Microsoft Security Bulletin released for the month of July

All four bulletins are related to “Remote Code Execution” vulnerability. Out of the four bulletins, three bulletins are rated “Critical” and one bulletin is rated “Important”.

The following bulletins have been rated “Critical”:

– Bulletin MS10-042 resolves a vulnerability that could allow remote code execution if a user views a specially crafted Web page using a Web browser, or clicks a specially crafted link in an e-mail message for Windows Help and Support Center feature that is delivered with supported editions of Windows XP and Windows Server 2003.
– Bulletin MS10-043 resolves a vulnerability that could allow remote code execution in the Canonical Display Driver (cdd.dll) for 64-bit Windows 7 and Windows 2008 Server R2.
– Bulletin MS10-044 resolves two vulnerabilities that could allow remote code execution if a user opened a specially crafted Office file or viewed a Web page that instantiated Microsoft Access ActiveX controls.

The following bulletin have been rated “Important”:

– Bulletin MS10-045 resolves a vulnerability that could allow remote code execution if a user opened an attachment in a specially crafted e-mail message using an affected version of Microsoft Office Outlook.

The security bulletins released this month provide security updates for Microsoft Windows operating systems and Microsoft Office. For detailed information of all the bulletins and the corresponding vulnerabilities addressed, please visit Microsoft Security Bulletin Summary – July 2010 page.

I will recommend users to set Windows Update in Install updates automatically mode. So the important patches get applied automatically.