TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
October 2009 - Microsoft Releases 13 Security Advisories
Risk: Critical
Description:

Microsoft addresses the following vulnerabilities in its October batch of patches:

  • (MS09-050) Vulnerabilities in SMBv2 Could Allow Remote Code Execution (975517)

    Risk Rating: Critical

    This update resolves three reported vulnerabilities in Server Message Block Version 2 (SMBv2) -- one publicly disclosed and two in private. Successful exploitation of the said vulnerabilities could lead to different results, including remote code execution. Read more here.

  • (MS09-051) Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution (975682)

    Risk Rating: Critical

    This update resolves two critical vulnerabilities in Windows Media Player and Windows Media Runtime. Both vulnerabilities allow remote code execution when exploited successfully. Read more here.

  • (MS09-052) Vulnerability in Windows Media Player Could Allow Remote Code Execution (974112)

    Risk Rating: Critical

    This update solves the remote code execution vulnerability in Windows Media Player 6.4. To successfully exploit this vulnerability, an attacker must influence its target to execute or open a specially crafted .ASF file using the said program. Read more here.

  • (MS09-053) Vulnerabilities in FTP Service for Internet Information Services Could Allow Remote Code Execution (975254)

    Risk Rating: Important

    This update addresses vulnerabilities found in FTP Service in Microsoft Internet Information Services (IIS) 5.0, Microsoft Internet Information Services (IIS) 5.1, Microsoft Internet Information Services (IIS) 6.0, and Microsoft Internet Information Services (IIS) 7.0. The said vulnerabilities allow remote code execution on affected systems FTP Service on IIS 5.0, or even execute denial of service (DoS) attacks on systems running FTP Service on IIS 5.0, IIS 5.1, IIS 6.0 or IIS 7.0. Read more here.

  • (MS09-054) Cumulative Security Update for Internet Explorer (974455)

    Risk Rating: Critical

    Four vulnerabilities -- three privately reported and one publicly disclosed -- are addressed by this cummulative security update for Internet Explorer. The said vulnerabilites allow remote code execution of a user visits a specially-crafted website using Internet Explorer. Read more here.

  • (MS09-055) Cumulative Security Update of ActiveX Kill Bits (973525)

    Risk Rating: Critical

    This update solves a remote code execution vulnerability that exists in the Microsoft ActiveX controls, which was also partly addressed in the MS09-034 patch. This update makes changes in the system's registry, preventing the vulnerable controls from executing on the system. Read more here.

  • (MS09-056) Vulnerabilities in Windows CryptoAPI Could Allow Spoofing (974571)

    Risk Rating: Important

    This update addresses spoofing vulnerability in the Windows CryptoAPI component. The vulnerability exists when the said component parses ASN.1 information and object identifiers from a certain certificate. Read more here.

  • (MS09-057) Vulnerability in Indexing Service Could Allow Remote Code Execution (969059)

    Risk Rating: Important

    This update solves a remote code execution vulnerability present in the indexing service of affected Windows operating systems. This is due to the way it handles specially crafted Web content. Read more here.

  • (MS09-058) Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)

    Risk Rating: Important

    This update resolves several vulnerabilities in the Windows kernel. Exploitation of these vulnerabilities leads to different security impacts, the most severe being elevation of priviledge if the attacker logged on to the system and ran a specially crafted application. Read more here.

  • (MS09-059) Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (975467)

    Risk Rating: Important

    This update resolves a privately reported vulnerability in Microsoft Windows that allows denial of service if an attacker sent a maliciously crafted packet during the NTLM authentication process. Read more here.

  • (MS09-060) Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)

    Risk Rating: Critical

    This update addresses several privately reported vulnerabilities in ActiveX Controls for Microsoft that were compiled with a vulnerable version of Microsoft Active Template Library (ATL). Read more here.

  • (MS09-061) Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)

    Risk Rating: Critical

    This addresses three privately reported vulnerabilities in Microsoft .NET Framework and Microsoft Silverlight. The vulnerabilities allow remote code execution on a client system when a user views a specially crafted Web page using a Web browser that can run XAML Browser Applications (XBAPs) or Silverlight applications. The same can be done if an attacker succeeds in persuading a user to run a specially crafted Microsoft .NET application. Read more here.

  • (MS09-062) Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)

    Risk Rating: Critical

    This update addresses several vulnerabilities in Microsoft Windows GDI+. Successful exploitation of the said vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a specially crafted website. Read more here.


Patch Information:

Trend Micro clients using OfficeScan with Intrusion Defense Firewall (IDF) may refer to the table below for the pattern filter identifier(s):
 
Search for another Security Advisory
Keyword: