Threat Level: green Handler on Duty: Russell Eubanks

SANS ISC: InfoSec Handlers Diary Blog - Microsoft Security Advisory overview InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Microsoft Security Advisory overview

Published: 2013-05-14
Last Updated: 2013-05-15 00:08:07 UTC
by Swa Frantzen (Version: 2)
0 comment(s)

Malware Protection Engine

Microsoft released security advisory 2846338 indicating that they have update their Malware Protection Engine (used in a varierty of their anti malware products) to fix a vulnerability in said engine where an attacker would be able to execute random code in the context of LocalSytem. Micorosft claims the vulnerability was publicly disclosed as a DoS.

CVE: CVE-2013-1346

ActiveX killbits rollup

Microsoft released security advisory 2820197 describing the addition of killbits for Honeywell Enterprise Buildings Integrator: {0d080d7d-28d2-4f86-bfa1-d582e5ce4867} and SymmetrE and ComfortPoint Open Manager: {29e9b436-dfac-42f9-b209-bd37bafe9317}

IE10 - flash

Microsoft updated security advisory 2755801 to announce the availability of update Adobe Flash libraries. This corresponds with APSB13-14.

CVE-2013-1347 MSHTML Shim Workaround update

Microsoft updated security advisory 2847140 to reflect the release of MS13-08

--
Swa Frantzen -- Section 66

0 comment(s)
Diary Archives