Microsoft has released 16 security bulletins to address publicly disclosed 34 vulnerabilities,nine of which are rated Critical, and seven of which are rated Important. This is the second largest bulletin released by Microsoft in 2011 covering 16 bulletins.
Fixes includes patches for OLE, DFS, SMB Client, Internet Explorer, Threat Management Gateway client firewall, .NET, Silverlight, Windows Kernel, Excel, Active Directory, MHTML, Hyper-V, SMB server and XML Editor.
The following vulnerabilities has rated “Critical”:
MS11-038 – Vulnerability in OLE Automation Could Allow Remote Code Execution (2476490)
MS11-039 – Vulnerability in .NET Framework and Microsoft Silverlight Could Allow Remote Code Execution (2514842)
MS11-040 – Vulnerability in Threat Management Gateway Firewall Client Could Allow Remote Code Execution (2520426)
MS11-041 – Vulnerability in Windows Kernel-Mode Drivers Could Allow Remote Code Execution (2525694)
MS11-042 – Vulnerabilities in Distributed File System Could Allow Remote Code Execution (2535512)
MS11-043 – Vulnerability in SMB Client Could Allow Remote Code Execution (2536276)
MS11-044 – Vulnerability in .NET Framework Could Allow Remote Code Execution (2538814)
MS11-050 – Cumulative Security Update for Internet Explorer (2530548)
MS11-052 – Vulnerability in Vector Markup Language Could Allow Remote Code Execution (2544521)
The following vulnerabilities has rated “Important”:
MS11-037 – Vulnerability in MHTML Could Allow Information Disclosure (2544893)
MS11-045 – Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (2537146)
MS11-046 – Vulnerability in Ancillary Function Driver Could Allow Elevation of Privilege (2503665)
MS11-047 – Vulnerability in Hyper-V Could Allow Denial of Service (2525835)
MS11-048 – Vulnerability in SMB Server Could Allow Denial of Service (2536275)
MS11-049 – Vulnerability in the Microsoft XML Editor Could Allow Information Disclosure (2543893)
MS11-051 – Vulnerability in Active Directory Certificate Services Web Enrollment Could Allow Elevation of Privilege (2518295)
Below four bulletins they have categorized as the highest deployment priority.
MS11-042 (DFS)- This bulletin resolves two privately reported issues affecting all versions of Windows.
MS11-043 (SMB Client)- This bulletin resolves one privately reported issue affecting all versions of SMB Client on Windows.
MS11-050 (Internet Explorer)- This security bulletin resolves 11 privately reported issues in Internet Explorer.
MS11-052 (Windows)- This bulletin resolves one privately reported issue in Windows and is also Critical.
For detailed information of all the bulletins and the corresponding vulnerabilities addressed, please visit,
We will recommend users to set Windows Update in Install updates automatically mode. So the important patches get applied automatically.