Security & Mobility Now
Security is top-of-mind everywhere, especially right here where Juniper experts share their thoughts on the latest security breakthroughs and product advancements
klynn

May 2011 Microsoft Patch Tuesday Summary

by Juniper Employee on ‎05-10-2011 10:32 AM

Welcome to another addition of patch Tuesday summary blog.  Last month’s patch Tuesday involved patching a massive 67 vulnerabilities over 17 bulletins, while this month we are patching only 3 vulnerabilities over 2 bulletins.   

 

This month’s patch cycle we are looking at mitigation for vulnerabilities in WINS and a couple of file format vulnerabilities in Powerpoint.

 

Here is a list of the vulnerabilities fixed in today’s patches:

 

MS10-035 - Vulnerability in WINS could allow remote code execution

  • CVE-2011-1248 - WINS Remote Code Execution Vulnerability

MS10-036 - Vulnerabilities in Powerpoint Could allow Remote Code Execution

  • CVE-2011-1269 - Microsoft Office Powerpoint Remote Code Execution Vulnerability
  • CVE-2011-1270 - Microsoft Office Powerpoint Remote Code Execution Vulnerability

MSVulMay2011.jpg

 

As shown in the chart above, we have been seeing a small number of vulnerabilities patched followed by a large number of vulnerabilities patched in an alternating pattern.  It is extremely important to watch which links you click and which websites you visit, with the ever growing number of client side vulnerabilities it only takes one click to open your infrastructure up to outside attackers.  Vulnerabilities in client side applications are not going away, they will continue to be a weak link in security as they are very easy to find with modern-day file fuzzers.  The security issues in client side applications are often overlooked due to file complexity.  Stay vigilant! 

 

As we do every month, we’ve released a signature update to address the vulnerabilities fixed in today’s patches.  Happy patching!

 

For Additional information on how you can protect your network from emerging threats, please visit http://www.juniper.net/us/en/products-services/security/srx-series/

 

Post a Comment
Be sure to enter a unique name. You can't reuse a name that's already in use.
Be sure to enter a unique email address. You can't reuse an email address that's already in use.
Type the characters you see in the picture above.Type the words you hear.
About Security & Mobility Now

Discussing a wide range of topics impacting enterprises and
data center security.

Subscribe RSS Icon

Our Bloggers

Kyle Adams
Senior Software Engineer

Profile | Subscribe

Ritesh Agrawal
Director
Software Engineering

Profile | Subscribe

Erin K. Banks
Senior Technical Marketing Manager

Profile | Subscribe

Ajay Bharadwaj
Product Manager

Profile | Subscribe

Michael Callahan
Vice President
Product Marketing

Profile | Subscribe

Scott Emo
Director
Product Marketing

Profile | Subscribe

Mora Gozani
Senior Manager
Product Marketing

Profile | Subscribe

Ashur Kanoon
Sr. Manager
Technical Marketing

Profile | Subscribe

Seema Kathuria
Manager
Product Marketing

Profile | Subscribe

Kevin Kennedy
Senior Director
Product Management

Profile | Subscribe

Dave Killion
Software Engineer

Profile | Subscribe

Rebecca Lawson
Senior Director
Product Marketing

Profile | Subscribe

Rajoo Nagar
Senior Manager
Product Marketing

Profile | Subscribe

Erin O'Malley
Manager
Product Marketing

Profile | Subscribe

Galina Pildush
Strategy & Planning
Architect

Profile | Subscribe

Edward Roberts
Director
Product Marketing

Profile | Subscribe

Bill Shelton
Director Field Sales

Profile | Subscribe

Ashutosh Thakur
Product Line Manager

Profile | Subscribe

Troy Vennon
Software Engineer

Profile | Subscribe

Brad Woodberg
Product Manager

Profile | Subscribe

Labels
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.