CERT releases Cyber Security Alert TA11-347A for Microsoft Updates…

Microsoft Updates for Multiple Vulnerabilities

Original release date: December 13, 2011
Last revised: —
Source: US-CERT

Systems Affected

• Microsoft Windows
• Microsoft Office
• Internet Explorer

Overview

There are multiple vulnerabilities in Microsoft Windows, Office, and Internet Explorer. Microsoft has released updates to address these vulnerabilities.

I. Description

The Microsoft Security Bulletin Summary for December 2011 describes multiple vulnerabilities in Microsoft Windows. Microsoft has released updates to address the vulnerabilities. Additional details for MS11-091 can be found in US-CERT vulnerability note VU#361441.

II. Impact

A remote, unauthenticated attacker could execute arbitrary code, cause a denial of service, or gain unauthorized access to your files or system.

III. Solution

Apply updates

Microsoft has provided updates for these vulnerabilities in the Microsoft Security Bulletin Summary for December 2011. That bulletin describes any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects. In addition, administrators should consider using an automated update distribution system such as Windows Server Update Services (WSUS).

IV. References

• Microsoft Security Bulletin Summary for December 2011 – <https://technet.microsoft.com/en-us/security/bulletin/ms11-dec>
• Microsoft Windows Server Update Services – <http://technet.microsoft.com/en-us/wsus/default.aspx>
• US-CERT Vulnerability Note VU#361441 – <http://www.kb.cert.org/vuls/id/361441 >

Feedback can be directed to US-CERT.

Produced 2011 by US-CERT, a government organization. Terms of use

Revision HistoryDecember 13, 2011: Initial release