Technical Cyber Security Alert 2012-346A - Select Microsoft software products contain multiple vulnerabilities. Microsoft has released updates to address these vulnerabilities.
c83cdfb021cbb178df7c37cb844b517f113537efad3fa4204278f06a939362f7
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Awareness System
US-CERT Alert TA12-346A
Microsoft Updates for Multiple Vulnerabilities
Original release date: December 11, 2012
Last revised: --
Systems Affected
* Microsoft Windows
* Microsoft Office
* Microsoft Server Software
* Internet Explorer
Overview
Select Microsoft software products contain multiple
vulnerabilities. Microsoft has released updates to address these
vulnerabilities.
Description
The Microsoft Security Bulletin Summary for December 2012 describes
multiple vulnerabilities in Microsoft software. Microsoft has
released updates to address the vulnerabilities.
Impact
A remote, unauthenticated attacker could execute arbitrary code,
cause a denial of service, or gain unauthorized access to your
files or system.
Solution
Apply Updates
Microsoft has provided updates for these vulnerabilities in the
Microsoft Security Bulletin Summary for December 2012, which
describes any known issues related to the updates. Administrators
are encouraged to note these issues and test for any potentially
adverse effects. In addition, administrators should consider using
an automated update distribution system such as Windows Server
Update Services (WSUS). Home users are encouraged to enable
automatic updates.
References
* Microsoft Security Bulletin Summary for December 2012
<http://technet.microsoft.com/en-us/security/bulletin/ms12-dec>
* Microsoft Windows Server Update Services
<http://technet.microsoft.com/en-us/wsus/default.aspx>
* Microsoft Update
<http://www.update.microsoft.com/>
* Microsoft Update Overview
<http://www.microsoft.com/security/updates/mu.aspx>
* Turn Automatic Updating On or Off
<http://windows.microsoft.com/en-us/windows-vista/Turn-automatic-updating-on-or-off>
Revision History
December 11, 2012: Initial release
____________________________________________________________________
Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@cert.org> with "TA12-346A Feedback VU#298708" in
the subject.
____________________________________________________________________
Produced by US-CERT, a government organization.
____________________________________________________________________
This product is provided subject to this Notification:
http://www.us-cert.gov/privacy/notification.html
Privacy & Use policy:
http://www.us-cert.gov/privacy/
This document can also be found at
http://www.us-cert.gov/cas/techalerts/TA12-346A.html
For instructions on subscribing to or unsubscribing from this
mailing list, visit http://www.us-cert.gov/cas/signup.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iQEVAwUBUMeZLndnhE8Qi3ZhAQL1mwf/TuZQSXmAJIKpQvAnONaveVkluNcm9+1Y
MyPKYEeSDlvXQgjbssHbZYmr40WhQRxzLW/J2PBPJ1fmjI5fKWR+DphzEEr4Y+TZ
+lHqFnbAn2EdV9WPoNAtjxzHrmLECER9CQ0z8gL5gZmbahb59Us2YPEPQUgk/gEH
vf5+clkiW+PwcVB1LVIDD9mkIwle0WE6+vGC5npNeZkbMVhndRpBrbWJuRviJOL7
R0/KsS1S8Mvhv6xq5Kas0v1Gmxa3o/KHze518Ibw6z5+/kq6YuXfip8AhXAkV1hq
l2XlSHoC0pb9cJZtdCmgaCm84GF0TCjHBU+qEac/iYmlhO3RODVaNA==
=IMPd
-----END PGP SIGNATURE-----