[SingCERT] Microsoft Security Bulletin for July 2009

Last Updated on Friday, 07 August 2009 07:06

[ Summary ]

Microsoft has released a total of 6 security bulletins. 3 of the security bulletins are rated Critical affecting Microsoft Windows and 3 are rated Important affecting Virtual PC, Virtual Server, Microsoft ISA Server, and Microsoft Office.

 

Critical
- Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution (961371)
- Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)
- Cumulative Security Update of ActiveX Kill Bits (973346)

Important
- Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856)
- Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953)
- Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (969516)

[ Solution/Workaround ]
Microsoft has release patches for the vulnerabilities. Please see the vendor advisory for instructions.

[ Reference ]
- http://www.microsoft.com/technet/security/bulletin/ms09-jul.mspx
- http://go.microsoft.com/fwlink/?LinkID=139788
- http://go.microsoft.com/fwlink/?LinkId=152887
- http://go.microsoft.com/fwlink/?LinkId=157386
- http://go.microsoft.com/fwlink/?LinkId=153891
- http://go.microsoft.com/fwlink/?LinkId=154993
- http://go.microsoft.com/fwlink/?LinkID=147424

< Prev		Next >