[BigFix-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: EnterpriseSecurity
autonotify at bigfix.com
autonotify at bigfix.com
Thu Nov 12 02:00:37 PST 2009
Fixlet Site - EnterpriseSecurity
Current Version: 1285 Published: Wed, 11 Nov 2009 21:53:50 GMT
New Fixlets:
============
***************************************************************
Title: MS09-051: Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution - Audio Compression Manager - Microsoft Windows 2000 SP4 (v2, re-released 11/10/2009)
Severity: Critical
Fixlet ID: 905161
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS09-051.mspx
Fixlet Description: Microsoft has released a security update that resolves two privately reported vulnerabilities in Windows Media Runtime. The vulnerabilities could allow remote code execution if a user opened a specially crafted media file or received specially crafted streaming content from a Web site or any application that delivers Web content. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. After downloading and installing this update, affected computers will no longer be susceptible to these vulnerabilities.
Important Note: This patch was re-released on November 10, 2009 to address detection issues with the original patch. The action below deploys the revised version of the patch. This Fixlet message will not become relevant if the original version of the patch is installed. See the FAQ section of the security bulletin for more information.
***************************************************************
Title: MS09-051: Vulnerabilities in Windows Media Runtime Could Allow Remote Code Execution - Audio Compression Manager - Microsoft Windows 2000 SP4 (v2, re-released 11/10/2009) - CORRUPT PATCH
Severity: Critical
Fixlet ID: 905162
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS09-051.mspx
More information about the BigFix-Announcements
mailing list