windows Movie Maker DLL-loading remote code execution vulnerability
MS10-093 level: important
Description: Windows Movie Maker pre-loaded a DLL remote code execution vulnerability is present, when a user browses a malicious WebDav share or double-click a of an attacker to take control in the WindowsMovie Maker files on a WebDav share, can lead to malicious DLL code is executed, or install malicious programs steal user privacy.
Effect systems: Windows Vista

5, Windows Media Encoder DLL-loading remote code execution vulnerability
MS10-094 level: important
Description: the user browsing a malicious WebDav share or double-click on a WebDav share in an attacker’s control malicious. PRX (Windows Media Profile) files, can cause a malicious DLL code is executed, or install malicious programs steal user privacy.
Effect systems: Windows XP/2003/Vista/2008

6, Windows BranchCache DLL-loading remote code execution vulnerability
MS10-095 level: important
Description: Windows BranchCache pre-loaded a DLL remote code execution vulnerability is present, when a user browses a malicious WebDav share or double-click on a WebDav share in an attacker’s control. eml/.RSS or. WPost file, can lead to malicious DLL code is executed, or install malicious programs steal user privacy.
Effect systems: Windows 2008/Windows 7

7, the Windows address book DLL-loading remote code execution vulnerability
MS10-096 level: important
Description: the Windows address book (Windows Address Book) pre-loaded a DLL remote code execution vulnerability is present, user browsing a malicious WebDav share or double-click a of an attacker to take control in the address book files on a WebDav share, can lead to malicious DLL code is executed, or install malicious programs steal user privacy.
Effect systems: Windows XP/2003/Vista/2008/Windows 7

8, the network connection Registration Wizard DLL-loading remote code execution vulnerability
MS10-097 level: important
Description: network connection registration procedures present a DLL load vulnerability when a user browses a malicious WebDav share or double-click on a WebDav share in an attacker’s control files, can cause a malicious DLL code is executed, or install malicious programs steal user privacy.
Effect systems: Windows XP/2003

9, driven Win32k.sys Windows kernel local privilege escalation vulnerability
MS10-098 level: important
Description: the system kernel driver 6 security vulnerabilities Win32k.sys, an attacker can run malicious code system has its own permissions from low privilege escalation to system privileges that lead to complete control system.
Effect systems: Windows XP/2003/Vista/2008/Windows 7

10 NDProxy kernel, Windows Routing and remote access components buffer overflow vulnerability
MS10-099 level: important
Description: the system kernel driver NDProxy.sys a security vulnerability exists, an attacker can run malicious code system has its own permissions from low privilege escalation to system privileges that lead to complete control system.
Effect systems: Windows XP/2003

11, Windows analog bypass UAC Consent UI interface vulnerability
MS10-100 level: important
Description: a simulated attack vulnerability Windows Consent UI, an attacker can run malicious code system has its own permissions by a low-privileged account to upgrade to workstation account, further control system.
Effect systems: Windows Vista/2008/Windows 7

12, Windows Netlogon service remote denial of service vulnerability
MS10-101 level: important
Description: a denial of service vulnerability Windows NetLogon component, has an attacker with administrator permissions on a workstation that is joined to a domain on the network send a malicious RPC request to the Windows Server as the domain controller, can cause blue screen crashes the target Windows Server.
Effect systems: Windows two thousand three-two thousand eighths

13, hyper-v virtualization bus denial of service vulnerability
MS10-102 level: important
Description: virtual bus components for Microsoft hyper-v virtualization technology a denial of service vulnerability exists, running on the hyper-v virtual machine Guest system program of the attacker, you can allow virtual machine virtualization bus outside of the host operating system blue screen crash.
Affect system: Windows 2008

14, Microsoft Publisher remote code execution vulnerability
MS10-103 level: important
Description: 5 security vulnerability Microsoft Publisher, when a user opens a malicious. pub files can allow an attacker to run malicious code on a user’s machine, install malicious programs or steal user privacy.
Affected software: Office XP/2003/2007/2010

15, Microsoft Sharepoint Server code execution vulnerability
MS10-104 level: important
Description: Microsoft SharePoint Server there is a security vulnerability, an attacker may be able to upload malicious SharePoint Server executable program and may make it run on a SharePoint Server with Guest privileges.
Affected software: Microsoft Office SharePoint Server 2007

16, convert Microsoft Office image remote code execution vulnerability
MS10-105 level: important
Description: Windows Office convert multiple image remote code execution vulnerability exists when the user opens the attacker carefully constructed containing the image to convert Office documents, you can allow an attacker to run malicious code on a user’s machine, install malicious programs or steal user privacy.
Affected software: OFFICE XP/2003/2007/2010/Microsoft Office Converter Pack/Microsoft Works 9

17, the Exchange Server remote denial of service vulnerability
MS10-106 level: medium
Description: Microsoft Exchange Server, there is a denial of service vulnerability, an attacker could send a malicious network message, cause Exchange Server to enter an infinite loop denial of service condition.
Affected software: Microsoft Exchange Server 2007

Categories: news Tags:
  1. No comments yet.
  1. No trackbacks yet.