Microsoft Security Bulletin Summary for december 14 2010

Microsoft Security Bulletin Summary for december 14 2010

Microsoft Security Bulletin Summary for december 14 2010
Published: december 14 2010

Note: There may be latency issues due to replication, if the page does not display keep refreshing


Note: http://www.microsoft.com/technet/security and http://www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the Microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.


Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/bulletin/ms10-dec.mspx

Critical (2)
Microsoft Security Bulletin MS10-090
Cumulative Security Update for Internet Explorer (2416400)
http://www.microsoft.com/technet/security/bulletin/ms10-090.mspx

Microsoft Security Bulletin MS10-091
Vulnerabilities in the OpenType Font (OTF) Driver Could Allow Remote Code Execution (2296199)
http://www.microsoft.com/technet/security/bulletin/ms10-091.mspx



Important (14)
Microsoft Security Bulletin MS10-092
Vulnerability in Task Scheduler Could Allow Elevation of Privilege (2305420)
http://www.microsoft.com/technet/security/bulletin/ms10-092.mspx

Microsoft Security Bulletin MS10-093
Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (2424434)
http://www.microsoft.com/technet/security/bulletin/ms10-093.mspx



Microsoft Security Bulletin MS10-094
Vulnerability in Windows Media Encoder Could Allow Remote Code Execution (2447961)
http://www.microsoft.com/technet/security/bulletin/ms10-094.mspx

Microsoft Security Bulletin MS10-095
Vulnerability in Microsoft Windows Could Allow Remote Code Execution (2385678)
http://www.microsoft.com/technet/security/bulletin/ms10-095.mspx

Microsoft Security Bulletin MS10-096
Vulnerability in Windows Address Book Could Allow Remote Code Execution (2423089)
http://www.microsoft.com/technet/security/bulletin/ms10-096.mspx

Microsoft Security Bulletin MS10-097
Insecure Library Loading in Internet Connection Signup Wizard Could Allow Remote Code Execution (2443105)
http://www.microsoft.com/technet/security/bulletin/ms10-097.mspx

Microsoft Security Bulletin MS10-098
Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (2436673)
http://www.microsoft.com/technet/security/bulletin/ms10-098.mspx

Microsoft Security Bulletin MS10-099
Vulnerability in Routing and Remote Access Could Allow Elevation of Privilege (2440591)
http://www.microsoft.com/technet/security/bulletin/ms10-099.mspx

Microsoft Security Bulletin MS10-100
Vulnerability in Consent User Interface Could Allow Elevation of Privilege (2442962)
http://www.microsoft.com/technet/security/bulletin/ms10-100.mspx

Microsoft Security Bulletin MS10-101
Vulnerability in Windows Netlogon Service Could Allow Denial of Service (2207559)
http://www.microsoft.com/technet/security/bulletin/ms10-101.mspx

Microsoft Security Bulletin MS10-102
Vulnerability in Hyper-V Could Allow Denial of Service (2345316)
http://www.microsoft.com/technet/security/bulletin/ms10-102.mspx

Microsoft Security Bulletin MS10-103
Vulnerabilities in Microsoft Publisher Could Allow Remote Code Execution (2292970)
http://www.microsoft.com/technet/security/bulletin/ms10-103.mspx

Microsoft Security Bulletin MS10-104
Vulnerability in Microsoft SharePoint Could Allow Remote Code Execution (2455005)
http://www.microsoft.com/technet/security/bulletin/ms10-104.mspx

Microsoft Security Bulletin MS10-105
Vulnerabilities in Microsoft Office Graphics Filters Could Allow for Remote Code Execution (968095)
http://www.microsoft.com/technet/security/bulletin/ms10-105.mspx

Moderate (1)


Microsoft Security Bulletin MS10-106
Vulnerability in Microsoft Exchange Server Could Allow Denial of Service (2407132)
http://www.microsoft.com/technet/security/bulletin/ms10-106.mspx




Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

 

On Tuesday, December 14, we released an update (KB2412171) for Microsoft Outlook 2007.

http://blogs.msdn.com/b/outlook/arc...-with-the-recent-update-for-outlook-2007.aspx