National Cyber Alert System
Technical Cyber Security Alert TA10-040A
http://www.us-cert.gov/cas/techalerts/TA10-040A.html
Microsoft Updates for Multiple Vulnerabilities
Original release date:February 09, 2010
Last revised: --
Source: US-CERT
Systems Affected
* Microsoft Windows and Windows Server
* Microsoft Internet Explorer
* Microsoft Office
Overview
Microsoft has released updates to address vulnerabilities in
Microsoft Windows, Windows Server, Internet Explorer, and Microsoft
Office.
I. Description
Microsoft has released multiple security bulletins for critical
vulnerabilities in Microsoft Windows, Windows Server, Internet
Explorer, and Microsoft Office. These bulletins are described in
the Microsoft Security Bulletin Summary for February 2010.
II. Impact
A remote, unauthenticated attacker could execute arbitrary code,
gain elevated privileges, or cause a vulnerable application or
system to crash.
III. Solution
Apply updates from Microsoft
Microsoft has provided updates for these vulnerabilities in the
Microsoft Security Bulletin Summary for February 2010. The security
bulletin describes any known issues related to the updates.
Administrators are encouraged to note these issues and test for any
potentially adverse effects. Administrators should consider using
an automated update distribution system such as Windows Server
Update Services (WSUS).
IV. References
* Microsoft Security Bulletin Summary for February 2010 -
http://www.microsoft.com/technet/securi ... 0-feb.mspx
* Microsoft Windows Server Update Services -
http://technet.microsoft.com/en-us/wsus/default.aspx