[BigFix-Announcements] BES Auto Notification: New Fixlets Published in Fixlet Site: 'Enterprise Security'
autonotify at us.ibm.com
autonotify at us.ibm.com
Sat Aug 13 02:01:42 PDT 2011
Fixlet Site - 'Enterprise Security'
Current Version: 1510 Published: Fri, 12 Aug 2011 21:15:58 GMT
New Fixlets:
============
***************************************************************
Title: MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution - Microsoft Visual Studio 2010 SP1
Severity: Important
Fixlet ID: 1102535
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-025.mspx
Fixlet Description: Microsoft has released a security update that resolves a publicly disclosed vulnerability in certain applications built using the Microsoft Foundation Class (MFC) Library. The vulnerability could allow remote code execution if a user opens a legitimate file associated with such an affected application, and the file is located in the same network folder as a specially crafted library file. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a document from this location that is then loaded by the affected application. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution - Microsoft Visual C++ 2010 Redistributable Package SP1
Severity: Important
Fixlet ID: 1102537
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-025.mspx
Fixlet Description: Microsoft has released a security update that resolves a publicly disclosed vulnerability in certain applications built using the Microsoft Foundation Class (MFC) Library. The vulnerability could allow remote code execution if a user opens a legitimate file associated with such an affected application, and the file is located in the same network folder as a specially crafted library file. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a document from this location that is then loaded by the affected application. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-025: Vulnerability in Microsoft Foundation Class (MFC) Library Could Allow Remote Code Execution - Microsoft Visual C++ 2010 Redistributable Package SP1 (x64)
Severity: Important
Fixlet ID: 1102539
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-025.mspx
Fixlet Description: Microsoft has released a security update that resolves a publicly disclosed vulnerability in certain applications built using the Microsoft Foundation Class (MFC) Library. The vulnerability could allow remote code execution if a user opens a legitimate file associated with such an affected application, and the file is located in the same network folder as a specially crafted library file. For an attack to be successful, a user must visit an untrusted remote file system location or WebDAV share and open a document from this location that is then loaded by the affected application. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows XP SP3 (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104323
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows XP SP3 (v2, republished 8/9/2011) - CORRUPT PATCH
Severity: Critical
Fixlet ID: 1104324
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2003 SP2 (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104325
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2003 SP2 (v2, republished 8/9/2011) - CORRUPT PATCH
Severity: Critical
Fixlet ID: 1104326
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Vista SP1/SP2 (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104327
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2008 Gold/SP2 (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104329
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows 7 Gold/SP1 (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104331
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows XP SP2 (x64) (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104333
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows XP SP2 (x64) (v2, republished 8/9/2011) - CORRUPT PATCH
Severity: Critical
Fixlet ID: 1104334
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2003 SP2 (x64) (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104335
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2003 SP2 (x64) (v2, republished 8/9/2011) - CORRUPT PATCH
Severity: Critical
Fixlet ID: 1104336
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Vista SP1/SP2 (x64) (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104337
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2008 Gold/SP2 (x64) (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104339
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows 7 Gold/SP1 (x64) (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104341
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
***************************************************************
Title: MS11-043: Vulnerability in SMB Client Could Allow Remote Code Execution - Windows Server 2008 R2 Gold/SP1 (x64) (v2, republished 8/9/2011)
Severity: Critical
Fixlet ID: 1104343
Fixlet Link: http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx
Fixlet Description: Microsoft has released a security update that resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sent a specially crafted SMB response to a client-initiated SMB request. To exploit the vulnerability, an attacker must convince the user to initiate an SMB connection to a specially crafted SMB server. After downloading and installing this update, affected computers will no longer be susceptible to this vulnerability.
Important Note: There are known issues associated with the installation of this update. See the Known Issues section of the security bulletin for more information.
More information about the BigFix-Announcements
mailing list