Technical Cyber Security Alert 2012-283A - Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these vulnerabilities.
d28aa6d4a5da0493cd355a00a8fe0309ef30dc9a848b8b3e88e8b4cd9f95977c
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Awareness System
US-CERT Alert TA12-283A
Microsoft Updates for Multiple Vulnerabilities
Original release date: October 09, 2012
Last revised: --
Systems Affected
* Microsoft Windows
* Microsoft Office
* Microsoft Server Software
* Microsoft Lync
* Microsoft SQL Server
Overview
Select Microsoft software products contain multiple
vulnerabilities. Microsoft has released updates to address these
vulnerabilities.
Description
The Microsoft Security Bulletin Summary for October 2012 describes
multiple vulnerabilities in Microsoft software. Microsoft has
released updates to address the vulnerabilities.
Impact
A remote, unauthenticated attacker could execute arbitrary code,
cause a denial of service, or gain unauthorized access to your
files or system.
Solution
Apply Updates
Microsoft has provided updates for these vulnerabilities in the
Microsoft Security Bulletin Summary for October 2012, which
describes any known issues related to the updates. Administrators
are encouraged to note these issues and test for any potentially
adverse effects. In addition, administrators should consider using
an automated update distribution system such as Windows Server
Update Services (WSUS). Home users are encouraged to enable
automatic updates.
References
* Microsoft Security Bulletin Summary for October 2012
<http://technet.microsoft.com/en-us/security/bulletin/ms12-oct>
* Microsoft Windows Server Update Services
<http://technet.microsoft.com/en-us/wsus/default.aspx>
* Microsoft Update
<http://www.update.microsoft.com/>
* Microsoft Update Overview
<http://www.microsoft.com/security/updates/mu.aspx>
* Turn Automatic Updating On or Off
<http://windows.microsoft.com/en-us/windows-vista/Turn-automatic-updating-on-or-off>
Revision History
October 09, 2012: Initial release
____________________________________________________________________
Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@cert.org> with "TA12-283A Feedback VU#618507" in
the subject.
____________________________________________________________________
Produced by US-CERT, a government organization.
____________________________________________________________________
This product is provided subject to this Notification:
http://www.us-cert.gov/privacy/notification.html
Privacy & Use policy:
http://www.us-cert.gov/privacy/
This document can also be found at
http://www.us-cert.gov/cas/techalerts/TA12-283A.html
For instructions on subscribing to or unsubscribing from this
mailing list, visit http://www.us-cert.gov/cas/signup.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iQEVAwUBUHR6yndnhE8Qi3ZhAQKPKwgAmWj9+WtNO05yiGpJryCrHb1L3mCprGbK
KXvNnebLbTtxxNoQIHNlyUQrySLRDFMbamGU1m0ArPgK/gRk9V2QCDO/1R+vUPVF
6/P1sJ97tTU//7/k7IYY621c+1ItYv7W3CcgS2XsKuaK5n0Aj151i7O+99OOIqnw
C2IPKuvyz5Kefa+KIz8E0wyVFcD/F6LvFx/rOdQ/loKOnusen5lGH2LvkVk6Xbd3
Q0GjxGl6XVrBVrleG4e9HlQWkX+nO4nx0CTPZ2cIOaWe+T3/J0mTf97TjG9I+o5X
M/6vmXBxVE9aTqghX/XidTslHT4NNCwG7h3+dkbw2k2qhMupJnzlug==
=O8eb
-----END PGP SIGNATURE-----