Microsoft Security Bulletin for July / august 2 out of band, 2010

Microsoft Security Bulletin Summary for july 13, 2010

Microsoft Security Bulletin Summary for july 13, 2010

Microsoft Security Bulletin Summary for july 13 2010
Published: july 13 2010

Note: There may be latency issues due to replication, if the page does not display keep refreshing


Note: http://www.microsoft.com/technet/security and http://www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.


Today Microsoft released the following Security Bulletin(s).

Bulletin Summary:
http://www.microsoft.com/technet/security/Bulletin/MS10-jul.mspx


Critical (3)

Microsoft Security Bulletin MS10-042 - Critical
Vulnerability in Help and Support Center Could Allow Remote Code Execution (2229593)
Published: July 13, 2010

Version: 1.0
http://www.microsoft.com/technet/security/Bulletin/MS10-042.mspx


Microsoft Security Bulletin MS10-043 - Critical
Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276)
Published: July 13, 2010

Version: 1.0
http://www.microsoft.com/technet/security/Bulletin/MS10-043.mspx


Microsoft Security Bulletin MS10-044 - Critical
Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution (982335)
Published: July 13, 2010

Version: 1.0
http://www.microsoft.com/technet/security/bulletin/MS10-044.mspx



Important (1)

Microsoft Security Bulletin MS10-045 - Important
Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)
Published: July 13, 2010

Version: 1.0
http://www.microsoft.com/technet/security/bulletin/ms10-045.mspx


Moderate (0)



Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA.

 

Re: Microsoft Security Bulletin Summary for july 13, 2010

TechNet Webcast: Information About Microsoft July Security Bulletins (Level 200)
Event ID: 1032454299

Language(s): English.
Product(s): Security.
Audience(s): IT Decision Maker,IT Generalist.


Duration: 90 Minutes
Start Date: Wednesday, July 14, 2010 11:00 AM Pacific Time (US & Canada)



Event Overview
Join us for a brief overview of the technical details of the July security bulletins. We intend to address your concerns in this webcast, therefore, most of the webcast is devoted to attendees asking questions about the bulletins and getting answers from Microsoft security experts.

Presenters: Jerry Bryant, Group Manager, Response Communications, Microsoft Corporation and Adrian Stone, Senior Security Program Manager Lead, Microsoft Corporation

Register now for the July security bulletin webcast.

 

Re: Microsoft Security Bulletin Summary for july 13, 2010

Microsoft Windows Malicious Software Removal Tool (KB890830)

File Name: windows-kb890830-v3.9.exe
Version: 3.9
Knowledge Base (KB) Articles: KB890830
Date Published: 7/13/2010
Language: English
Download Size: 11.0 MB

http://www.microsoft.com/downloads/...FamilyID=ad724ae0-e72d-4f54-9ab3-75b8eb148356

 

Re: Microsoft Security Bulletin Summary for july 13, 2010

Microsoft Security Bulletin MS10-024 - Important
Vulnerabilities in Microsoft Exchange and Windows SMTP Service Could Allow Denial of Service (981832)
Published: April 13, 2010 | Updated: July 13, 2010

Version: 2.0
Revisions
• V1.0 (April 13, 2010): Bulletin published.

• V1.1 (April 14, 2010): Added an entry to the Update FAQ to clarify the Microsoft Exchange servicing model. Also corrected the Configuration Manager 2007 detection value for Microsoft Exchange Server 2000 Service Pack 3 and the installation switches for Microsoft Exchange Server 2000 Service Pack 3 and Microsoft Exchange Server 2003 Service Pack 2.

• V1.2 (April 15, 2010): Added an entry in the Update FAQ to announce a detection change to the update for Microsoft Exchange Server 2000 Service Pack 3. This is a detection change only. There were no changes to the security update files in this bulletin. Customers who have already installed the update successfully do not need to reinstall.

• V2.0 (July 13, 2010): Rereleased bulletin to reoffer the updates for Windows Server 2008 and Windows Server 2008 R2 to address the known issue listed in KB 976323.

http://www.microsoft.com/technet/security/bulletin/ms10-024.mspx

 

Re: Microsoft Security Bulletin Summary for july 13, 2010

Microsoft Security Bulletin MS10-045 - Important
Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)
Published: July 13, 2010 | Updated: July 14, 2010

Revisions
•

V1.0 (July 13, 2010): Bulletin published.
•

V1.1 (July 14, 2010): Added a link to Microsoft Knowledge Base Article 978212 under Known Issues in the Executive Summary.
http://www.microsoft.com/technet/security/bulletin/MS10-045.mspx?pubDate=2010-07-14



Microsoft Security Bulletin MS10-044 - Critical
Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution (982335)
Published: July 13, 2010 | Updated: July 14, 2010

Revisions
•

V1.0 (July 13, 2010): Bulletin published.
•

V1.1 (July 14, 2010): Added a link to Microsoft Knowledge Base Article 982335 under Known Issues in the Executive Summary.
http://www.microsoft.com/technet/security/bulletin/MS10-044.mspx?pubDate=2010-07-14



Microsoft Security Bulletin MS10-043 - Critical
Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276)
Published: July 13, 2010 | Updated: July 14, 2010

Revisions
•

V1.0 (July 13, 2010): Bulletin published.
•

V1.1 (July 14, 2010): Added an entry to the update FAQ to provide guidance for Windows 7 Service Pack 1 Beta and Windows Server 2008 R2 Service Pack 1 Beta releases. Also removed erroneous references to Windows Embedded Standard 7.
http://www.microsoft.com/technet/security/bulletin/MS10-043.mspx?pubDate=2010-07-14

 

Re: Microsoft Security Bulletin Summary for july 13, 2010

http://blogs.technet.com/b/msrc/archive/2010/07/20/security-advisory.aspx

Microsoft Security Advisory (228619
Vulnerability in Windows Shell Could Allow Remote Code Execution
Published: July 16, 2010 | Updated: July 20, 2010

Revisions
• V1.0 (July 16, 2010): Advisory published.

• V1.1 (July 19, 2010): Clarified the vulnerability description and the "Is this a security vulnerability that requires Microsoft to issue a security update?" FAQ entry.

• V1.2 (July 20, 2010): Clarified the vulnerability exploit description and updated the workarounds.

http://www.microsoft.com/technet/security/advisory/2286198.mspx

 

Microsoft Out-Of-Band Security Bulletin(s) - August 2, 2010

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Out-of-Band Security Bulletin(s).

Bulletin Summary:
http://www.microsoft.com/technet/security/bulletin/ms10-aug.mspx


Critical (1)

Microsoft Security Bulletin MS10-046
Vulnerability in Windows Shell Could Allow Remote Code Execution (228619
http://www.microsoft.com/technet/security/bulletin/ms10-046.mspx