Tuesday, June 9, 2009

Microsoft Security Bulletin for June 2009

As expected, Microsoft has today released their June Security Bulletin Summary, comprised of 10 separate security bulletins, plus 2 security advisories. Busy month, folks.

6 of the 10 affect Windows, with two carrying the critical rating, three rated as important, with one posted as moderate. For the remaining 4, all are rated as critical, impacting Internet Explorer, Microsoft Office Word, Microsoft Office Excel and Microsoft Works Converters.

The two security advisories involve kill bits for Active X and a non-security update for DNS devolution that actually changes the security config of systems when you apply it, so Redmond decided to release it with an advisory.

SANS has a nice monthly table that outlines the patches, associated CVEs, and other pertinent information, including their suggested patching prioritization.

Malicious code is already in the wild for some of these, with active exploits in progress for several, but as always, we'll see an uptick in activity now that these have been publicly released. I wouldn't dally around long before rolling these out, especially MS09-019 for Internet Explorer.


No comments:

Post a Comment

Please tell me what you think.