Patches Available for 34 Vulnerabilities in Microsoft Software

A record 14 security bulletins have been made available by Microsoft in an effort to patch no less than 34 vulnerabilities affecting a range of its software products including Office, Windows, Internet Explorer, Silverlight, XML Core Services and Server Message Block.

The Redmond company released last week, when it announced the massive pack package, that this was the first time that the company would release 14 security bulletins as a part of the monthly patch cycle.

The massive number of security updates contains no less than eight Critical bulletins, and six that have been rated as Important.

Angela Gunn, Security Response Communications Manager, Microsoft revealed for Softpedia that Microsoft has identified a number of security bulletins that are priorities in terms of deployment.

In this regard, the software giant is advising customers to make sure and apply MS10-052, MS10-055, MS10-056, and MS10-060 immediately.

However, users need not waste any time when it comes down to bulletproofing their systems against potential attacks by applying the August 2010 security patches as soon as possible.

Gunn offered a few details about the security bulletins that must be prioritized by customers:

"- MS10-052 resolves a privately reported vulnerability in Microsoft’s MPEG Layer-3 audio codecs. The vulnerability could allow remote code execution if a user opens a specially crafted media file or receives specially crafted streaming content from a Web site.

- MS10-055 resolves a privately reported vulnerability in the Cinepak codec that could allow remote code execution if a user opens a specially crafted media file, or receives specially crafted streaming content from a Web.

- MS10-056 resolves four privately reported vulnerabilities in Microsoft Office. The most severe vulnerabilities could allow remote code execution if a user opens or previews a specially crafted RTF e-mail message.

- MS10-060 resolves two privately reported vulnerabilities, both of which could allow remote code execution, in Microsoft .NET Framework and Microsoft Silverlight."

In addition, Gunn was also kind enough to provide a summary of the remaining “Microsoft August Security Bulletin Releases:

- MS10-047 (Windows Kernel) addresses three vulnerabilities in Windows and Server, has a maximum security rating of Important and an Exploitability Index rating of 1

- MS10-048 (Windows Kernel-mode Drivers) addresses five vulnerabilities in Windows and Server, has a maximum security rating of Important and an Exploitability Index rating of 1\

- MS10-049 (SChannel) addresses two vulnerabilities in Windows and Server, has a maximum security rating of Critical and an Exploitability Index rating of 2

- MS10-050 (Movie Maker) addresses one vulnerability in Windows and Server, has a maximum security rating of Important and an Exploitability Index rating of 1

- MS10-051 (XML Core Services) addresses one vulnerability in XML Core Services, has a maximum security rating of Critical and an Exploitability Index rating of 2

- MS10-053 (Cumulative update for Internet Explorer) addresses six vulnerabilities in Internet Explorer, has a maximum security rating of Critical and an Exploitability Index rating of 1

- MS10-054 (SMB Server) addresses three vulnerabilities in Server, has a maximum security rating of Critical and an Exploitability Index rating of 2

-MS10-057 (Microsoft Office – Excel) addresses one vulnerability in Office, has a maximum security rating of Important and an Exploitability Index rating of 1

- MS10-058 (TCP/IP) addresses two vulnerabilities in Windows and Server, has a maximum security rating of Important and an Exploitability Index rating of 1

- MS10-059 (Tracing Feature for Services) addresses two vulnerabilities in Windows and Server, has a maximum security rating of Important and an Exploitability Index rating of 1."

Follow me on Twitter @MariusOiaga.