Microsoft Security Bulletin Summary for September 14, 2010

Microsoft Security Bulletin Summary for September 14, 2010

Microsoft Security Bulletin Summary for September 14 2010
Published: September 14 2010

Note: There may be latency issues due to replication, if the page does not display keep refreshing


Note: http://www.microsoft.com/technet/security and http://www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the Microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.


Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:

http://www.microsoft.com/technet/security/bulletin/ms10-sep.mspx

Critical (4)
Microsoft Security Bulletin MS10-061
Vulnerability in Print Spooler Service Could Allow Remote Code Execution (2347290)
http://www.microsoft.com/technet/security/bulletin/ms10-061.mspx


Microsoft Security Bulletin MS10-062
Vulnerability in MPEG-4 Codec Could Allow Remote Code Execution (975558)
http://www.microsoft.com/technet/security/bulletin/ms10-062.mspx


Microsoft Security Bulletin MS10-063
Vulnerability in Unicode Scripts Processor Could Allow Remote Code Execution (2320113)
http://www.microsoft.com/technet/security/bulletin/ms10-063.mspx


Microsoft Security Bulletin MS10-064
Vulnerability in Microsoft Outlook Could Allow Remote Code Execution (2315011)
http://www.microsoft.com/technet/security/bulletin/ms10-064.mspx

Important (5)
Microsoft Security Bulletin MS10-065
Vulnerabilities in Microsoft Internet Information Services (IIS) Could Allow Remote Code Execution (2267960)
http://www.microsoft.com/technet/security/bulletin/ms10-065.mspx


Microsoft Security Bulletin MS10-066
Vulnerability in Remote Procedure Call Could Allow Remote Code Execution (982802)
http://www.microsoft.com/technet/security/bulletin/ms10-066.mspx


Microsoft Security Bulletin MS10-067
Vulnerability in WordPad Text Converters Could Allow Remote Code Execution (2259922)
http://www.microsoft.com/technet/security/bulletin/ms10-067.mspx


Microsoft Security Bulletin MS10-068
Vulnerability in Local Security Authority Subsystem Service Could Allow Elevation of Privilege (983539)
http://www.microsoft.com/technet/security/bulletin/ms10-068.mspx


Microsoft Security Bulletin MS10-069
Vulnerability in Windows Client/Server Runtime Subsystem Could Allow Elevation of Privilege (2121546)
http://www.microsoft.com/technet/security/bulletin/ms10-069.mspx


Moderate (0)



Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

 

MS Out-of-Band Security Bulletin Summary for september 28, 2010

Microsoft Security Bulletin Summary for september 2010
Published: september 28, 2010

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:
http://www.microsoft.com/technet/security/current.aspx

Important (1)
Microsoft Security Bulletin MS10-070 - Important
Vulnerability in ASP.NET Could Allow Information Disclosure (2418042)
Published: September 28, 2010
http://www.microsoft.com/technet/security/bulletin/MS10-070.mspx




The security update is fully tested and ready for release, but will be made available initially only on the Microsoft Download Center. This enables us to get the update out as quickly as possible, allowing administrators with enterprise installations, or end users who want to install this security update manually, the ability to test and update their systems immediately. We strongly encourage these customers to visit the Download Center, download the update, test it in their environment and deploy it as soon as possible.

http://www.microsoft.com/downloads/en/default.aspx