October Patches: 16 updates addressing 49 vulnerabilities affecting Windows, IE, Office, and the .NETLooking at the number and type of updates this month, we have a fairly standard number of bulletins affecting products like Windows and Office. This month we also have a few bulletins originating from product groups that we don't see on a regular basis. For example, SharePoint, the Microsoft Foundation Class (MFC) Library (which is an application framework for programming in Windows), and the .NET Framework. It's worth noting that only six of the 49 total vulnerabilities being addressed have a critical rating. Further, three of the bulletins account for 34 of the total vulnerabilities. MS10-071 (Critical) Cumulative Security Update for Internet Explorer. Note: Internet Explorer 8 is only affected by one RCE listed and IE 9 beta is not affected. MS10-076 (Critical) Vulnerability in the Embedded OpenType Font Engine Could Allow Remote Code Execution. MS10-077 (Critical) Vulnerability in .NET Framework Could Allow Remote Code Execution. Note: this affects .NET Framework 4.0. MS10-075 (Critical) Vulnerability in Media Player Network Sharing Service Could Allow Remote Code Execution. Below is the aggregate risk and impact for October and the overall deployment priority information to further aid in prioritization: October 2010 Security Bulletin Release - The Microsoft Security Response Center (MSRC) - Site Ho
Send via e-mail | Submit to Digg | Add to Live Favorites
http://feeds.bink.nu/~r/binkdotnu/~3/fAd33R0Alxc/october-patches-16-updates-addressing-49-vulnerabilities-affecting-windows-ie-office-and-the-net.aspx
