14 DAY TRIAL // The July 2010 Security Bulletins are here, patching vulnerabilities in various versions of Windows and Office. No less than four patch packages were released this month by Microsoft, designed to plug a total of five vulnerabilities. At the bottom of this article you will be able to find a list with all the security bulletins released this month, as well as the links that will let you get additional details provided by Microsoft
“As always, Microsoft recommends that customers test and deploy all security updates as soon as possible to help protect their computers from criminal attacks,” Jerry Bryant, Group Manager, Response Communications, Microsoft revealed in an email to Softpedia.
The latest security patches provided by the software giant will help customers protect themselves against attacks targeting a vulnerability in Windows Help and Support Center, posing a high risk to Windows XP users. In fact, after details of the flaw were irresponsibly made public, attacks started appearing in the wild, targeting users running vulnerable copies of XP.
I addition, Microsoft also resolved an issue affecting the 64-bit (x64) flavors of Windows 7 and Windows Server 2008 R2. MS10-043 fixes a Critical flaw in the Canonical Display Driver, for which details have also been published in the wild. Microsoft downplayed the risk posed to customers by attacks targeting the Canonical Display Driver vulnerability, noting that potential attackers could more likely crash an affected system rather than be able to execute code remotely due to memory randomization mitigations built into Windows 7.
“Microsoft recommends customers prioritize the deployment of MS10-042 and MS10-045. MS10-042 is rated Critical for all supported editions of Windows XP, and Low for all supported editions of Windows Server 2003. The security update resolves a vulnerability in the Windows Help and Support Center feature that is delivered with supported editions of Windows XP and Windows Server 2003. MS10-045 addresses a vulnerability in Microsoft Outlook, and is rated Important for all supported editions of Microsoft Outlook 2002, Microsoft Office Outlook 2003 and Microsoft Office Outlook 2007,” Bryant added.
Bryant also provided a list with the “Microsoft June Security Bulletin Releases:
· MS10-042 (Help and Support Center) addresses one vulnerability in Windows, has a maximum security rating of Critical and an Exploitability Index rating of 1;
· MS10-043 (Canonical Display Driver) addresses one vulnerability in Windows, has a maximum security rating of Critical and an Exploitability Index rating of 2;
· MS10-044 (Microsoft Office Access) addresses two vulnerabilities in Office, has a maximum security rating of Critical and an Exploitability Index rating of 1;
· MS10-045 (Microsoft Office) addresses one vulnerability in Office, has a maximum security rating of Important and an Exploitability Index rating of 1."
