-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
National Cyber Alert System
Technical Cyber Security Alert TA11-347A
Microsoft Updates for Multiple Vulnerabilities
Original release date: December 13, 2011
Last revised: --
Source: US-CERT
Systems Affected
* Microsoft Windows
* Microsoft Office
* Internet Explorer
Overview
There are multiple vulnerabilities in Microsoft Windows, Office,
and Internet Explorer. Microsoft has released updates to address
these vulnerabilities.
I. Description
The Microsoft Security Bulletin Summary for December 2011 describes
multiple vulnerabilities in Microsoft Windows. Microsoft has
released updates to address the vulnerabilities. Additional details
for MS11-091 can be found in US-CERT vulnerability note VU#361441.
II. Impact
A remote, unauthenticated attacker could execute arbitrary code,
cause a denial of service, or gain unauthorized access to your
files or system.
III. Solution
Apply updates
Microsoft has provided updates for these vulnerabilities in the
Microsoft Security Bulletin Summary for December 2011. That
bulletin describes any known issues related to the updates.
Administrators are encouraged to note these issues and test for any
potentially adverse effects. In addition, administrators should
consider using an automated update distribution system such as
Windows Server Update Services (WSUS).
IV. References
* Microsoft Security Bulletin Summary for December 2011 -
<https://technet.microsoft.com/en-us/security/bulletin/ms11-dec>
* Microsoft Windows Server Update Services -
<http://technet.microsoft.com/en-us/wsus/default.aspx>
* US-CERT Vulnerability Note VU#361441 -
<http://www.kb.cert.org/vuls/id/361441>
____________________________________________________________________
The most recent version of this document can be found at:
<http://www.us-cert.gov/cas/techalerts/TA11-347A.html>
____________________________________________________________________
Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@xxxxxxxx> with "TA11-347A Feedback VU#828387" in
the subject.
____________________________________________________________________
For instructions on subscribing to or unsubscribing from this
mailing list, visit <http://www.us-cert.gov/cas/signup.html>.
____________________________________________________________________
Produced 2011 by US-CERT, a government organization.
Terms of use:
<http://www.us-cert.gov/legal.html>
____________________________________________________________________
Revision History
December 13, 2011: Initial release
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
iQEVAwUBTue5wT/GkGVXE7GMAQIrdwf/e7mkVtpJCJiG7XXu2iopjsCubCNR1kRV
9f00aA1lzDbuwfSiApWNq2l62wm+zBydGr8PomGeRf63sLMDiHrC0Ti+p1xhMqEZ
Z4iS17pvi+92XqV16u0/jEg7O7L2274MXoHmncvBEmF0txdHl1FTNvgoC1TjXOBz
3JHb2JYiy+xg6Oh0Abj/KOijVQASzZ7FwnVri9NB+2n/6WmPXP0SP4cZVm0vow/I
jj5o/BfRARTr3DzX47OPR+YPKnRG3sgDGUgv0Xbf6wXnHpWNHQ6mpXSlBzOMxHPo
9vxc0q8EE9Hiyzk7dk265gL52ulWrnKihV9JtXvXpqOVrNP5GzqiAw==
=7Brq
-----END PGP SIGNATURE-----
