Microsoft Security Bulletin released for the month of June

Microsoft has released its security bulletin for June 2010. This month Microsoft has released 10 bulletins, addressing total 30 vulnerabilities.

Out of the 10 bulletins three bulletins have been rated “Critical” and seven bulletins have been rated “Important”. Six bulletins are related to “Remote Code Execution” vulnerability, three bulletins are related to “Elevation of Privilege” vulnerability and one bulletin is related to “Tampering” vulnerability.

The following vulnerabilities have been rated Critical:

  • Bulletin MS10-033 resolves two vulnerabilities in media decompression and could allow remote code execution in Microsoft Windows operating system.
  • Bulletin MS10-034 resolves two vulnerabilities for ActiveX Kill Bits and could allow remote code execution in Microsoft Windows operating system.
  • Bulletin MS10-035 resolves six vulnerabilities that could allow remote code execution in Microsoft Windows operating system and Microsoft Internet Explorer.

The following vulnerabilities have been rated Important:

  • Bulletin MS10-032 resolves three vulnerabilities in Windows kernel-mode drivers that could allow elevation of privilege in Microsoft Windows operating system.
  • Bulletin MS10-036 resolves vulnerability in COM validation that could allow remote code execution in Microsoft Office.
  • Bulletin MS10-037 resolves vulnerability in the open type Compact Font Format (CFF) driver that could allow elevation of privilege in Microsoft Windows operating system.
  • Bulletin MS10-038 resolves fourteen vulnerabilities that could allow remote code execution in Microsoft Office.
  • Bulletin MS10-039 resolves three vulnerabilities that could allow elevation of privilege in Microsoft SharePoint Server.
  • Bulletin MS10-040 resolves vulnerability that could allow remote code execution in Internet Information Services (IIS) of Microsoft Window operating system.
  • Bulletin MS10-041 resolves vulnerability that could allow tampering in Microsoft .NET Framework.

The above bulletins released this month provide security updates for Microsoft Windows operating systems, Microsoft Office, Microsoft Internet Explorer, Microsoft SharePoint Servers, Microsoft SharePoint Services and Microsoft .NET Framework.

For detailed information of all the bulletins and the corresponding vulnerabilities addressed, please visit Microsoft Security Bulletin Summary – June 2010 page.

I will recommend users to set Windows Update in Install updates automatically mode. So the important patches get applied automatically.

Basant Sekhani

Basant Sekhani


No Comments, Be The First!

Your email address will not be published.

CAPTCHA Image