January 2011 - Microsoft Releases 2 Security Advisories

  Severity: CRITICAL
  Advisory Date: JAN 11, 2011

  DESCRIPTION

Microsoft addresses the following vulnerabilities in its January batch of patches:

  • (MS11-001) Vulnerability in Windows Backup Manager Could Allow Remote Code Execution (2478935)
    Risk Rating: Important

    This security update resolves a vulnerability in Windows Backup Manager, which could allow remote code execution. Read more here.

  • (MS11-002) Vulnerabilities in Microsoft Data Access Components Could Allow Remote Code Execution (2451910)
    Risk Rating: Critical

    This security update resolves two vulnerabilities in Microsoft Data Access Components (MDAC), which could allow remote code execution. Read more here.

  TREND MICRO PROTECTION INFORMATION

Trend Micro Deep Security shields the following vulnerabilities using the specified rules. Trend Micro customers using OfficeScan with the Intrusion Defense Firewall plugin are also protected from attacks using these vulnerabilities.

Microsoft Bulletin ID Vulnerability ID Identifier & Title IDF First Pattern Version IDF First Pattern Release Version
MS11-001 CVE-2010-3145 1004566 - Backup Manager Insecure Library Loading Vulnerability 11-002 Jan 12, 2011
MS11-002 CVE-2011-0027 1004565 - Microsoft Data Access Object Recordset Remote Code Execution 11-002 Jan 12, 2011

  SOLUTION