Security Watch

February 5th, 2010

 
Vulnerability in IE Could Allow Information Disclosure (February 03, 2010)
Microsoft is investigating a publicly reported vulnerability in Internet Explorer for customers running Windows XP or who have disabled Internet Explorer Protected Mode. They are not aware of attacks that try to use the reported vulnerability or of customer impact at this time. Microsoft is currently working in a security update.
No fix has been released yet! As a workaround, you can Lockdown Network Protocol:
FixTool to Lockdown Network Protocol
 
 
Vulnerability in Windows Kernel Could Allow Elevation of Privilege (January 20, 2010)
Microsoft is investigating new public reports of a vulnerability in the Windows kernel. They are not aware of attacks that try to use the reported vulnerability or of customer impact at this time. Microsoft may be providing a security update through the monthly release process or providing an out-of-band security update.
No fix has been released yet! Refer to:
Microsoft Security Advisory (979682)
 
 
0-Day Vulnerability in Microsoft Internet Explorer (January 20, 2010)
Microsoft is investigating a reported vulnerability in Microsoft Internet Explorer v5, v6, v7, and v8. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. When using Internet Explorer, code execution is remote and may not require any user intervention.
To fix the issue, please update your system as soon as possible! Refer to:
Microsoft Security Bulletin MS10-002 – Critical
 
 
Vulnerability in Microsoft Office Web Components Control (July 13, 2009)
Microsoft is investigating a privately reported vulnerability in Microsoft Office Web Components. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. When using Internet Explorer, code execution is remote and may not require any user intervention.
To fix the issue, please download the Registry FixTool from the link below:
Microsoft Security Advisory (973472) – Registry FixTool
 
 
Vulnerability in Microsoft Video ActiveX Control (July 06, 2009)
Microsoft is investigating a privately reported vulnerability in Microsoft Office Web Components. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. When using Internet Explorer, code execution is remote and may not require any user intervention.
To fix the issue, please download the FixTool from the link below:
Microsoft Security Advisory (972890) – FixTool
 

Comments are closed.