CERT-In Advisory CIAD-2010-09
Multiple Vulnerabilities in Microsoft Windows, Office, Paint, SMB, Shell Handler, ActiveX Control, Windows TCP/IP, Hyper-V, CSRSS, Kerberos and Windows Kernel
Original issue date:
February 11, 2010
Systems Affected
- Windows 2000 SP4
- Microsoft Windows XP
- Windows XP Professional x64 Edition
- Windows Server 2003
- Windows Server 2003 x64 Edition
- Windows Server 2003 for Itanium-based Systems
- Windows Vista
- Windows Vista x64 Edition
- Windows Server 2008
- Windows Server 2008 x64-based Systems
- Windows Server 2008 for Itanium-based System
- Windows 7
- Windows Server 2008 R2 for x64-based Systems
- Windows Server 2008 R2 for Itanium-based Systems
Components affected
- Internet Explorer
- Microsoft Office
- Microsoft Paint
- Microsoft DirectShow
Overview
Multiple Vulnerabilities in Microsoft Windows, Office, Paint, SMB, Shell Handler, ActiveX Control, Windows TCP/IP, Hyper-V, CSRSS, Kerberos and Windows Kernel
Description
The vulnerability notes released by CERT-In with reference to Microsoft Security Bulletins are given below:
| Microsoft Security Bulletin |
Severity |
CERT-In Vulnerability Notes |
| MS10-003: Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution |
High |
CIVN-2010-10:
Microsoft Office "MSO.DLL" Remote Code Execution Vulnerability
|
| MS10-004: Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution |
High |
CIVN-2010-11:
MicrosoMultiple Remote Code Execution vulnerabilities in Microsoft Office Power Point |
| MS10-005: Vulnerability in Microsoft Paint Could Allow Remote Code Execution |
Medium |
CIVN-2010-12:
Microsoft Paint Buffer Overflow Vulnerability |
| MS10-006: Vulnerabilities in SMB Client Could Allow Remote Code Execution |
High |
CIVN-2010-13:
Microsoft Windows SMB Client Code Execution Vulnerabilities |
| MS10-007: Vulnerability in Windows Shell Handler Could Allow Remote Code Execution |
High |
CIVN-2010-14:
Windows Shell Handler URL Validation Vulnerability |
| MS10-008: Cumulative Security Update of ActiveX Kill Bits |
High |
CIVN-2010-15:
Microsoft Windows Data Analyzer ActiveX Vulnerability |
| MS10-009: Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution |
Medium |
CIVN-2010-16:
Multiple Vulnerabilities in Microsoft Windows TCP/IP Implementation |
| MS10-010: Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service |
Medium |
CIVN-2010-17:
Windows Server 2008 Hyper-V Denial of Service Vulnerability |
| MS10-011: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege |
Medium |
CIVN-2010-18:
Microsoft Windows Client/Server Run-time Subsystem Privilege Escalation Vulnerability |
| MS10-012: Vulnerabilities in SMB Server Could Allow Remote Code Execution |
Medium |
CIVN-2010-19:
Microsoft Windows SMB server multiple Vulnerabilities |
| MS10-013: Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution |
Medium |
CIVN-2010-20:
Microsoft Windows DirectShow Remote Code Execution Vulnerability |
| MS10-014: Vulnerability in Kerberos Could Allow Denial of Service |
Medium |
CIVN-2010-21:
Microsoft Windows Kerberos Null Pointer Dereference Denial of Service Vulnerability |
| MS10-015: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege |
High |
CIVN-2010-22:
Microsoft Windows Kernel Privilege Escalation Vulnerabilities |
Solution
Apply appropriate patches as mentioned in Microsoft Security Bulletin February 2010
http://www.microsoft.com/technet/security/bulletin/ms10-feb.mspx
Vendor Information
Microsoft Corporation
http://www.microsoft.com/technet/security/bulletin/ms10-feb.mspx
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
