Advisories

CERT-In Advisory CIAD-2011-0069

Multiple Vulnerabilities in Microsoft Products

Original Issue Date: December 14, 2011

Systems Affected

Windows XP SP 3
Windows XP Professional x64 Edition SP 2
Windows Server 2003 SP 2
Windows Server 2003 x64 Edition SP 2
Windows Server 2003 with SP2 for Itanium-based Systems
Windows Vista SP 2 (x86 & x64 versions)
Windows 7 & SP1 (x86 & x64 versions)
Windows Server 2008 SP2 (x86 & x64 versions)
Windows Server 2008 for Itanium-based Systems SP1 & SP 2

Component Affected

Internet Explorer 6,7,8,9
Microsoft Office 2003 SP 3
Microsoft Office 2007 SP2 & SP 3
Microsoft Office 2010 & SP1 (32 &64 editions)
Microsoft Office for Mac 2011
Active Directory Application Mode (ADAM)
Active Directory Lightweight Directory Service (AD LDS)

Overview

Multiple Vulnerabilities have been reported in various components of Microsoft Products

Description

The vulnerability notes released by CERT-In with reference to Microsoft Security Bulletins are given below:

Microsoft Security Bulletin	Severity	CERT-In Vulnerability Notes
MS11-087:Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution	High	CIVN-2011-0180 Microsoft Windows win32k.sys TrueType Font Parsing Vulnerability
MS11-088:Vulnerability in Microsoft Office IME (Chinese) Could Allow Elevation of Privilege	High	CIVN-2011-0181 Microsoft Office Pinyin IME local privilege escalation Vulnerability
MS11-089:Vulnerabilities in Microsoft Office could allow for Remote Code Execution	Medium	CIVN-2011-0182 Microsoft Office Remote Code Execution Vulnerability
MS11-090 :Cumulative Security Update for ActiveX Kill Bits	Medium	CIVN-2011-0183 Microsoft Windows Time Component Arbitrary Code Execution Vulnerability
MS11-091:Vulnerabilities in Microsoft Publisher Could Allow Remote Code Execution	Medium	CIVN-2011-0184 Multiple Vulnerabilities in Microsoft Publisher
MS11-092:Vulnerability in Windows Media Could Allow Remote Code Execution	Medium	CIVN-2011-0185 Microsoft Windows Media Player DVR-MS Memory Corruption Vulnerability
MS11-093:Vulnerability in Microsoft Windows OLE32 Could Allow Remote Code Execution	Medium	CIVN-2011-0186 Microsoft Windows OLE Remote Code Execution Vulnerability
MS11-094:Vulnerabilities in Microsoft PowerPoint Could Allow Remote Code Execution	Medium	CIVN-2011-0187 Microsoft PowerPoint Remote code Execution vulnerabilities
MS11-095:Vulnerability in Active Directory Could Allow Remote Code Execution	Medium	CIVN-2011-0188 Microsoft Windows Active Directory Remote Code Execution Vulnerability
MS11-096:Vulnerability in Microsoft Excel Could Allow Remote Code Execution	Medium	CIVN-2011-0189 Microsoft Excel Remote Code Execution Vulnerability
MS11-097:Vulnerability in Windows Client/Server Runtime Subsystem Could Allow Elevation of Privilege	Medium	CIVN-2011-0190 Microsoft Windows Client/Server Run-time Subsystem Privilege Escalation Vulnerability
MS11-098:Vulnerability in Windows Kernel Could Allow Elevation of Privilege	Low	CIVN-2011-0191 Microsoft Windows Kernel Exception Handler Privilege Escalation Vulnerability
MS11-099:Cumulative Security Update for Internet Explorer	Medium	CIVN-2011-0192 Multiple Vulnerabilities in Microsoft Internet Explorer

Solution

Apply appropriate patches as mentioned in Microsoft Security Bulletin August 2011
http://technet.microsoft.com/en-us/security/bulletin/ms11-dec

Vendor Information

Microsoft Corporation
http://technet.microsoft.com/en-us/security/bulletin/ms11-dec

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Contact Information

Email: info@cert-in.org.in
Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, CGO Complex, Lodhi Road,
New Delhi - 110 003
India