Patch Tuesday Security Briefing

There may be a Black Friday this month, but there’s also a happy Tuesday from Microsoft with just 4 bulletins this period. Only one of the bulletins is critical; however its exploitability rating is only a 3 and Microsoft suggests it is not likely this patch will be used. The additional patches include 2 important and 1 moderate. All 4 patches will impact Windows platforms and will require a reboot.

Details:

MS11-083 Vulnerability in TCP/IP Could Allow Remote Code Execution
Critical - Remote Code Execution

MS11-084 Vulnerability in Microsoft Windows Could Allow Remote Code Execution
Moderate - Remote Code Execution

MS11-085 Vulnerability in Windows Mail and Windows Meeting Space Could Allow Remote Code Execution
Important - Remote Code Execution

MS11-086 Vulnerability in Active Directory Could Allow Elevation of Privilege
Important - Elevation of Privilege

Of course, the real question on everyone’s mind is Duqu. While many dispute the threat imposed by this malware, no one disputes the risk of the Day Zero Vulnerability in Microsoft software that it takes advantage of. The vulnerability is exploited through a malicious Word document - when the user opens the document, a Zero Day Kernel Vulnerability is... Read More »

Bulletins

» Critical

» Important

» Moderate

Updates Outside of Microsoft

Outside of Microsoft, here are the major updates released since the beginning of October:

Apple released many updates in preparation for iOS 5, including the following Security Content

• Apple iTunes 10.5
• Apple 2011-10-12 Mac OS X 10.7.2
• Apple 2011-10-12 Security Update 2011-006
• Apple 2011-10-12 Safari Update 5.1.1
• Apple QuickTime 7.7.1 Player

Oracle Java Security Content

• Sun Java JRE 1.6.0_29

VMware Security Content

• VMware VMSA-2011-0011 VMware Fusion 3.1.3
• VMware VMSA-2011-0011 VMware Workstation 7.1.5
• VMware VMSA-2011-0011 VMware Player 3.1.5

Real Networks Security Content

• RealPlayer (English) 14 (12.0.1.666)

Some items of note:

1. In addition to the 4 planned OS bulletins, Microsoft released Security Advisory 2639658, detailing the vulnerability in TrueType Font Parsing that is being actively exploited. This vulnerability is not planned to be fixed in tomorrow’s bulletins.
2. Firefox 8 is now available! Includes new features that make web browsing easier.
3. Adobe Reader 8.x and Acrobat 8.x reached End of Support on November 3, 2011, meaning Adobe will no longer produce security updates for those versions.
4. The next quarterly security updates for Adobe Reader and Acrobat have been postponed to January 10, 2012.

Security Forum
Keys to the Kingdom

For hackers, social media is the top malware delivery vehicle of choice right now. Sadly, many unsuspecting people fail to realize that by creating a Facebook page, with their information displayed, they are literally handing bad guys all the necessary needed to hack their bank account.

Webcast
Lumension® Reporting Services: Powerful Reports at Your Fingertips

Gain visibility into the endpoint environment with the new Lumension® Reporting Services. Learn by the use of powerful charts and graphs, assess business risk through granular data vulnerability, demonstrate compliance with corporate and regulatory security policies and minimize total cost of ownership by leveraging your L.E.M.S.S. investment.

Whitepaper
Picking the Low-Hanging Fruit

Why fixing third-party application vulnerabilities is at the core of sound information security—and how to make sure patch management is optimizing your security posture.

Visit the Security Forum »

Register for the Webcast »

Download the Whitepaper »