Microsoft released 2 bulletins this tuesday to address 8 vulnerabilities. The Patch Assesment Team at Desktop Central have tested all of these patches and have updated the Central Patch Repository. This means customers can synchronize their patch database and deploy all of these new patches. Given below is the quick snapshot of the bulletins/patches:
| Bulletin ID | Vulnerability Title | CVE ID | Exploitability Index Assessment |
|
Microsoft Office Excel Record Memory Corruption Vulnerability |
1 – Consistent exploit code likely |
||
|
Microsoft Office Excel MDXTUPLE Record Heap Overflow Vulnerability |
1 – Consistent exploit code likely |
||
| MS10-017 | Microsoft Office Excel MDXSET Record Heap Overflow Vulnerability | CVE-2010-0261 | 1 – Consistent exploit code likely |
| MS10-017 | Microsoft Office Excel XLSX File Parsing Code Execution Vulnerability | CVE-2010-0263 | 1 – Consistent exploit code likely |
| MS10-017 | Microsoft Office Excel DbOrParamQry Record Parsing Vulnerability | CVE-2010-0264 | 1 – Consistent exploit code likely |
| MS10-016 | Movie Maker and Producer Buffer Overflow Vulnerability** | CVE-2010-0265 | 1 – Consistent exploit code likely |
| MS10-017 | Microsoft Office Excel Sheet Object Type Confusion Vulnerability | CVE-2010-0258 | 2 – Inconsistent exploit code likely |
| MS10-017 | Microsoft Office Excel FNGROUPNAME Record Uninitialized Memory Vulnerability | CVE-2010-0262 | 2 – Inconsistent exploit code likely |
** Update for Movie Maker 2.6 for Windows Vista is yet to get supported in Desktop Central
For any assistance on patching feel free to contact desktopcentral-support@manageengine.com
Happy Patching.
cheers,
Update March 11: Patches for Movie Maker 2.6 for Windows Vista is now supported in Desktop Central
