• Home
• About
• Coupon Code
• RapidLeech List

Microsoft mengeluarkan enam update bulan Juli 2009 ini

Microsoft mengeluarkan enam update hari Selasa kemarin (15 Juli 2009). Dari enam update tersebut tiga diantaranya dalam kategori critical dan tiga lainnya dalam kategori important. Salah satu update tersebut untuk memperbaiki celah keamanan pada Microsoft Video ActiveX Control yang menyerang Internet Explorer.

Berikut enam update yang tersedia pada bulan Juli 2009 ini:

MS09-029 – Critical
Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution (961371)
This security update resolves two privately reported vulnerabilities in the Microsoft Windows component, Embedded OpenType (EOT) Font Engine. The vulnerabilities could allow remote code execution. An attacker who successfully exploited either of these vulnerabilities could take complete control of an affected system remotely. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

MS09-028 – Critical
Vulnerabilities in Microsoft DirectShow Could Allow Remote Code Execution (971633)
This security update resolves one publicly disclosed vulnerability and two privately reported vulnerabilities in Microsoft DirectShow. The vulnerabilities could allow remote code execution if a user opened a specially crafted QuickTime media file. An attacker who successfully exploited any of these vulnerabilities could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

MS09-032 – Critical
Cumulative Security Update of ActiveX Kill Bits (973346)
This security update resolves a privately reported vulnerability that is currently being exploited. The vulnerability in Microsoft Video ActiveX Control could allow remote code execution if a user views a specially crafted Web page with Internet Explorer, instantiating the ActiveX control. This ActiveX control was never intended to be instantiated in Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

MS09-033 – Important
Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856)
This security update resolves a privately reported vulnerability in Microsoft Virtual PC and Microsoft Virtual Server. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected guest operating system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

MS09-031 – Important
Vulnerability in Microsoft ISA Server 2006 Could Cause Elevation of Privilege (970953)
This security update resolves a privately reported vulnerability in Microsoft Internet Security and Acceleration (ISA) Server 2006. The vulnerability could allow elevation of privilege if an attacker successfully impersonates an administrative user account for an ISA server that is configured for Radius One Time Password (OTP) authentication and authentication delegation with Kerberos Constrained Delegation.

MS09-030 – Important
Vulnerability in Microsoft Office Publisher Could Allow Remote Code Execution (969516)
This security update resolves a privately reported vulnerability in Microsoft Office Publisher that could allow remote code execution if a user opens a specially crafted Publisher file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

 
Silahkan download update tersebut disini:
MS09-029: http://go.microsoft.com/fwlink/?LinkID=139788
MS09-028: http://go.microsoft.com/fwlink/?LinkId=152887
MS09-032: http://go.microsoft.com/fwlink/?LinkId=157386
MS09-033: http://go.microsoft.com/fwlink/?LinkId=153891
MS09-031: http://go.microsoft.com/fwlink/?LinkId=154993
MS09-030: http://go.microsoft.com/fwlink/?LinkID=147424

Referensi:
http://www.microsoft.com/technet/security/Bulletin/MS09-jul.mspx

Popular Posts

• Unable to Establish a Connection with the Activation Server - Error 32777
• Mengintip fitur iPhone 3G S
• Yahoo akan menutup Yahoo 360 pada 13 July 2009
• Spesifikasi iPhone 3G S
• Mencoba SkyDrive dari live.com

Did you enjoy this post? Why not leave a comment below and continue the conversation, or subscribe to my feed and get articles like this delivered automatically to your feed reader.

Copyright Cenary.com | DBT Themes | host powered by hostingmahasiswa.com