Microsoft Patch Disclosure Summary - October 2010

Monday, October 25, 2010

Bozidar Spirovski

E973b16363b3de77b360563237df7e32

October 2010 brings a HUGE update set. Microsoft released 16 patches which repair a total of 51 vulnerabilities:

  • 10 patches address Remote Code Execution vulnerabilities,
  • 3 patches address Elevation of Privilege vulnerabilities
  • 1 patch addresses an Information Disclosure vulnerability
  • 1 patch addresses a Denial of Service condition
  • 1 patch addresses a information Tampering scenario

Critical

MS10-071 - Cumulative Security Update for Internet Explorer (2360131)

MS10-075 - Vulnerability in Media Player Network Sharing Service Could Allow Remote Code Execution (2281679)

MS10-076 - Vulnerability in the Embedded OpenType Font Engine Could Allow Remote Code Execution (982132)

MS10-077 - Vulnerability in .NET Framework Could Allow Remote Code Execution (2160841)

Important

MS10-072 - Vulnerabilities in SafeHTML Could Allow Information Disclosure (2412048)

MS10-073 - Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (981957)

MS10-078 - Vulnerabilities in the OpenType Font (OTF) Format Driver Could Allow Elevation of Privilege (2279986)

MS10-079 - Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2293194)

MS10-080 - Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2293211)

MS10-081 - Vulnerability in Windows Common Control Library Could Allow Remote Code Execution (2296011)

MS10-082 - Vulnerability in Windows Media Player Could Allow Remote Code Execution (2378111)

MS10-083 - Vulnerability in COM Validation in Windows Shell and WordPad Could Allow Remote Code Execution (2405882)

MS10-084 - Vulnerability in Windows Local Procedure Call Could Cause Elevation of Privilege (2360937)

MS10-085 - Vulnerability in SChannel Could Allow Denial of Service (2207566)

Moderate

MS10-074 - Vulnerability in Microsoft Foundation Classes Could Allow Remote Code Execution (2387149)

MS10-086 - Vulnerability in Windows Shared Cluster Disks Could Allow Tampering (2294255)

Cross-posted from ShortInfosec

Possibly Related Articles:
9625
Operating Systems
Microsoft Patching
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.