November 2011- Microsoft Releases 4 Security Advisories

  Severity: HIGH
  Advisory Date: NOV 08, 2011

  DESCRIPTION

Microsoft addresses the following vulnerabilities in its November batch of patches:

  • (MS11-083) Vulnerability in TCP/IP Could Allow Remote Code Execution (2588516)
    Risk Rating: Critical

    This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if an attacker sends a continuous flow of specially crafted UDP packets to a closed port on a target system. Read more here.



  • (MS11-084) Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service (2617657)
    Risk Rating: Medium

    This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a user opens a specially crafted TrueType font file as an e-mail attachment or navigates to a network share or WebDAV location containing a specially crafted TrueType font file. Read more here.



  • (MS11-085) Vulnerability in Windows Mail and Windows Meeting Space Could Allow Remote Code Execution (2620704)
    Risk Rating: Important

    This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a legitimate file (such as an .eml or .wcinv file) that is located in the same network directory as a specially crafted dynamic link library (DLL) file. Read more here.



  • (MS11-086) Vulnerability in Active Directory Could Allow Elevation of Privilege (2630837)
    Risk Rating: Important

    This security update resolves a privately reported vulnerability in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS). Read more here.



  TREND MICRO PROTECTION INFORMATION

Trend Micro Deep Security shields the following vulnerabilities using the specified rules. Trend Micro customers using OfficeScan with the Intrusion Defense Firewall plugin are also protected from attacks using these vulnerabilities.

Microsoft Bulletin ID Vulnerability ID Identifier & Title Deep Security Pattern Version Deep Security Pattern Release Date
MS11-085 CVE-2011-2016 1004842 - Windows Mail Insecure Library Loading Vulnerability Over WebDav (CVE-2011-2016) 11-032 Nov 9, 2011
MS11-085 CVE-2011-2016 1004843 - Windows Mail Insecure Library Loading Vulnerability Over Network Share (CVE-2011-2016) 11-032 Nov 9, 2011

  OTHER INFORMATION